Bringing Automation in Attack Simulation Training and Security Preset together
While utilizing Preset Security Policies in Microsoft Defender for Office 365, that focuses on a "set-and-forget" security posture, organizations can leverage automation in Attack Simulation Training (AST) to further strengthen the security directly through the end users (aka human firewall) by carrying out recurring, randomized testing. In other words, Preset Security Policies help in handling technical blocks (Safe Links, Safe Attachments) while Simulation Automations target the human element. I tested the Automation feature back in December 2025, but never got to blogging about it, and so decided to put a quick read together. Automation in Attack Simulation Training is a closed-loop system which allows organizations to - - Send simulated phishing emails - Observe user behavior - Automatically train users who fail - Repeat at a defined frequency - Track ...