Microsoft is introducing a new Centralized portal called the Windows Security Center with the Latest Windows 10 Creators Update. The new security feature will help IT admins to monitor, track and act fast on security issues.
The Windows Security Center will be linked to Office 365 Advanced Threat Protection which will allow the IT admins to easily follow an attack across endpoints and email in an integrated way.
The Redmond Giant has plans to also expand the Windows Defender ATP sensors to detect threats that persist in memory or at kernel level allowing IT admins to monitor loaded drivers and in memory activities and in memory modifications indicating potential kernel exploits.
The IT Admins have the option to also feed their own intelligence into the Windows Security Center for alerts on activities based on indicators of compromise. With this feature the company is providing the IT admins the tools to isolate machines, block files etc with a single click in the Windows Security Center which helps in reducing the response time generally taken to resolve such critical security issues.