Microsoft Security Copilot, an AI cybersecurity product for threat detection and response, is now generally available for IT pros within the Surface Management Portal (SMP). For those unaware, SMP is a dedicated workspace within the Intune admin center for Surface device data and insights. The integration brings generative AI to Surface device management workflows.
This development is an expansion of Microsoft’s Security Copilot’s GA for Entra which was announced at the same time. Microsoft announced four key pillars where Security Copilot can help in Entra: identity insights and investigation, access governance and review, app and resource protection, and monitoring and posture management.
With Security Copilot, SMP is enhanced with a conversational AI layer which gives admins easier access and action on data. For example, you could ask things like “Which devices are out of compliance and out of warranty?, “Show devices with TPM disabled and BitLocker off”, or “Estimate carbon emissions from our Surface fleet”.
This new feature offers admins tangible benefits like faster resolution, less manual effort, tailored insights, and a stronger security posture. Admins that have tried this in public preview since February reported sharpened decision making.
Discussing the integrated nature of Security Copilot and SMP, Microsoft"s Rohan Brooker said:
“Security Copilot in the Surface Management Portal brings the integrated value of Microsoft Surface hardware, Windows firmware, Intune, and Security engineers operating as one team. Together, they enable signals to move seamlessly from Surface devices into Intune and Copilot’s language model—giving admins richer, real-time context with the tools they already use.”
To use this feature, you’ll need to add Security Compute Units (SCUs) and enable the SMP plugin in Security Copilot. While this may already be out of beta, Microsoft still wants to hear what you think, you can use the feedback button in the portal to suggest improvements.