AI-Powered Security Threat Detection and Response

Microsoft Sentinel is an artificial intelligence-powered security system deployed by the Canada School of Public Service to centralize threat detection, investigation, and response across the enterprise. The system analyzes security logs, Microsoft 365 alerts, and hybrid cloud workloads to detect anomalies in logins, web visits, emails, file access, and cloud activity using machine learning and graph-based analytics. This system processes personal information and is currently in production. GC employees are the primary users of this system, and it provides enhanced security monitoring and incident response capabilities across the organization.

Who is accountable for this AI system?

What is the purpose of this AI system?

What is the type of decision being made by this AI system?

What dataset(s) were used to train this AI system?

What algorithm or AI model is used for processing data in this system?

What dataset(s) are produced by this AI system?

Government of Canada – AI Register