From csirt.cy
Microsoft announced today the general availability of the Automated Incident Response feature in Office 365 Advanced Threat Protection (ATP) users to support the rising requirements of security teams.
“Applying these powerful automation capabilities to investigation and response workflows can dramatically improve the effectiveness and efficiency of your organization’s security teams,” says Microsoft.
Automated Incident Response is designed to make it easier for security departments to go through the huge amounts of alerts received daily with the help of security playbooks that will provide them with the steps needed to “comprehensively investigate an alert and offer a set of recommended actions for containment and mitigation.”