SUSE Security Events Integrated with Microsoft Sentinel and Security Copilot

Starting today, SUSE Security, previously known as NeuVector, is teaming up with Microsoft’s Sentinel SIEM/SOAR platform and Security Copilot. This partnership aims to enhance visibility and insights for organizations utilizing Azure, thanks to SUSE’s open-source technology.

This announcement was made during the SUSECON 2025 event held in Orlando, Florida. SUSE has officially rebranded NeuVector to SUSE Security, but the core service remains unchanged. The security challenges that organizations face in cloud environments persist, particularly the issue of visibility, which continues to be hampered by a lack of integrated tools.

Centralized Security Management

As cyber threats evolve and grow in sophistication, cloud-native environments have become prime targets due to their expansive attack surfaces. A streamlined approach is essential amid this complexity. By integrating with Sentinel, SUSE Security enhances its offerings, allowing for a more comprehensive view throughout the entire container lifecycle—from initial creation and deployment to updates and eventual decommissioning.

The integration results in a unified security dashboard for customers, reflecting a growing trend among security vendors to consolidate their tools into a single platform. Within this dashboard, Microsoft Sentinel can automatically trigger alerts and isolate affected nodes when threats are detected. This proactive measure helps curtail the spread of attacks while ensuring that a human operator remains involved in managing risks.

SUSE’s strategic direction aligns closely with Microsoft’s vision for a cohesive security operations platform, merging various tools for more effective threat management.

Functionality of Security Copilot with SUSE Security

The collaboration extends beyond SUSE Security and Microsoft Sentinel to include Security Copilot. This tool analyzes data from SUSE Security and provides AI-driven recommendations for mitigating current and potential threats. By correlating this information with other data within Sentinel, Security Copilot can reveal complex attack patterns that might otherwise go unnoticed.

David Houlding, Director of Global Healthcare Security & Compliance Strategy at Microsoft, emphasized the importance of having the right tools in today’s challenging cybersecurity landscape. “In an environment where threats are becoming more elaborate, it’s critical for organizations to quickly recognize and address security issues,” he stated. He added that the partnership with SUSE will help their shared customers streamline their security operations and enhance their defenses against threats.

SUSE provides users with the flexibility to choose from various Kubernetes management layers. However, they recommend deploying their own Rancher Prime to maximize the benefits of this integration. Together with Microsoft’s Sentinel and Security Copilot, organizations can gain comprehensive threat intelligence, AI-driven insights, and automated protection.

Related Insight: SUSE CEO states, “For secure software, an open-source foundation is essential.”