With a major $35 million Series B funding round secured, Inforcer, the London-based innovator in Microsoft 365 management solutions, has positioned itself as a key enabler for managed service providers (MSPs) navigating the rapidly escalating cybersecurity threats facing today’s digital-first businesses. As the stakes for Microsoft 365 security and AI-powered management grow ever higher, Inforcer taps into a swelling current of urgency felt by MSPs, SMBs, and enterprises alike—a sentiment echoed throughout industry reports and lived experience among IT professionals.

The Funding: Inforcer’s Series B and Strategic Ambitions

The new $35M financing round signals strong investor confidence. The capital infusion is earmarked for global expansion, particularly with a Nordic headquarters, platform innovation, and scaling support for MSPs across EMEA and beyond. This move reflects an industry-wide surge in demand for robust, AI-driven tools that can tame the sprawling complexity of Microsoft 365 tenant management, automate threat response, and ensure compliance for clients under growing regulatory scrutiny.

According to Inforcer’s leadership, the investment dovetails with a commitment to help MSPs answer two pain points: security and operational efficiency in the Microsoft cloud. As compliance frameworks proliferate and cyberattacks mount—notably in vectors like phishing and credential theft—the need for automated policy enforcement and real-time incident response is greater than ever.

Market Realities: Why MSPs Need AI-Powered Microsoft 365 Security

The Rising Tide of Microsoft 365 Threats

Microsoft 365’s runaway adoption—by SMBs, enterprises, and public sector bodies—has made it the world’s most-targeted business productivity platform. This scale brings benefits, but also paints a bright bullseye: recent data from Microsoft’s Digital Defense Report suggests that over 90% of targeted cyberattacks begin with email, with credential phishing breaking new records annually. In 2024 alone, ransomware and business email compromise (BEC) attempts against M365 accounts have impacted over 61% of SMB tenants, according to the Verizon Data Breach Investigations Report.

The threat landscape is dynamic:

  • Attackers increasingly automate credential theft, phishing campaigns, and supply chain compromises.
  • The “human gap”—created by social engineering, phishing susceptibility, and mismanaged privileges—remains the Achilles’ heel of many organizations, particularly as hybrid work models expand attack surfaces.
  • Automation and AI are being weaponized by adversaries just as defenders adopt them, resulting in a security arms race played out largely on the Microsoft 365 battlefield.

MSP Challenges: Scale, Skills, and the Automation Imperative

For managed service providers, M365 security is a challenge of scale and expertise. A single MSP may be responsible for dozens or even hundreds of distinct client tenants, each with unique risk profiles, regulatory requirements, and evolving needs. Historically, “enterprise-grade” tools have been too expensive, too complex, or poorly optimized for MSP workflows—leaving a patchwork of scripts, disparate dashboards, and manual configuration as a fragile foundation.

The result? Overwhelmed MSPs juggling multi-tenant policy enforcement, compliance, patching, and incident response with too few hands on deck. Many are seeking integrated, “single pane of glass” solutions that prioritize automation, threat intelligence sharing, and granular compliance controls.

Hornetsecurity, another MSP-focused innovator, embodies this approach by offering multitenancy, automated onboarding, and pre-built compliance mappings (GDPR, HIPAA, etc.), all within an AI-driven engine. Evidence suggests this model reduces operational headaches and sharpens security outcomes for MSPs managing a large Microsoft 365 footprint.

Inforcer’s Value Proposition: AI, Automation, and Managed Security

While specifics of Inforcer’s platform under the new funding round are forthcoming, peer analysis and broader market trends shed light on the critical features that drive modern Microsoft 365 protection:

1. Baseline-Driven Behavior Analytics & Anomaly Detection

AI and machine learning allow platforms to establish granular baselines for “normal” user, device, and admin behavior. When anomalies—impossible travel logins, risky sign-ins, suspicious mailbox activity, or privilege escalations—are detected, the response is automated. Accounts are either flagged or shut down proactively, drastically reducing “dwell time” for would-be attackers and curtailing lateral movement.

2. End-to-End, Multilayered Security & Compliance

Advanced solutions support:

  • Continuous monitoring for account takeovers, credential theft, and human error-induced misconfigurations
  • Integrated email and identity security—delivering a holistic approach to protecting the Microsoft 365 “attack surface”
  • Policy automation and threat response—with guided remediation translating alerts into concrete, actionable tasks for the MSP, all without leaving the central dashboard
  • Real-time compliance mapping to jurisdictional standards like ISO, GDPR, and national data protection acts—as operationalized by both automation and audit-ready reporting

3. Consolidating Tools for Efficiency & Trust

A recurring theme in MSP forums is the desire to streamline tools: shifting from an arsenal of loosely-coupled products to unified platforms. RMM (Remote Monitoring and Management) and vulnerability management integration, especially with AI-powered automation, reduces both administrative overhead and human error, freeing up precious engineering resources for higher-order tasks.

Dustin Bolander of Clear Guidance Partners calls such consolidation “table stakes security,” noting that reclaiming fragmented functionality into one solution is both a cost-saving and an efficiency booster.

4. Threat Intelligence Synergy

The future of Microsoft 365 security lies in shared threat intelligence—correlating telemetry from SMBs and large enterprises alike to improve early warning and incident response. By contributing anonymized attack and anomaly information into a global intelligence pool, vendors like Inforcer and their partners may help customers “see the wave” before it crests.

