Microsoft Graph Security API now generally available
Updated: November 13, 2019
Simplify integration of Microsoft and partner security solutions with the Microsoft Graph Security API. Microsoft Graph Security API provides a standard interface and uniform schema to integrate security alerts, unlock contextual information, and simplify security automation.
As the number of security solutions and the volume of security data grows, the ability to quickly extract value becomes more difficult. Integrating each new solution with existing security tools and workflows means added cost, time, and complexity. The unified security API makes it easy to connect with Microsoft and partner security solutions:
· Unify and standardize alert management—Write code once to get alerts from any Microsoft Graph Security provider, correlate alerts across security solutions more easily with a common alert schema, and keep alert status and assignments in sync across all solutions.
· Unlock security context to inform security operations—Integrate insights about users, hosts, apps, security controls (Secure Score and configurations), and organizational context from other Microsoft Graph providers (Azure Active Directory Microsoft Intune, Office 365, and others).
· Simplify security orchestration and automation—Develop investigation and remediation playbooks that call Graph Security to take actions, automate security policy checks and rule enforcement, and orchestrate actions across security solutions.