Microsoft Security Copilot Reviews

As a solution provider and support service consultant, our goal is to develop a knowledge-based system integrated with AI. The concept involves offering an AI-powered chatbot platform for both customers and support teams. When a customer reports a system issue, the chatbot will search the knowledge base and deliver step-by-step guidance to help resolve the problem efficiently.

Ideally, the implementation involves developing the chatbot and integrating its features through APIs. The database is hosted in the Microsoft Azure environment, where we configure the necessary parameters and establish connections with Microsoft Copilot’s API services. Once set up, the chatbot is trained to accurately retrieve and deliver relevant information from the knowledge base. 

At this stage, we haven't had the opportunity to implement or evaluate Microsoft Security Copilot within our organization, so we’re unable to provide insights on its impact.

Microsoft Copilot is an excellent platform with many advantages. However, from a business and customer perspective, the pricing is very expensive. Customers often search for alternatives or other options, such as open source platforms available in the market today, including Google Gemini, OpenAI, or DeepSeek from China.

When encountering technical challenges, we utilize the Microsoft forum platform and seek help through our partnership with Microsoft by getting consultation from their experts.

The main concern relates to security and data privacy. When storing data in Microsoft environments such as Azure or Microsoft iCloud, customers express concerns about data security. Even though Microsoft is a major technology company with insurance coverage, customers worry about potential data leaks, especially in sensitive industries such as banking and semiconductor manufacturing.

Customers who are not technically proficient often rely on consultants for guidance regarding security integration. They either trust our recommendations or hire internal consultants familiar with Microsoft products to evaluate security layers before making decisions.

Regarding automation, customers are seeking alternative solutions because they are not utilizing all features of Microsoft Security Copilot due to expensive licensing. They predominantly search for low-cost, open source options.

A suggestion for Microsoft would be to develop more customized solutions that can integrate with different platforms or open source solutions. Rather than requiring exclusive use of Microsoft products for security layer services, they could consider implementing multi-layer integration with various open source platforms.

The prototype has been explored over the past year.

As we haven't yet deployed Microsoft Security Copilot in our environment, we can’t directly comment on its stability. However, given that it’s built on Microsoft’s mature cloud infrastructure and integrates with well-established tools like Defender and Sentinel, we expect a strong level of stability. We’ll be able to assess this more accurately once we gain hands-on experience

While we haven’t implemented the solution yet, based on available documentation and demos, Microsoft Security Copilot appears to be highly scalable—especially when integrated with Microsoft’s broader ecosystem like Defender, Sentinel, and Azure services. Its cloud-native design and AI-driven capabilities suggest it can scale effectively to support both small and large security operations.

The customer support for security layer concerns is excellent. When raising tickets with Microsoft customer support, they respond very professionally with excellent feedback.

The solution is expected to be very powerful, though there is limited experience as customers are still exploring Microsoft Security Copilot.

We haven't gone through the initial setup of Microsoft Security Copilot yet, so we can't comment on its complexity at this stage. However, based on available documentation, it appears to be well-integrated within the Microsoft ecosystem, which suggests that the setup process should be relatively straightforward.

NO

We haven't implemented yet, so it's too early to determine a return on investment (ROI). Once we have hands-on experience and measurable outcomes—such as improved incident response times or reduced analyst workload—we’ll be in a better position to assess its ROI.

Currently, customers are still exploring Microsoft Security Copilot and have not implemented alternative solutions.

When using the trial version of Microsoft Copilot platform with 30 days free access, the performance was somewhat slow, possibly due to internet connectivity issues or trial version limitations.

The adoption rate is about 20 to 30%. Microsoft could consider introducing different pricing tiers for SMEs and large enterprises. While large companies may have the budget for higher costs, SMEs might be more interested in AI solutions with more affordable pricing options.

The overall review rating for Microsoft Security Copilot is 9 out of 10.

On-premises

Microsoft Azure

My main use cases involve policies. If something happens, then I just ask Microsoft Security Copilot what to do if I want to block a particular IP address or create any sort of policies. I use Microsoft Security Copilot for that. For any complex solutions, I first ask Microsoft Security Copilot, and if it's not working, then I go to the experts.

It has definitely impacted my operations in a good way because it saves a lot of time. Microsoft Security Copilot is meant to save time, so it's definitely saving some time. I don't have to always rely on my peers or maybe a security engineer.

Microsoft Security Copilot for Security has impacted my team's ability to analyze security across different areas, such as identities, devices, and clouds. We are not focusing on low-hanging fruit, which is covered by Microsoft Security Copilot. Whenever there is something complex, they handle it on their own. Approximately 30% time has been saved on low-hanging fruit.

