EDIT :
<Entries to this Early Access Programme are now closed. Please reach out to me directly at gaurav.gyan.sharma@ibm.com for any questions.>
Hi QRadar Community,
I have more exciting news!
In our continued efforts to support and expand our Microsoft partnerships, we are happy to announce that we are participating in the private preview of MS Alerts API by releasing an Early Access DSM for Microsoft Defender for Endpoint.
IBM will be launching a closed beta initially in partnership with MSFT. Meaning that as MSFT has their closed beta, we’ll run one together! Let us know if you’re interested and would like to take part! I’ll update this blog once we close the beta.
I do wish to emphasize that our QRadar users can continue to use our existing Microsoft Defender for Endpoint integration. Further, we plan to release our official DSM as MSFT makes general availability of the API endpoint.
See Microsoft’s notice here - https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/deprecating-the-legacy-siem-api-postponed/ba-p/3139643#:~:text=The%20legacy%20Microsoft%20Defender%20for,customers%20to%20April%201st%2C%202022.
After collecting initial feedback on this closed beta, we look forward to releasing the updated DSM for all customers to test in the coming weeks with Microsoft’s public preview release.