This is the Trace Id: 08173bdebe1885394d2e305d82aa50ee
A man in a black shirt and brown jacket standing.
SECURE FUTURE INITIATIVE

Security above all else


"Microsoft runs on trust, and trust must be earned and maintained. Our pledge to our customers and our community is to prioritize your cybersafety above all else."

Charlie Bell, EVP Security, Microsoft
Read the April 2025 report Read past reports

Explore actionable patterns and practices from
the Secure Future Initiative (SFI)

  1.
A man wearing glasses is sitting at a desk, holding a smartphone and looking at a desktop srceen.
SFI patterns and practices

Secure access at scale with phishing-resistant MFA

Learn more
A group of people gathered around a computer screen with visible text.
SFI patterns and practices

Build security into your complete production infrastructure

Learn more
A person pointing at a screen.
SFI patterns and practices

Strengthen compliance with clear log-retention practices

Learn more
A man and woman looking at a laptop.
SFI patterns and practices

Detect and respond to threats in real time

Learn more
A person typing on a laptop.
SFI patterns and practices

Retire outdated systems before they become liabilities

Learn more
A hand pointing at a computer screen.
SFI patterns and practices

Block identity-based attacks before they spread

Learn more
A woman in a grey suit standing in front of a screen.
SFI patterns and practices

Cut risk exposure time with rapid vulnerability fixes

Learn more
A group of people is discussing in a meeting room.
SFI patterns and practices

Build securely at scale with standardized pipelines

Learn more
Back to carousel navigation controls
Principles

Microsoft Secure Future Initiative

Three principles anchor our approach to the Secure Future Initiative (SFI). We’re continuously applying what we’ve learned from incidents to improve our methods and practices, ensuring that security is paramount in everything we create and provide.
Foundations

Foundations of the Secure Future Initiative

Successful business operations and change management are predicated on people, process, and technology working in harmony. These are the foundations of SFI.
A group of people sitting around a table
A group of people sitting around a table
A group of people sitting around a table
A group of people sitting around a table
A group of people sitting around a table

Security-first culture

Culture is reinforced through daily behaviors. Regular meetings between engineering executive vice presidents, SFI leaders, and all management levels ensure bottom-up, end-to-end problem-solving that ingrains security thinking into our everyday actions.

Security governance

We're elevating security governance with a new framework led by the chief information security officer. This will introduce a partnership with engineering teams to oversee SFI, manage risks, and report progress to leadership.

Continuous security improvement

SFI empowers every employee at Microsoft to prioritize security, driven by a growth mindset of continuous improvement. We integrate feedback and learnings from incidents into our standards, enabling secure design and operations at scale.

Paved paths and standards

Paved paths are best practices that optimize productivity, compliance, and security. These become standards when they enhance security or the developer experience. With SFI, we set and measure standards across all six prioritized security pillars.
Pillars

Secure Future Initiative pillars

The six SFI pillars include goals and actions that define our approach to security.

Protect identities and secrets

 Learn more

Protect tenants and isolate systems

 Learn more

Protect networks

 Learn more

Protect engineering systems

 Learn more

Monitor and detect cyberthreats

 Learn more

Accelerate response and remediation

 Learn more
Our progress

See the highlights

View the most recent highlights in our April report.
Read the highlights
FAQ

Frequently asked questions

  • The Microsoft Secure Future Initiative, launched in November of 2023, is a multiyear commitment that advances the way we design, build, test, and operate our Microsoft technology to ensure that our solutions meet the highest possible standards for security.
  • Microsoft launched SFI to prepare for the increasing scale and high stakes of cyberattacks. SFI brings together every part of Microsoft to advance cybersecurity protection across our company and products. We carefully considered what we saw across Microsoft and what we heard from customers, governments, and partners to identify our greatest opportunities to impact the future of security. For more information on our initial announcement about SFI, see our blog post.
  • We plan to keep ourselves accountable and provide the latest SFI news to customers, partners, and the security community through regular updates.
RESOURCES

Explore Secure Future Initiative resources

Keep up with the latest SFI information.
IDC Logo
IDC

SFI in action

IDC highlights Microsoft’s efforts to reduce attack surfaces and modernize.
Learn more
A blue gradient banner with the text 'Secure by Design' and 'Secure Future Initiative'.
Blog

Explore our progress with SFI

Read the latest SFI report (April 2025), which discusses our advancements in this multiyear journey to bolster cybersecurity for Microsoft, our customers, and the industry at large.
Read the blog
A person holding a tablet with a finger pointing at the screen displaying the text Secure by Design Secure Future Initiative on a blue background.
Blog

Our commitment to Secure by Design

We’re proud to share our progress one year after signing the Cybersecurity and Infrastructure Security Agency (CISA) “Secure by Design Pledge,” reinforcing our commitment to embed security at every stage of product development.
Read the blog
A blue background with white text that reads Secure Future Initiative: Tech Tips.
Tech Tips

Watch SFI Tech Tips

The SFI Tech Tips show provides bite-sized technical tips from Microsoft security experts. Learn how to uplift the security posture in your own environment by implementing recommendations from one of the six engineering pillars of the SFI.
Watch the show
A man and woman looking at a laptop.
November 2024 update

November 2024: SFI customer best practices and guidance

Read the update
A woman in formal attire working at a desktop computer in a bright, modern office space.
September 2024 report

September 2024: SFI progress on cyberattack preparation

Read the September report
A close-up of a man wearing a brown jacket with text overlay stating Charlie Bell, Executive Vice President, Microsoft Security.
Blog

Securing our future

Discover in our September 2024 blog post how the SFI helps us strengthen security and resilience throughout our digital ecosystem.
Read the blog
A person wearing glasses and looking at a computer screen.
Blog

Our response to the increasing scale of cyberattacks

In our May 2024 update, learn how we expanded the SFI to put security first and help protect you from cyberthreats.
Read the blog
A group of people working on computers at desks.
Update

Our progress so far

Learn about the tangible steps we took in May 2024 to implement the SFI and accelerate our progress.
Read the update
A women using a laptop with digital security icons like locks, keyholes and abstract shapes in the background
Article

Deceived, not hacked

Why keeping people safe online now starts with smarter design.
Read the article
Back to carousel navigation controls

Follow Microsoft