
Work Here?
BlueVoyant provides cyber defense solutions via a cloud-native platform that combines internal and external security operations to protect networks, endpoints, and the digital attack surface. It continuously monitors environments and uses threat detection and analytics to give real-time visibility. A major focus is supply chain security, using machine-learning automation and human expertise to identify, validate, and mitigate threats across complex third-party networks by monitoring domains, websites, social media, and applications. It also offers specialized Microsoft Security tools services and serves commercial and government clients, aiming to reduce digital risk and enable proactive defense across on-premises and cloud environments.
Industries
Data & Analytics
Cybersecurity
Company Size
501-1,000
Company Stage
Series E
Total Funding
$695.5M
Headquarters
New York City, New York
Founded
2017
People at BlueVoyant who can refer or advise you
Help us improve and share your feedback! Did you find this helpful?
Total Funding
$695.5M
Above
Industry Average
Funded Over
6 Rounds
Industry standards
Flexible Work Hours
Remote Work Options
BlueVoyant launches first dedicated AI agent security service for Microsoft environments. Jennifer Smith, Content Manager | Published 6 July 2026 The first security service built to govern AI agent identities, permissions, and behaviour before they become a liability BlueVoyant, a leading cybersecurity company, today announced the availability of its Microsoft Agent 365 Security Deployment Service, the first professional services program to help enterprises discover, govern, and secure the AI agents running across their Microsoft environment. The service launches as organisations worldwide race to adopt AI agents faster than their security teams can govern them. Enterprises are integrating AI agents (including Microsoft 365 Copilot, Copilot Studio, Azure AI Foundry, and third-party agents) into critical business workflows at an unprecedented pace. But these agents represent a fundamentally new class of non-human identity. These agents can read sensitive data, call external tools and MCP servers, and act autonomously on behalf of users and organisations. Most enterprises have no inventory of which agents exist, no identity or access policies applied to them, and limited ability to detect or respond to agent-related threats. "AI agents are the fastest-growing attack surface that most security teams aren't watching," said John Hernandez, CEO at BlueVoyant. "The question isn't whether enterprises are running agents. They are. The question is whether those agents are governed. Right now, for most organisations, the answer is no." A Control Plane for the Agentic Enterprise The BlueVoyant Microsoft Agent 365 Security Deployment Service addresses this gap by establishing Microsoft Agent 365 as a centralised control plane for AI agent governance. The engagement configures Agent 365 alongside the Microsoft security stack (Microsoft Entra, Microsoft Defender for AI, and Microsoft Purview) so that AI agents are governed with the same rigour as any other identity in the enterprise. Over the course of a guided, approximately 90-day engagement, BlueVoyant's experts work directly within the client's Microsoft tenant to deliver: * Agent inventory and registry: A view into which agents exist, who owns them, what data they can access, and what tools they can invoke - including shadow AI detection for agents deployed without IT knowledge. * Identity and access controls: Agent Conditional Access and Identity Protection policies configured in Microsoft Entra, treating agent authentication with the same scrutiny as human user authentication. * Threat detection and response: Microsoft Defender Security for AI enabled and integrated with Defender XDR, providing detection and response capabilities specific to agent-related threats. * Data protection policies: Microsoft Purview DLP and Insider Risk Management extended to AI agents, reducing exposure from data oversharing and unauthorised access. * Client-owned configuration: All configuration lives within the client's tenant. BlueVoyant delivers the expertise and the blueprint; the client retains full ownership at engagement close. Addressing a Market Gap with Microsoft The service is designed to attach directly to Microsoft 365 E7 and Agent 365 deployments and is aligned with AI Cloud Partner Program incentives. It positions BlueVoyant as one of the first security partners with a defined, repeatable AI-agent security offer - a strategic advantage as the agentic AI market matures. "At the conclusion of the engagement, clients will have clear answers to the foundational questions every security leader should be asking today: What AI agents do we have? Who owns them? How are they governed? And what happens when one is compromised" said Sebastian Sobolev, Chief Product Officer at BlueVoyant. The Microsoft Agent 365 Security Deployment Service is available immediately. Clients must have Microsoft E5 or E7 licensing with the Agent 365 add-on to be eligible.
