Based on a collaborative partnership between the Cybersecurity and Infrastructure Security Agency (CISA) and Microsoft, many Microsoft customers will now have access to expanded cloud logging capabilities at no additional charge, which will enhance cyber defense and incident response. Microsoft’s decision is a step toward advancing security by design principles and an example of effective partnership resulting in better cybersecurity at a national scale.  

Over the past several years, operational teams at CISA identified several security logs critical for detecting and preventing threat activity that cost extra for organizations utilizing the Microsoft basic enterprise license. For example, in a recent incident, an affected government agency used available logging data to quickly enable remediation actions to limit damage. Going forward, these additional logging capabilities will now be available at no extra cost to federal government customers and Microsoft commercial customers beginning in September.