Microsoft announced new anti-piracy initiatives, including aligning the compensation of some senior executives with cybersecurity standards, after facing heavy criticism for failing to contain several serious attacks.
The company also said it is prioritizing security over developing new features and adding leading cybersecurity providers to its product portfolio.
Microsoft executives have detailed a wide range of internal initiatives aimed at strengthening the company's cybersecurity posture.
The software giant is launching the effort after a US investigation. Cybersecurity Review Board (CSRB) on hacking prevention practices.
The reason for the review was a serious breach of the Microsoft Exchange Online email service by hackers with ties to China.
United State. The Cybersecurity Review Board found that the company had a culture that did not value corporate security and was inconsistent with the company's central position in the technology ecosystem.
The United States recommended in a 34-page report that Microsoft's Cybersecurity Review Board develop a plan to improve procedures to prevent security breaches and make the plan available to the public.
The company's cybersecurity improvement plan addresses this recommendation in detail.
Microsoft said the move also builds on lessons learned from the recent incident in which Russian hackers compromised the emails of several Microsoft executives.
In an internal memo detailing the company's new cybersecurity initiatives, CEO Satya Nadella said security comes first when faced with a trade-off between security and other priorities.
In some cases, this means prioritizing security over other things, such as releasing new features or providing ongoing support for existing systems.
The company explained that the plan focuses on three safety principles and six priority safety pillars, and that the company calculates executive compensation based on the company's success in partially achieving the plan's goals.
The Security Principles aim to ensure that security is a top priority when developing a product or service, that security measures are enabled and implemented by default, and that security controls and monitoring are continually improved to address current and future threats.
The Cybersecurity Program's Priority Security Pillars describe a detailed set of measures Microsoft takes to reduce the risk of a breach.