PwC Cybersecurity portfolio powered by Microsoft

Cybersecurity doesn’t have to be complex. The objective of this portfolio rationalisation effort is to simplify the cybersecurity portfolio to reduce the cost and complexity of client environments. Every extra tool a client has is an extra tool they have to manage – businesses often have redundant tools that cost them time and money. 

PwC helps organisations to optimise, rationalise, and maximise their cybersecurity capabilities, identify gaps and facilitate adoptions of Microsoft cybersecurity technologies, all as baseline to coordinate further security implementations.

PwC’s Identity and Access Management (IAM) solution helps clients address IAM related business challenges, ranging from supporting digital transformation, securing and governing access, managing access during mergers and divestments, and enabling a seamless customer experience. PwC uses the Microsoft Entra product suite to advise clients on effective risk-based governance strategies. The Microsoft Security Copilot is now a part of the Microsoft Entra suite, e.g. to detect overprivileged access or to describe access policies. PwC’s IAM solution enables our clients to maximise value from Microsoft’s Security, Compliance, and Identity multi-cloud services by leveraging their existing security investments and optimizing coexistence with other security solutions.

PwC’s Information Protection and Data Governance solution assists clients to manage both structured and unstructured data across its full lifecycle – discovery, classification, control, management and loss prevention. PwC provides policy, process and control services across the entire information lifecycle (from legal, regulatory and IP protection to data discovery and analytics, data protection and insider risk, response services and resilience planning). PwC leverages Microsoft’s Information Protection and Governance suite (Purview), which includes the AI-powered Microsoft Security Copilot to provide the client with a strong foundation across the entire information lifecycle and integrated with other security controls.

PwC’s Cyber Operations solution assists clients as they adopt cloud-first strategies to develop plans to address legacy systems for Security Information and Event Management (SIEM) that are becoming less effective, more time-consuming and more expensive to scale. PwC has teamed with Microsoft to create a cyber operations solution specifically built upon Microsoft Sentinel. We provide rapid transition of the data sources, use cases and related customisable content from legacy SIEMs to Sentinel. This new SIEM set-up will allow PwC clients to build next-gen security operations center (SOC). With AI and automation at its core through a tight integration with Microsoft Security Copilot, this new setup forms the basis for advanced risk analysis and response.

PwC’s Managed Services and Microsoft Verified MXDR solutions provide 24x7x365 incident monitoring across M365 Defender and Microsoft Sentinel. PwC has a proven end-to-end process from incident receipt to resolution (including resolving incidents and alerts) in M365 Defender and Microsoft Sentinel to support our clients. PwC leverages automation and AI-infused service operation with Microsoft Security Copilot, to automate security workflows and streamline process, as well as the built-in response capabilities of Microsoft’s Defender (e.g.: isolate machine, live response, block file, suspend user, delete mail), as part of a client’s response plan.

PwC’s Cyber Defense solutions enable organisations to proactively identify environmental threats and respond to various threats from inside and outside the organisation. PwC’s solution span the range of the Microsoft suite of products (Cloud Apps, M365, Identity, Endpoint, IOT/OT, Cloud) integrated with Security Copilot. Our approach blends Microsoft products with advanced AI technologies, allowing us to streamline implementation processes while deeper visibility into potential security risks. From strategy to execution, we help clients understand how and when to implement the Microsoft Defender Suite to better protect their organisation’s environment either on-premises or in the cloud.

PwC’s OT/IOT solution helps clients realise the value of the Microsoft Defender for IoT (D4IoT). D4IoT bridges the gap between Information Technology (IT) and Operation Technology (OT) with non-intrusive, passive Network Traffic Analysis (NTA) and ongoing asset monitoring and information collection of Operation Technology (OT) and the Internet of Things (IoT) devices. PwC’s solution supports clients through all the phases of Design, Build, Pilot and Optimise by developing an OT Target Operating Model to better protect their organisation’s environment either on-premises or in the cloud.

Securing SAP on Microsoft Cloud is a collaborative solution between PwC and Microsoft to help clients securely deploy SAP to the Azure cloud. Our expertise in assessment, design and implementation within the Microsoft Cloud confirms our clients are able to adopt a security model which works for their organisation, and which provide the most effective protection for their SAP instances and data. In addition, our implementation support offerings can enable several deployments including Microsoft’s customised SAP Sentinel Security Monitoring solution.

PwC’s Zero Trust solution is focused on creating an ecosystem that includes building a secure foundation around data, services, users, networks, and devices, enabling Zero Trust through conditional access and securing resources. PwC takes clients on a Zero Trust journey, which builds increased security capabilities over time as the client matures. PwC leverages Microsoft’s Zero Trust ecosystem, which focuses on the following 3 principles: verify explicitly, use least-privilege access, and assume breach. The approach emphasises use cases around users and devices accessing resources securely through Azure, Microsoft Entra, Security Service Edge (SSE), and includes a plan that identifies key maturity milestones.