The field of artificial intelligence (AI) in cyber security is rapidly evolving, with new capabilities emerging to help organisations protect themselves against increasingly sophisticated threats.

Microsoft has recently announced several exciting developments in this area, including the integration of Copilot and ChatGPT Enterprise with Microsoft Purview. In this article, we will explore these new capabilities and their potential to transform the way organisations approach cybersecurity.

Copilot: Streamlining eDiscovery and Device Query

Microsoft’s Copilot is an AI-powered tool designed to simplify the process of creating Key Query Language (KQL) queries for eDiscovery and device query. In the context of eDiscovery, Copilot enables users to generate KQL queries from natural language, making it easier to search for and collect relevant data. This capability has the potential to significantly reduce the time and cost associated with eDiscovery, allowing organisations to respond more quickly and effectively to legal and regulatory challenges.

In addition to its eDiscovery capabilities, Copilot has also been integrated with device query in Intune. This allows users to create KQL queries to run on devices, using natural language to ask questions about device properties and generate queries to retrieve the required data.

ChatGPT Enterprise: Enhancing Compliance and Governance

Microsoft has also announced the integration of ChatGPT Enterprise with Microsoft Purview, enabling organisations to gain visibility into the prompts and responses from ChatGPT Enterprise, as well as the total number of users interacting with the platform and their associated risk level. This integration allows organisations to apply controls to sensitive data being shared with ChatGPT Enterprise, ensuring that they are compliant with relevant regulations and standards.

Furthermore, the integration of ChatGPT Enterprise with Microsoft Purview enables organisations to use Microsoft Purview Audit to capture ChatGPT Enterprise interactions and configure Microsoft Purview Data Lifecycle Management retention policies for ChatGPT Enterprise prompts and responses. This provides organisations with a comprehensive framework for governing the use of ChatGPT Enterprise and ensuring that they are meeting their compliance obligations.

Conclusion

The integration of Copilot and ChatGPT Enterprise with Microsoft Purview represents a significant step forward in the field of AI in cyber security. These new capabilities have the potential to transform the way organisations approach eDiscovery, device query, and compliance, enabling them to respond more quickly and effectively to legal and regulatory challenges. As the threat landscape continues to evolve, it is essential that organisations stay ahead of the curve by leveraging the latest AI-powered tools and technologies. With Microsoft’s new capabilities, organisations can enhance their cyber security posture and ensure that they are well-equipped to meet the challenges of the future.