Singapore – Illumio Inc., a breach containment company, has announced its participation in the Microsoft Sentinel partner ecosystem. The collaboration highlights Illumio’s expertise with Microsoft Security technologies and its role in enhancing the development of new solutions within the ecosystem.
Through its integration with Microsoft Sentinel, Illumio Insights can be applied directly to Sentinel’s data lake, security graph and Security Copilot. This enables security teams to identify risks more quickly, trace attack paths with greater accuracy, and contain threats within existing Microsoft environments.
The approach is designed to reduce alert fatigue, speed up investigations, and improve overall resilience against cyber breaches.
Andrew Rubin, CEO and founder of Illumio, explains that complete visibility and rapid containment are very crucial in our modern world with the increasing complexity of threats across hybrid and multi-cloud environments.
“By integrating Illumio Insights directly into Microsoft Sentinel, we’re empowering security teams to detect risks faster, follow attack paths with precision, and instantly isolate threats all within their existing Microsoft workflows,” Andrew said.
He added, “This collaboration reduces alert fatigue, accelerates investigations, and delivers effective breach containment and dramatic improvements in cyber resilience.”
Illumio is also working alongside Microsoft product teams to help shape the evolution of Microsoft Sentinel. This includes validating new scenarios, providing operational feedback, and supporting API extensibility.
“This transformation positions Microsoft Sentinel as the backbone of modern defence, offering deep context, connected insights, and empowering security teams to stay ahead of evolving threats,” Vasu Jakkal, corporate vice president at Microsoft Security, stated.
“We’re grateful to our partners who use Microsoft Sentinel, and this collaboration powers a collective defence– because after all, security is a team sport.”
In addition, Illumio is contributing by building connectors, analytics, playbooks, hunting queries, Jupyter notebook jobs and Security Copilot agents.
Microsoft Sentinel is evolving from its traditional role as a security information and event management (SIEM) system into an AI-ready platform. It now unifies security data into a single enriched data lake, providing intelligent reasoning tools and graph-powered visibility to help defenders act with precision against increasingly complex threats.
