Lookout Brings Mobile Cyber Threat Telemetry Dataset to Microsoft Azure Sentinel

August 31, 2021
Download Case Study


I’m excited to announce that Lookout has extended its partnership with Microsoft to ensure our threat telemetry data is easily accessible via the Microsoft Azure Sentinel Security Information and Event Management (SIEM) solution. With this integration, Azure Sentinel users can leverage a rich mobile dataset within the Lookout Security Graph.

When it comes to increasing productivity, we want to work smarter. By providing users with a more streamlined user experience than traditional computers, smartphones and tablets have outpaced traditional endpoints for getting the job done. According to IDC, mobile workers will account for 60 percent of the total U.S. workforce by 2024.

Mobile technology has provided nearly everyone the flexibility to work from anywhere. With 5G connectivity and cloud apps, your employees can access the same data and perform the same work as they can from traditional endpoints. In order to tap into the full potential of smartphones and tablets, it’s critical that SIEM tools like Azure Sentinel have the same visibility into security information and events on mobile devices as traditional endpoints to ensure your organization stays secure.

Lookout brings rich mobile cyber threat telemetry

Cyberattackers benefit from the speed and efficiency mobile devices have introduced to the workflow of your employees. It’s rare for a cyberattack to only involve traditional endpoints. Cyberattackers have shifted phishing campaigns to mobile devices as their primary target because they know how much your employees depend on them to be productive. In fact, over the past year mobile phishing exposure rates increased by 97 percent, globally.1 To ensure your organization is fully secure, you need full visibility into everything that’s going on — including smartphones and tablets.

With this new integration, you can now take advantage of Lookout Mobile Endpoint Security and its Security Graph within your Azure Sentinel infrastructure. With crowdsourced data from hundreds of millions of mobile devices, apps and phishing sites, Lookout secures against the entire spectrum of mobile risk. Our cloud-delivered solution enables us to leverage machine intelligence to efficiently detect and respond to both known and unknown threats, providing you insights and visibility that would otherwise be inaccessible.

Make securing your organization easier than ever

Every organization's security environment has become more complex as people continue to work from anywhere and incorporate mobile devices into their productivity workflows. To better orchestrate and secure your environment, it’s important to have your security alerts and telemetry in one place. With our partnership with Microsoft, Lookout has made it easy for your organization to have more complete visibility into your endpoint threat telemetry in Azure Sentinel.

To ensure a seamless deployment, we’ve built a data connector from which – in just three clicks – SOC analysts can access Lookout telemetry data within Azure Sentinel and their environments. . Our data connector comes with a ready-to-use workbook that you can use to either quickly visualize and operationalize Lookout data or as inspiration for creating your own workbook.

Complete endpoint security must include mobile endpoints

To meet the increasing demands of your business, your employees expect to be able to seamlessly work from any device. Your goal is to ensure your data is secure while empowering them to work from anywhere.

"I’m excited that we’ve expanded our partnership with Microsoft, building on top of our integrations with Microsoft Endpoint Manager (for managed and unmanaged BYO devices), Microsoft Defender for Endpoint and Lookout CASB and ZTNA for Microsoft 365 and Azure. This is a key integration for customers that require integrated threat data and response."
— Christina Jensen, Senior Product Manager, Lookout

To ensure your organization is secure from app, device, network and phishing threats targeting smartphones and tablets, you need the visibility and telemetry from these devices. With this integration, Lookout is able to seamlessly share the rich telemetry from it’s industry-leading mobile security solution.

"We welcome the integratedMicrosoft Azure Sentinel Solution which leverages the Lookout mobile security capabilities and threat intelligence dataset to bring insights into mobile threats to Azure Sentinel. Combining this insight with Azure Sentinel’s correlated threat alerts from across enterprise systems provides a valuable perspective needed for zero trust visibility and protection."
— Eric Burkholder, Senior Program Manager, Cloud + AI, Microsoft

Lookout was nominated into the Microsoft Intelligent Security Association (MISA) in 2018 as one of the initial members. The Microsoft Azure Sentinel integration joins the Lookout MISA product portfolio along with its Microsoft Endpoint Manager and Microsoft Defender for Endpoint integrations.

Check out this video to learn more about the Lookout-Microsoft integration.

You can also read more about the Lookout-Microsoft partnership at the Microsoft partner page.

1 — Lookout mobile phishing data between 2020Q2 and 2021Q1

Discover how Lookout can protect your data