CISA-Microsoft Partnership Broadens Logging Capabilities to Strengthen Cybersecurity

In an effort to enhance cyber protection and incident response capabilities, the Cybersecurity and Infrastructure Security Agency (CISA) and Microsoft have joined forces to offer free cloud logging tools to numerous Microsoft customers. This collaborative decision marks a significant advancement in security practices and serves as a commendable example of a successful partnership that contributes to bolstering national cybersecurity.

Become a Subscriber

Please purchase a subscription to continue reading this article.

Subscribe Now

Over the course of several years, CISA's operational teams have identified a multitude of security logs crucial for detecting and blocking potential threat behavior. However, these logs were previously only available at an additional cost for enterprises using the Microsoft basic enterprise license. This limitation raised concerns about the accessibility and affordability of essential logging features for businesses seeking robust cybersecurity measures. Recently, a government agency was able to swiftly remediate damages by leveraging the valuable logging data provided by Microsoft's cloud logging tools.

Beginning in September 2023, both federal government agencies and Microsoft's business clients will receive these vital logging features for free. This strategic move is expected to empower organizations with enhanced capabilities to identify and respond to cybersecurity threats effectively. By making these logging tools accessible to a broader audience, Microsoft is exemplifying its commitment to security by design and fulfilling its role as a responsible technology leader.

CISA Director Jen Easterly expressed her satisfaction with the collaborative effort, stating, "After working collaboratively over the past year, I am extremely pleased with Microsoft's decision to make necessary log types available to the broader cybersecurity community at no additional cost." This progressive step is anticipated to encourage more organizations to adopt the Secure by Design approach, where security features are integrated from the outset rather than added as an afterthought. The collective aim is to build a more resilient cybersecurity landscape, fortified against emerging threats.

Moreover, this partnership demonstrates Microsoft's responsiveness to the call made by CISA for the technology industry to take proactive measures to safeguard against potential cyberattacks. Asu Jakkal, Corporate Vice President of Security, Compliance, Identity, and Management at Microsoft, emphasized the company's commitment to collaborating with customers, partners, and regulators to meet the evolving security needs of the modern digital landscape.

This collaboration is a significant milestone in the realm of cybersecurity, as it paves the way for increased industry cooperation and knowledge sharing.