When a phishing attack happened, specifically a device code phishing attack, we figured out that some logs had been recorded by Microsoft, but our team was not looking at those. We just created some alerts through Microsoft Security Copilot. The moment someone tries to log in using our device code, we get an alert.

The features of Microsoft Security Copilot that I appreciate the most include the ease of the prompts that I give, which generate easy answers for me. It also automatically gives me options to apply, which is very helpful.

I assess Microsoft Security Copilot's ability to process security data as good because I'm following the Microsoft policies. We reviewed those policies. So far, it's good by looking at the policies.

I believe Microsoft Security Copilot could be improved in terms of the UI and the process. The UI needs improvement because it can be distracting with some windows on your right and left sides. That's how I feel; maybe some other users have different opinions.

I have been using Microsoft Security Copilot for just one year.

We have never faced problems with the stability and reliability of Microsoft Security Copilot. Whenever we give a request, it's available.

We have just been using it for one year, so we're still figuring out how to scale the product in our company.

I evaluate the technical support as very good. 

Positive

We didn't use any similar solution previously.

It was complex because there were a lot of naming features, and we needed a lot of help with that. The moment we started using it, we realized that it's super easy. The initial onboarding is pretty tough, but after that, it's easy. Overall, everything worked well.

We are saving time, which means we are saving money.

The amount of money saved is very subjective; I don't know exactly how much, maybe it's related to the salaries that we are able to save so far.

Pricing is decent if you compare it with the market. We were previously using a different service, but we wanted something under one umbrella, which is something Microsoft is able to give. For example, Microsoft Teams plays a major role in our organization, so we don't want to use Slack as a separate entity or G Suite just for emails. Microsoft gives everything under one umbrella, which is interesting, and that's why we are thinking about the license upgrade, since we want to use more security features. Microsoft has a lot of security options, which is a very good thing.

We did consider other solutions before choosing Microsoft Security Copilot, but I don't think anyone is near Microsoft Security Copilot. All those solutions are dots and dashes; they have something, but they lack certain features, especially for enterprise security. I don't see any tools around.

Regarding Microsoft Security Copilot for Security's AI-driven guidance and analysis, I believe we have not yet used that feature, but we will test it out soon. The task automation feature of Microsoft Security Copilot for Security has not yet affected my team's workflow.

I would rate Microsoft Security Copilot an eight out of ten. The UI can always be better, and there is slow processing. Sometimes, we do not get the expected results, but that's fine. To achieve a ten, maybe the reliability needs to be more accurate, and the answers to the prompts we are asking have to be better.

Public Cloud

Microsoft Azure

I work in parallel with my current security tools.

The features of Microsoft Security Copilot are mostly beneficial at the cold start when I need to begin analyzing something; it gives me the first few steps, which is helpful and saves time.

My thoughts on the integration of generative AI in Microsoft Security Copilot for incident response is that it is quite good, mostly because of the cold start. An incident response requires you to act fast and sometimes you miss because you start too slowly or do not do all the right things at the beginning; it provides a comprehensive checklist right from the start.

The effectiveness of Microsoft Security Copilot's natural language interface is sometimes slow and it occasionally has hallucinations, but other than that, it works well.

I do not know when it is slow for us; it is random. I ask a question and sometimes it takes time to think. Sometimes it does not give the accurate answer. This is very typical of large language models, so I do not get too excited, but that happens sometimes.

I assume Microsoft Security Copilot can be improved; the context and the training that the agent has is limited to security, and it should be. This is why I would expect it to be faster than other agents. Slowness and hallucinations are detractors, so I think this should be improved.

I have been using Microsoft Security Copilot for about one year.

I would assess the stability and reliability of Microsoft Security Copilot as decent; there were no issues other than some slowness from time to time.

I have not experienced any downtime, crashes, or performance issues with Microsoft Security Copilot; I have nothing to report.

Microsoft Security Copilot does not scale well with the growing needs of my organization because we do not grow as fast; we are a very small company and we plan to stay small, so this is not applicable for us.

Prior to adopting Microsoft Security Copilot, we did use ChatGPT in general to get responses, but it is difficult because it does not have all the context, and we do not want to put customer data in there directly, so we did not have another tool that got displaced by this.

I would describe my experience with deploying Microsoft Security Copilot as straightforward.

What was straightforward about it is that there was nothing that was different or unique or any different from any other platform product. We did not have any issues with it.

What worked well is that we did not really have any challenges; everything worked as expected. We had a very small deployment, so there were not too many kinks or anything unusual in the environment.

