Summary
In this module, you explored how Microsoft Security Copilot enhances security operations workflows across both the standalone and embedded experiences. Through a series of interactive guides, you configured owner settings, used prompts and promptbooks to investigate security scenarios, and created a custom promptbook to streamline a repeatable investigation workflow. You then used Security Copilot within Microsoft Purview to investigate data protection activity, insider risk alerts, data loss prevention (DLP) alerts, and unlabeled sensitive content in eDiscovery. Finally, you used Security Copilot in Microsoft Defender XDR to investigate security incidents, analyze artifacts, and perform advanced investigation.
These interactive guides demonstrated how Security Copilot integrates with the Microsoft Security solutions you use every day, helping you investigate and respond to threats more efficiently.