Microsoft Defender for Endpoint allows swifter remediation of security threats at the device level

With thousands of end-user devices distributed among university employees and departments, endpoints present a significant point of potential vulnerability. Protecting endpoints proactively is essential to the security health of our IT systems. Over the course of FY 2025, the Division of IT expanded its efforts to rollout Microsoft Defender for Endpoint (MDE), a security platform designed to help IT administrators prevent, detect, investigate, and respond to advanced threats through automated, central management and monitoring of endpoints.

The MDE service supports macOS, Linux, and Windows devices at the university, and enables IT admins to identify vulnerable systems and provide a robust zero-day response to threats. Since the start of 2025, MDE has auto-remediated or alerted IT staff about 9 high-risk threats, 57 medium-risk threats, 437 low-severity events, and 885 informational events.