At Microsoft's Post-CrowdStrike Summit, Security Vendors Promise To Be Better -- Redmond Channel Partner

At Microsoft's Post-CrowdStrike Summit, Security Vendors Promise To Be Better

By Gladys Rama
September 16, 2024

The dust hasn't settled on July's massive CrowdStrike outage that took down millions of Windows systems worldwide.

At an invitation-only summit last week, Microsoft convened with executives from some of its biggest security partners, including CrowdStrike, to "discuss strategies for improving resiliency and protecting our mutual customers' critical infrastructure," as the company put it in a subsequent blog post.

"Together with our Microsoft Virus Initiative (MVI) partners -- companies who develop endpoint protection and additional security products for Windows, covering client, server and IoT -- we discussed the complexities of the modern security landscape, acknowledging there are no simple solutions," Microsoft said.

The meeting was a direct response to this summer's CrowdStrike incident, which Microsoft said "underscored the responsibility security vendors have to drive both resiliency and agile, adaptive protection."

Besides CrowdStrike, represented companies included Trend Micro, ESET, Sophos, Broadcom, Trellix and SentinelOne.

Microsoft emphasized that the meeting was not focused on decision-making, though attendees appeared to reach a provisional agreement to explore ways to improve Windows 11 security outside the kernel. Microsoft has long touted Windows 11's security protections in kernel mode, but the CrowdStrike incident has exposed the need for "a new platform which can meet the needs of security vendors," Microsoft said.

Such a platform will need to address the following factors:

Performance needs and challenges outside of kernel mode
Anti-tampering protection for security products
Security sensor requirements
Development and collaboration principles between Microsoft and the ecosystem
Secure-by-design goals for future platform

Microsoft said it intends to develop a platform with these capabilities, though it did not give further specifics.

The meeting attendees also discussed best practices for deploying Windows updates en masse, "from deciding how to do measured rollouts with a diverse set of endpoints to being able to pause or rollback if needed." Pointedly, Microsoft noted that gradual update rollouts are a longstanding best practice.

Microsoft foresees these discussions resulting in more information-sharing between security vendors, improved component and compatibility testing, and more effective vendor coordination in recovery situations.

Collaboration is all, the meeting attendees concluded.

"We're competitors, we're not adversaries," said Microsoft. "The adversaries are the ones we need to protect the world from."

End users can help themselves, too, Microsoft pointed out. For instance, businesses should develop plans for business continuity and incident response, as well as schedule frequent backups.

About the Author

Gladys Rama (@GladysRama3) is the editorial director of Converge360.

Free Webcast! Learn about Password Management Best Practices

Featured

Microsoft CSPs To Start Selling Windows 10 ESU this Fall

Organizations that want to extend the life of their Windows 10 PCs can begin buying extension plans from Microsoft's Cloud Solution Provider (CSP) partners on Sept. 1.
2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.
Microsoft Gives Security Partners First Dibs at New Windows Security Platform

Microsoft is readying a new "Windows endpoint security platform" as part of its Windows Resiliency Initiative (WRI).
Microsoft Cements Lead in Increasingly AI-Centric Security Analytics

Forrester has singled out Microsoft as the leading cloud hyperscaler in the increasingly AI-driven field of enterprise security analytics.

RCP Update

Email Address*Country*

Please type the letters/numbers you see above.

At Microsoft's Post-CrowdStrike Summit, Security Vendors Promise To Be Better

Featured

Microsoft CSPs To Start Selling Windows 10 ESU this Fall

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Gives Security Partners First Dibs at New Windows Security Platform

Microsoft Cements Lead in Increasingly AI-Centric Security Analytics

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

So You Want To Be an MSP? Here's What It Really Takes

HPE Finalizes $14B Juniper Acquisition

TCS Expands Microsoft Integration To Drive AI, Cloud Adoption

Channel Veteran Dan Wensley Named GTIA CEO

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

So You Want To Be an MSP? Here's What It Really Takes

HPE Finalizes $14B Juniper Acquisition

TCS Expands Microsoft Integration To Drive AI, Cloud Adoption

Channel Veteran Dan Wensley Named GTIA CEO

Partner Guides

Partner's Guide to the Windows Server 2008 Deadline

Partner's Guide to Office 365 Security Costs

Partner's Guide to UCaaS

Partner's Guide to Starter Workloads in Azure

Partner's Guide to Microsoft's Fiscal Year 2019

FREE WEBCASTS FROM OUR SPONSORS

Tech Talk | Stop Buying What You Already Own: The MSP's Guide to Microsoft 365 Optimization

Veeam Data Cloud for Microsoft 365

Seamless Transitions: Migrating Your VMware Workloads to Azure

Azure Virtual Desktop: The Smart Choice for Remote Work Success

FREE WHITE PAPERS FROM OUR SPONSORS

The Easy Button eBook: Simplicity of SaaS-Based Backup for Microsoft 365

Unlocking the power of Microsoft 365 management: A toolkit for MSP success

How MSPs can future-proof Microsoft 365 management with automation and security

The future of M365 management