I do not know yet if I have seen return on investment with Microsoft Security Copilot; we need to measure it, so it remains unknown.

My experience with pricing, setup costs, and licensing was mostly positive; we are a very small client, so we did not have any issues with that.

We were thinking about other solutions such as Anthropic or another open-source model, Nematron from NVIDIA, which is amazing, before selecting Microsoft Security Copilot.

In my evaluation process, what stood out positively was that open-source is free and we can host it on-premises, so we do not have any issues with customer data. However, speed is an issue with those because you need to maintain your own infrastructure. Anthropic seemed to have better performance than OpenAI for our use case, but it did not feel like we were solving the trust issue, so Microsoft eventually became the solution we started using. We are still evaluating, and we do experiment with other products in parallel; if there is another product that is better, we will move, but for now, Microsoft Security Copilot works well for us.

I like the recommendations that Microsoft Security Copilot gives me.

I do not think there was a significant impact from the integration of Microsoft Security Copilot with other Microsoft security solutions; it was just working in parallel with this new feature.

The factors that led me to consider a change were mostly trust with personally identifiable information; we do have licenses from OpenAI and Microsoft that technically say the same thing, however, the trust that we place in Microsoft at a high level is higher than the trust we put in OpenAI as a smaller startup.

My advice for other organizations considering Microsoft Security Copilot is that they should probably try it. I would rate this review an eight out of ten.

My use cases involve writing rough emails and general documents using Microsoft Security Copilot.

Microsoft Security Copilot benefits my company by making my work easier. I used to write documentation, and it made my work much easier while watching TV.

I don't enjoy writing documents, and given that Microsoft Security Copilot can write documents in a matter of seconds, that helped me significantly. I would say about 10% to 15% time was saved.

What I appreciate most about Microsoft Security Copilot is that it fixes all grammar issues, as I'm not particularly strong in grammar.

The AI-driven guidance and analysis of Microsoft Security Copilot has been great, but I need to do more use cases to provide a complete answer.

Microsoft Security Copilot for Security has impacted my team's ability to analyze security across different areas, such as identities, devices, and clouds effectively, but I will consult with my team's IAM and software departments for more details.

The task automation feature of Microsoft Security Copilot has been super useful for our team's workflow.

The integration of Microsoft Security Copilot with other Microsoft solutions has had a positive impact on my company's security posture because it's integrated into the operating system. Other LLM agents require downloading specific tools, but Microsoft shipped Copilot directly, which is the main reason I use it.

Microsoft Security Copilot has good integration with other Microsoft products.

Microsoft Security Copilot has helped reduce my company's mean time to resolution by allowing me to focus more on technical problems rather than writing documentation.

While I don't know the exact metrics, I estimate the reduction is around 20% to 25%.

To make it a perfect 10, Microsoft Security Copilot would need to take decisions independently and reduce hallucination.

The issue with all AIs, not just Microsoft Security Copilot, is that when I do something and feel it's wrong, I need a tech lead to verify.

I have been using Microsoft Security Copilot for about a year.

Microsoft Security Copilot has demonstrated good stability and reliability in my experience.

The scalability of Microsoft Security Copilot has been excellent since we have a good amount of people in our office and all of us use it.

I haven't needed to contact customer service yet, which I consider a good sign as the tool performs very effectively.

Neutral

I have used ChatGPT for a while to write documents, but Microsoft Security Copilot seems superior.

We are deployed on-premises.

My team experiences issues with any tool we implement, but the issues with Microsoft Security Copilot are manageable and the tool performs very well.

The biggest return on investment for me when using Microsoft Security Copilot is its ability to write my documents.

I am not authorized or trained to know about the pricing, setup costs, and licensing. The tool was provided to me, and I have found it to be great.

As a Security Engineer, choosing other solutions before selecting Microsoft Security Copilot is not within my domain as it falls under leadership decisions.

I am not aware if my company considered using another product, though they probably evaluated other tools.

The value of Microsoft Security Copilot is evident since I don't have to use Grammarly or other tools.

On a scale of 1 to 10, I would rate Microsoft Security Copilot a 7.5.

On-premises

My main use case for considering Microsoft Security Copilot is that I saw a demo at the RSAC conference that seemed interesting. What caught my attention about the demo is that the dashboard containing all the information is interesting. If I were using Microsoft Security Copilot, I would want to see all the vulnerabilities that could potentially appear in the dashboard.

The best feature Microsoft Security Copilot offers based on what I have seen is the seamless integration. Seamless integration means I would want it to integrate with system management vulnerability assessment. Microsoft Security Copilot could positively impact my organization if I started using it because it could make people more aware of the system's state. It could help raise awareness through both alerts and reports.