Sophia lagerkrans-pandey and micah heaton. A practical guide for security leaders with BlueVoyant's perspective from the ground at Ignite. Microsoft Ignite 2025 delivered big news for security professionals. The theme this year is clear: Microsoft is giving customers more capability inside the tools they already own, focused on AI agents and integrations. Whether you are a small IT team, a mid-market group, or a global enterprise, these updates can transform your security posture. BlueVoyant was on the ground at Ignite, and BlueVoyant International is here to break down the top five security insights plus a bonus and share practical steps to help you activate these innovations. 1. Security Copilot Entitlement Arrives for Microsoft 365 E5 Customers Security Copilot is now included in Microsoft 365 E5. Rollout begins in 2025, giving customers a meaningful block of Security Compute Units (SCUs) without extra licensing. This means AI-powered investigation, response, and automation are now accessible to organizations of every size. You do not need a large SOC to realize value. You only need a clear adoption plan and guided workflows. Why it matters: Copilot will redefine how teams respond to threats, automate workflows, and close the expertise gap. But success depends on more than entitlement; it requires a clear vision for adoption. 2. Microsoft Defender capabilities include proactive mid-attack action Microsoft Defender is introducing several features, strengthening its ability to detect and thwart attacks. First is Predictive Shielding, a component of automatic attack disruption, that can anticipate attacker movement and apply just-in-time hardening actions to critical assets, reducing thousands of potential attack paths to just a handful, optimizing business continuity while minimizing risk. Microsoft is also extending automatic attack disruption beyond Defender to AWS, Proofpoint, and Okta via Sentinel signals. This will enable real-time detection and containment of threats like phishing and identity compromise across federated accounts and cloud boundaries. They also announced a Threat-Hunting Agent that will orchestrate full threat-hunting sessions through natural language and receive summarized answers, underlying KQL queries and dynamic follow-up suggestions all within a chat interface. The agent will also provide contextual insights and visualizations like timelines, making advanced hunting accessible even to those without query expertise. Why it matters: SOC teams receive incidents at a scale that isn't maintainable. Predictive capabilities reduce manual effort and accelerate containment, especially for hybrid and multi-cloud environments. This update will allow SOC teams to focus on high priority incidents. 3. Security Copilot and Security Store Expand Agent-Powered Security Microsoft expanded the Security Store and introduced 12 new built-in agents across Defender, Entra, Intune, and Purview. The Security Store now offers 100+ solutions, including partner agents and service offerings. BlueVoyant's own Security Copilot agents were featured at Ignite, including the Watchtower Agent, which helps SOC teams maintain visibility and optimize Microsoft Security tools through automated health checks, variance analysis, and actionable recommendations. Why it matters: Agents will become the backbone of automated triage and investigation. Governance and safe adoption are critical to avoid complexity and risk. Selecting and deploying the right Security Copilot agents is not just a technical decision; it is a strategic move that shapes how your organization leverages AI in security operations. BlueVoyant helps you cut through the noise by identifying which agents align with your business objectives and risk posture. Its team ensures these agents are deployed and governed effectively, while building automated triage and investigation workflows that accelerate response and reduce analyst fatigue. BlueVoyant International also map agent usage to your Security Copilot SCU entitlements to maximize ROI and provide expert guidance on safe, responsible adoption practices. This approach empowers your SOC to move beyond reactive security and embrace a proactive, AI-driven model. 4. Microsoft Sentinel Becomes an AI-Ready Security Platform Sentinel now includes a modern data lake, graph capabilities, and an MCP server, enabling richer analytics and improved entity understanding. Sentinel is evolving from a traditional SIEM to an intelligence layer for teams of all sizes that support richer analytics and entity understanding. Why it matters: Sentinel is no longer just about log aggregation; it is the foundation for AI-driven detection and response. 5. Unified Security Cloud Posture Across Azure, AWS, and Google Cloud Defender for Cloud and Sentinel now provides unified posture management across Azure, AWS, and GCP. This gives customers a single view of configuration drift, exposure, vulnerabilities, and attack paths. Why it matters: Fragmented visibility is one of the biggest challenges in cloud security. Unified posture management simplifies governance and accelerates remediation. Small teams no longer need multiple consoles. Larger teams gain consolidated posture visibility across cloud boundaries. Bonus Insight: Microsoft Purview Adds AI-Driven Data Security and Governance Purview now offers AI-powered DSPM, agent governance controls, stronger DLP for Copilot prompts, and two new Security Copilot agents for data security. These updates unify data security, compliance, and AI safety. Why it matters: Data security is becoming inseparable from AI governance. Organizations need a holistic approach to protect sensitive information in an AI-driven world. The future of productivity is AI-powered. Make sure your data security strategy is too. Start with BlueVoyant's Data Security Diagnostic
BlueVoyant partners with Axio to modernize cybersecurity vendor selection.
BlueVoyant launches VISIBL mROC Service to power proactive cyber risk management with Qualys.
BlueVoyant unveils new enterprise cybersecurity solution to strengthen cyber defense and manage costs.
Find jobs on Simplify and start your career today
Industries
Data & Analytics
Cybersecurity
Company Size
501-1,000
Company Stage
Series E
Total Funding
$695.5M
Headquarters
New York City, New York
Founded
2017
Find jobs on Simplify and start your career today