Microsoft Scenario Library Information Technology Perform a security incident investigation

Available with: Copilot for Security

Information Technology scenario: Perform a security incident investigation

Back to Information Technology Scenarios Download scenario guide

Scenario

Security Copilot is designed to help IT security professionals work more efficiently and speed time to resolution of security incidents. One area Copilot can assist is investigating incidents.

1. Summarize incident

A security analyst wants to get a summary of an incident in Defender XDR or Unified Security Operations Platform.

Copilot icon

Copilot for Security

Prompt: Summarize Defender incident <DEFENDER_INCIDENT_ID>

Activity in embedded: Or open the incident page and click on the INCIDENT in the Defender XDR portal or Unified SecOps platform

KPIs

Opportunity to impact key functional area KPIs

How Microsoft Copilot can help improve budget variance

Keep your budgets on track by improving employee and process efficiency.
Create internal feedback loop to identify cost saving areas:
  • Draft employee surveys focused on the value of resources utilized and ideas for cost savings
  • Analyze surveys to gain valuable insights into what makes employees happy or areas that need improvement within the organization

How Microsoft Copilot can help improve app usage rates

Create great onboarding experiences and collect and analyze feedback to improve user experiences
Create onboarding materials:
  • Use Copilot to draft training guides
  • Use Copilot to enhance employee handbooks
  • Generate news and announcements

How Microsoft Copilot can help improve the product adoption rate

Create great onboarding experiences and collect and analyze feedback to improve user experiences.
Create onboarding materials:
  • Use Copilot to draft training guides
  • Use Copilot to enhance employee handbooks
  • Generate news and announcements

How Microsoft Copilot can help improve NPS

Real-time AI assistance for faster issue resolution allows agents to focus on delivering high-quality service.
Incorporate feedback:
  • Rapidly analyze customer feedback
  • Quickly create recommendations
  • Swiftly update scripts and processes
  • Create communications to socialize the changes

How Microsoft Copilot can help reduce costs

Use the time savings gained from Copilot to bring activities in-house and reduce reliance on external resources.
Create internal feedback loop to identify cost saving areas:
  • Draft employee surveys focused value of resources utilized and ideas for cost savings
  • Analyze surveys to gain valuable insights into what makes employees happy or areas that need improvement within the organization

How Microsoft Copilot can help optimize service outage response

Copilot helps you work to get your services back up and running and maximize user satisfaction.
Respond to user complaint or inquiry:
  • Respond quickly to inbound emails
  • Access customer records for improved support
  • Gets answer fast by searching internal sites and documents

How Microsoft Copilot can help reduce average support ticket resolution time

Microsoft Copilot enhances customer support by integrating AI assistance into self-service and service desk workflows.
Increase support communications and follow up efficiency:
  • Have Copilot assist with emails inbound and outbound emails
  • Draft email comms and announcements with Copilot
  • Generate meeting notes and follow up items

The content in this example scenario is for demonstration purposes only. You should evaluate how Copilot aligns with your organization’s business processes, regulatory requirements, and responsible AI principles.