I believe Microsoft Security Copilot could use performance improvement based on what I have seen. The UI is sluggish, which is a specific area where performance could be better.

I have been working in my current field for four years.

I do not think Microsoft Security Copilot needs any other improvements. I think it might help reduce my organization's mean time to resolution, MTTR, because it is an efficient tool.

My advice to others looking into using Microsoft Security Copilot is to keep an open mind.

Private Cloud

Other

I am using Microsoft Security Copilot primarily for generative AI security.

Initially, Microsoft Security Copilot did not meet my expectations, but it has now reached a good level of maturity. I am satisfied with the solution as it offers integration with other systems, data mapping options, and compatibility with any dataset in our databases.

Currently, Microsoft Security Copilot is not very intuitive. I still need to figure out how to operate some features, so more intuitive methods would be beneficial.

I have been using Microsoft Security Copilot for about a year.

I am generally satisfied with the technical support from Microsoft. However, they tend to be quite rigid with documentation and often redirect me to look at documents instead of directly assisting me, which can cause delays. Direct interaction with their professional services team could address this issue, but it is challenging to speak with that team.

I was previously using UiPath products but am now mostly using Microsoft Power Platform.

Pricing has not been a problem for me. Most of my customers are already within Microsoft stack, and the pricing is mostly well accepted.

I mostly use Microsoft Power Platform, which includes Power Apps and Power Automate.

I would rate Microsoft Security Copilot nine out of ten. As a gold partner of Microsoft, I have noticed that professional services can improve their direct contact with developers to avoid delays.

Other

We are using Microsoft Security Copilot to summarize the discussions we have during calls. We also use it to rephrase different emails, and for PowerPoint presentations to reorder slides and manage information. We are exploring ways to extend its capabilities.

Microsoft Security Copilot's ability to understand and summarize information, particularly emails, is highly valuable. As I am managing a larger department, it allows me to receive summaries of emails, which significantly saves time when dealing with numerous unread emails. Additionally, the capability to generate input and generate information for use in presentations is very useful. Another valuable feature is its seamless integration with other Microsoft solutions, enhancing the efficiency of our operations.

It would be beneficial if Microsoft Security Copilot could work across multiple systems. For example, I would like it to automatically transfer information from Outlook to PowerPoint. At the moment, this feature is not available.

We have been using Microsoft Security Copilot for approximately one month to one and a half months. It is a fairly new implementation for our company.

Microsoft Security Copilot is stable at the moment. We have not experienced any glitches, latency issues, or performance problems.

We are an enterprise with around eighty people, and we have been able to offer Microsoft Security Copilot to all of them simultaneously. It seems to be quite easy to scale.

I do not handle IT systems directly, but we have been using Microsoft products for some time without major issues. I assume the support is good as we have never encountered significant problems. When issues arise, our IT personnel manage the situation effectively.

Positive

We previously used Salesforce but found it challenging to input all necessary information into the platform. My team decided to switch to a simpler solution, a shared Excel file, which is more accessible for our sales team. We plan to explore a new solution called Drago.

I presume the installation of Microsoft Security Copilot was very easy as my IT team handled it. It appears that one person managed the installation efficiently.

Our IT team handled the installation of Microsoft Security Copilot. One person was sufficient for the task, and they managed it well.

While I haven't seen financial savings, the time saved for making summaries and understanding information through Microsoft Security Copilot is significant. For instance, the summary capability saves me fifty percent of the processing time on emails.

I did not handle the acquisition or tender for Microsoft Security Copilot, so I cannot compare the pricing to other products. However, the assistance it provides us suggests that it is worth the price.

I would rate Microsoft Security Copilot ten points on a scale of one to ten because we are very satisfied with it. It meets our needs without significant issues.

Other

Microsoft Azure

We are a healthcare organization building a platform for everyone that's secure. Microsoft Copilot for Security helps us ensure personally identifiable information (PII) and personal health information (PHI) aren't exposed. We use it in patient care in all our hospitals, clinics, and pharmacies. 

The use of Microsoft Copilot for Security has reduced costs by allowing many operations to be automated with minimal supervision. It has also improved our team's ability to analyze data security for PHI and PII, which is a critical area for us.

One of the most valuable features of Microsoft Copilot for Security is its auditing capabilities, which allow us to monitor and easily recognize unauthorized data access attempts.

Copilot enables us to implement self-service options for our data side. We do lots of analytics independently. We can enable our organization to do self-service mode and ask questions about our data using Copilot. It's improving our productivity. That's our main focus.

