Microsoft Ignite 2025: Building Digital Trust for AI Agents

Securing AI Agents and Applications

Microsoft unveiled new capabilities designed to help organizations manage their growing fleet of AI agents with visibility, governance, and complete lifecycle protection.

Microsoft Agent 365: The Control Plane for AI Agents

Agent 365 centralizes how organizations observe, manage, and secure AI agents, regardless of whether they are built with Microsoft tools, open-source frameworks, or third-party systems. Its key features include:

• Agent Registry: A unified inventory of all agents across the enterprise, including shadow agents. IT teams can also quarantine unsanctioned agents to prevent access to users and resources.
• Adaptive Access Control: Built on Microsoft Entra, enabling real-time access decisions based on agent behavior and risk.
• Visualization Dashboard: A map of agent interactions, dependencies, and resource access patterns.
• Interoperability: Agents can work seamlessly across Microsoft 365 applications and other ecosystems, accelerating outcomes through contextual insights.
• Integrated Security: Defender, Entra, and Purview ensure protection against prompt injections, data leaks, vulnerabilities, and policy violations.

Microsoft Foundry Control Plane

Developers can now build, manage, and secure agent fleets at scale, with native integration of Defender, Entra, and Purview. Developers can publish agents directly to Agent 365, ensuring consistent governance from development to deployment.

Microsoft Security Dashboard for AI

A unified dashboard providing visibility into the security posture of all AI systems—agents, applications, data flows, and access patterns. It consolidates signals across Defender, Entra, and Purview to surface risks and compliance issues in one place.

Enhancements to Microsoft Purview for Microsoft 365 Copilot

Purview now offers:

• Oversharing reports within the Microsoft 365 admin center
• Automated remediation of overshared links
• Data loss prevention for Copilot prompts
• Automated deletion schedules for sensitive Teams transcripts
• Controls for excluding sensitive files from processing

These updates allow security teams to respond to data risks with speed and precision.

Securing Cloud Platforms and Infrastructure

AI-powered innovation demands equally advanced protection at the platform and cloud level. Microsoft introduced significant updates across Defender, Intune, GitHub, and the Windows ecosystem.

Microsoft Defender + GitHub Advanced Security Integration

This integration enables a stronger shift-left security posture by allowing:

• Earlier detection of vulnerable code
• Remediation via Copilot Autofix
• Validation of fixes in Defender

Security and development teams can now collaborate more efficiently to secure applications end-to-end.

Baseline Security Mode

Now generally available, this mode aligns organizations with Microsoft-recommended security configurations. A guided experience helps assess gaps, simulate configuration changes, deploy updates, and improve audit readiness.

Intune and Windows Security Enhancements

New capabilities include:

• Phased AI rollouts for risk-controlled deployment at scale
• Faster, reliable recovery using remote management of Windows Recovery Environment
• Hardware-bound certificates for authenticated recovery actions
• Maintenance windows for precise update control

Combined with Windows’ new post-quantum cryptography support, these enhancements help organizations modernize securely.

Agentic Defense: Using AI to Secure AI

With escalating AI-driven threats and global security workforce shortages, organizations need more than human-scale defense. Microsoft is introducing Security Copilot agents across Defender, Entra, Intune, and Purview to help teams become proactive rather than reactive.

These AI agents can:

• Triage incidents
• Optimize conditional access policies
• Analyze threat intelligence
• Manage device compliance
• Streamline remediation workflows

Security Copilot will now be included for all Microsoft 365 E5 customers, making advanced AI-driven protection more accessible.

Predictive Shielding in Microsoft Defender

Cyberattacks continue to grow in automation and sophistication. Microsoft Defender’s new predictive shielding uses graph insights and global threat intelligence to anticipate attacker movement and harden potential attack pathways before exploitation occurs.

This proactive, just-in-time hardening minimizes business disruption and helps organizations stay ahead of adversaries.

Introducing Microsoft Defender Experts Suite

Launching in early 2026, this suite offers:

• Managed extended detection and response
• Proactive incident response
• Direct access to Microsoft security advisors

It is designed for organizations seeking expert-led, AI-powered protection without heavy internal staffing requirements.

Real-World Use Cases

• ContraForce: Multi-tenant, multi-agent platform for MSSPs using Microsoft Security tools (Sentinel, Defender XDR), enabling analysts to manage 3× more customers.
• Stemtology: AI-driven regenerative medicine research, using multi-agent workflows on Azure to cut experimental timelines by 50% and scale to 100+ diseases.
• SolidCommerce: Retail AI platform powered by Azure AI Agents, automating customer inquiry handling with data retrieval, merchant approval workflows, and personalized responses.

Building Security into the Core of the AI Future

Microsoft emphasized that in the agentic era, security must be the core primitive-woven into silicon, operating systems, agents, applications, data, platforms, and clouds.

The vision is a future where human defenders and AI agents work together to secure innovation at scale. With unified security architecture, autonomous protections, and continuous intelligence, organizations can confidently adopt AI while ensuring strong digital trust.