“These experts deeply understand the security landscape,” Johnson says. “They understand attacker techniques, they have intimate knowledge of operating systems, and they know how to get the most out of Windows Defender ATP features and capabilities.”
Like Azure Sentinel, Microsoft Threat Experts is currently in public preview. According to Johnson, the service can help short-handed end users and partners meet ever-rising demand for security know-how.
“With an estimated shortfall of over three million security professionals by 2021, there simply are not enough defenders to keep pace with the growing profit opportunity that cybercrime offers,” she says. “With Microsoft Threat Experts, we are empowering defenders and sec-ops teams to take advantage of Microsoft’s unique industry experience.”
According to Accenture, which is an early adopter of Azure Sentinel, cybercrime could cost businesses worldwide $5.2 trillion in additional costs and lost revenue over the next five years. In response, global outlays on security hardware, software, and services will climb at a 9.9 percent CAGR through 2022 to $133.7 billion, according to IDC.
Figures like that have many industry leaders rolling out managed security offerings. Master MSP Continuum, for example, added managed SIEM services to its growing security portfolio last June through its acquisition of CARVIR, a provider of security solutions for MSPs. SolarWinds MSP introduced a solution that combines SIEM functionality with intrusion detection and the threat intelligence functionality the following month, and added the ability to run the system on an outsourced as-a-service basis in September.
Distributor Ingram Micro, meanwhile, added a SOC-as-a-service offering of its own in partnership with Arctic Wolf in January. Two of Ingram’s leading competitors, Tech Data Corp. and SYNNEX Corp., offer extensive selections of managed security solutions as well.