New RSA Agent for Admin Threats Now Generally Available in Microsoft Security Copilot

Core Insights - RSA Security has announced the general availability of its RSA Advisor for Admin Threats agent within Microsoft Security Copilot, aimed at enhancing security leaders' capabilities to detect and resolve high-risk activities quickly [1][3] - The integration of AI in cybersecurity is emphasized as a critical priority, with 91% of surveyed security leaders planning to incorporate AI into their technology stack [3] Group 1: Product Features and Capabilities - The RSA Advisor for Admin Threats agent enhances organizational security by providing comprehensive monitoring of admin accounts and alerting security teams to suspicious activities that may indicate compromised accounts or insider threats [5] - This agent automates log searches and correlates events using natural language prompts, allowing security teams to resolve threats more efficiently [5] - The agent integrates with Microsoft Sentinel's Data Lake, enabling advanced analytics, alerting, and AI-driven investigation capabilities [5] Group 2: Strategic Partnerships and Ecosystem - The collaboration between RSA and Microsoft aims to create a new era of intelligent, collaborative cyber defense, leveraging AI as a force multiplier for defenders [2] - Microsoft Security Copilot combines a large language model with security-specific models informed by Microsoft's global threat intelligence, processing over 84 trillion daily signals [3][4] Group 3: Deployment and Accessibility - The RSA Advisor for Admin Threats agent is available on the Microsoft Security Storefront, simplifying the discovery, purchase, and deployment process for customers [6][7] - Deployment is facilitated through the Security Storefront, which handles the agent and its dependencies, redirecting users to configure and work with the agent post-deployment [8]