Microsoft Events presents an advanced session on leveraging Defender for Office 365 and agentic AI to enhance organizational security for email and collaboration, focusing on automation and real-world defense techniques.

Securing Email and Collaboration with Microsoft Defender for Office 365 and Agentic AI

Presented by Microsoft Events speakers Ramya Chitrakar, David Fantham, and Jeff Pinkston at Ignite 2025, this session covers:

Session Highlights

  • Automated AI Defense: Leveraging AI to correlate multi-stage attack signals and coordinate rapid response across collaboration platforms.
  • AI-Powered SoC Automation: Streamlining security operations center workflows, including enhanced analysis of user-submitted phishing threats.
  • Continuous Learning Feedback Loops: Utilizing feedback for improved AI threat detection and proactive protection.
  • Manual vs. Automated Triage: Demonstrating the evolution from manual triage processes to parallel triage and remediation powered by AIR (Automated Incident Response) capabilities.
  • Emerging Threats: Addressing mixed-mode social engineering and evolving threat actor tactics in modern collaboration environments.
  • Defender Response Strategies: Disrupting multi-channel attacks with inline remediation and rapid removal of compromised users from chats.
  • Posture Management and Custom Rules: Implementing posture management and crafting custom detection rules to close the security loop.

Technical Takeaways

  • Ecosystem Integration: Defender for Office 365 connects with broader Microsoft security tools and services for unified operations.
  • Automation and AI: Machine-speed detection and response enable security teams to outpace evolving threats.
  • Protection Improvements: Continuous learning updates ensure the platform adapts to new attack vectors and social engineering strategies.

Resources

Presented By

  • Ramya Chitrakar
  • David Fantham
  • Jeff Pinkston

This session offers actionable insight for security engineers and architects seeking to modernize SecOps through AI-guided automation and advanced Microsoft Defender strategies.