One area for improvement is ensuring that personal information is not exposed through Copilot. For example, salary information of executives should remain confidential. Currently, I do not see this feature. Additionally, there should be better natural language processing to eliminate the need for prompt engineering.

We have been trying to use Microsoft Copilot with Power BI for the past year.

Microsoft Copilot for Security is excellent in terms of stability.

The solution is scalable, which is a great attribute.

The customer service and technical support are great and very knowledgeable. They consistently bring value to our organization.

Positive

We evaluated ThoughtSpot from an analytics perspective, which is a good tool, but we decided to go with Microsoft Copilot due to its wide variety of features in comparison to competitors.

We have only conducted a proof of concept rather than a full implementation.

We have Microsoft representatives who assist us by bringing subject matter experts to implement new solutions.

Copilot saves time. It reduces our development time by about 30 percent because auto-generated methods and text queries help us tremendously. We are looking forward to the return on investment with Microsoft Copilot in the future as we move forward with AI, developing our own model for patient care and customer support.

Pricing and licensing are much better with Microsoft Copilot compared to competitors.

I rate Microsoft Security Copilot nine out of 10. We have not explored all the features yet, and there might be some drawbacks or costs we are unaware of.

Private Cloud

I use Microsoft Copilot for Security to understand and manage security warnings and scores. It helps me make sense of these scores and allows me to take action to improve them.

Microsoft Copilot for Security gives us flexibility. We're a small organization, so everyone wears many hats, and security is everyone's job. It allows anyone to engage with the system without extensive prior knowledge and ask questions, making the process actionable and understandable.

Microsoft Copilot for Security helps us understand security warnings. It allows me to understand global user and device activity, and this feature keeps all critical information in one place. 

It helps us process security information by taking complex data from different areas of Defender and spitting it out in an easy-to-understand format. The solution's AI-driven guidance and analysis point us to exactly what we need to do. It asks us to enable or disable policies, so we create internal conversations about what we want to do in our security.

The solution does exactly what I need, but sometimes the prompts required to get the needed information need to be rephrased several times. This might improve as I become more accustomed to using the system.

I have been using Microsoft Copilot for Security for about three months.

The stability is generally good, though there can be minor delays.

The system is highly scalable, and it provides many possibilities for handling diverse tasks.

Sometimes it takes some time to get responses, but overall it's satisfactory.

Neutral

The initial setup was simple, involving assigning licenses to users.

I used a reseller. Our experience with CDW was very smooth, allowing us to obtain licenses as needed.

Microsoft offers good incentives for nonprofits. While we pay the full price for some licenses, the benefits have been clear in reducing resolution times and increasing efficiency.

Our nonprofit organization benefits from Microsoft's incentives, though we pay full price for certain licenses like the Copilot license.

I rate Microsoft Copilot for Security seven out of 10. We've had it for three months, so maybe it has some features I'm unaware of. Sometimes, you have to reword the prompts three or four times before getting exactly what you need. It might improve with me getting better at asking and Copilot understanding what I'm asking for.

Hybrid Cloud

Other

I use Microsoft Copilot for tracking down security incidents and making the process less complex. It allows me to figure out where each incident originates and consolidates everything into one place when an incident occurs.

The solution reduces the time needed to get what you want, as well as the time needed to investigate and resolve issues. Copilot has made our security analysis easier because all the data is ingested into one place. The data could be all over the place. If you have a data dump, you can get all the logs and make sense of them. 

Sometimes, the data logs come in sporadically and aren't easily understood by the naked eye. Copilot organizes it all and spits out something comprehensible. It's especially helpful for a smaller team, so it can handle more tickets.

The most valuable feature of Microsoft Copilot is the interactive chat, which allows me to interact with Copilot directly and get responses quickly. This consolidates our efforts into one place without the need to access multiple resources. 

It would be beneficial if Copilot's security features were available to roles other than just the top security personnel. Other roles could use some of the functions, perhaps with limited access, allowing for greater flexibility within an organization.

I have been using Microsoft Copilot since it became available, which is a little over a year ago.

I would rate the stability 10 out of 10. It has proven to be very stable.

I am not sure about the scalability as we have not scaled it enough to assess properly.

I rate Microsoft support seven out of 10. The customer service is hit or miss, depending on the person you get. Sometimes, the support is excellent, while it can be less satisfactory at other times.

Neutral

The initial setup was straightforward.

I'm unaware of what it costs, but I believe Copilot has shown its value because they haven't gotten rid of it. 

I rate the Copilot for Security nine out of 10. 

Hybrid Cloud