5. Automation of Remediation and Onboarding

The most sought-after MSP features are those that automate not just detection but guided, compliant remediation—providing step-by-step workflows and even triggering countermeasures like user lockout and session revocation instantly upon detection of dangerous activity. The net result: exposure windows shrink from hours to seconds, minimizing the potential for cascading breaches.

Community and Analyst Perspectives: What MSPs Value (and Caution)

End-User and MSP Feedback

Discussions across security communities and MSP user groups highlight common consensus on both benefits and risks:

Where vendors like Inforcer excel:
- Easy multitenancy and policy replication across clients, saving hours of manual effort
- Rich reporting and real-time compliance mapping, which both reduces audit pain and bolsters client trust
- Automated baseline anomaly detection, proven to identify threats that would slip past legacy systems
- Immediate, console-based remediation—critical for SMBs without 24/7 security operations centers

Where caution is warranted:
- AI models are only as good as their training sets and update cadence. “AI drift” can result in missed threats or spurious positives if not rigorously monitored.
- Integration depth: Solutions must cover the full gamut—email, identity, device management, cloud permissions—not just one or two vectors, or blind spots can remain.
- Overreliance on automation can foster complacency. Human oversight, ongoing user training, and rigorous operational review remain essential to long-term defense.

Common Attack Gaps Still Require Attention

MSPs and end customers routinely underline areas where even advanced tools are often underutilized or misapplied:

  • Phishing and credential reuse exploit gaps in MFA, user awareness, and legacy protocol vulnerabilities.
  • Third-party integrations and OAuth consent expansion have become a major blind spot; regular audits are needed to prevent “shadow” access or privilege escalation via ill-vetted apps.

The Competitive Arena: Surging Investment and M&A

Inforcer’s funding lands amidst a surge of cybersecurity M&A and strategic investments. Other notable movements include Proofpoint’s $1B+ acquisition of Hornetsecurity—a clear signal that securing Microsoft 365 via AI and managed services is both mission-critical and highly lucrative.

Hornetsecurity’s approach—AI for spam, phishing, and anomalous behavior detection, plus built-in backup and compliance—offers a glimpse into the direction of travel for the segment. The value for MSPs lies especially in automation, scale, and a platform that truly “speaks” multi-tenant needs.

Technical Architecture: What Distinguishes Market Leaders

Industry consensus, drawn from technical deep-dives and front-line MSP experience, suggests that the best platforms combine:

  • Deep integration with Microsoft Secure Score, Defender Antivirus, and Azure AD/Entra for granular real-time risk posture
  • Modern AI models for context-aware alerting and incident triage—ideally with the ability to baseline each tenant environment and “learn” over time
  • Support for the entire Microsoft 365 stack: Exchange, SharePoint, Teams, OneDrive, and third-party app connectors
  • “Single pane of glass” interfaces, reducing context-switching and allowing less-experienced staff to take corrective action securely

For example, solutions like XMM (Extended Monitoring and Management) from Syncro, via close Microsoft partnership, illustrate the trend toward deeply unified management and automated ticketing, threat triage, and compliance enforcement across MSP tenants.

Critical Analysis: Strengths and Persistent Risks

Notable Strengths

  • Comprehensive, Layered Security Suite: The new generation of platforms—exemplified by Inforcer—offers meaningful, defense-in-depth security on par with (or superior to) many “big enterprise” stacks, but at MSP-optimized price and complexity.
  • Automation-Driven Efficiency: By automating triage, remediation, and compliance, MSPs can scale without proportional labor costs, freeing staff for higher value work.
  • Accelerated Threat Response: Systems that lock accounts and terminate sessions the instant anomalous behavior is detected can blunt attacks before they escalate—critical in a context where attackers often exploit delayed detection.

Potential Weaknesses and Risks

  • Complacency Risk: Automation is not a panacea—configuration drift, alert fatigue, and skill atrophy can erode defenses over time if human oversight is not prioritized.
  • Integration Blind Spots: As platforms embrace third-party connectors, each integration point is a potential attack vector—MSPs must proactively vet, limit, and regularly audit application permissions.
  • AI Limitations: AI and machine learning are not infallible and require robust update lifecycles and real-world training to avoid both false positives/negatives and adversarial manipulation.
  • Underutilized Native Tools: Industry evidence shows many organizations fail to take full advantage of even the built-in protections of Microsoft 365, let alone invest in third-party add-ons.

What the Future Holds—and Best Practice Recommendations

The Industry’s Trajectory

With the continued proliferation of cloud security threats and compliance mandates, the MSP model for Microsoft 365 defense is entering a new era—one where platform automation, AI-driven insights, and managed detection are table stakes. Investor appetite, as evidenced by the Inforcer deal, is robust; the market will reward platforms that deliver real protection, not just “check the box” compliance.

Practical Advice for MSPs and Businesses

  • Prioritize Modern MFA and Conditional Access—and retire legacy protocols that expose tenants to brute-force or MFA-bypass attacks.
  • Actively Operationalize Telemetry and Audit Logs—not just for incident response, but to anticipate and prevent breaches.
  • Harden Permissions and Review Integrations Continuously—limiting both internal risk and the “app sprawl” that can enable undetected privilege escalation.
  • Invest in Ongoing User Education—since humans remain the weakest link in even the most AI-augmented systems.

In summary, Inforcer’s latest funding round is not just a vote of confidence in a single company, but a bellwether for the next stage of Microsoft 365 security. As SMBs, MSPs, and enterprises grapple with accelerating risk and operational complexity, the winners will be those who merge smart automation with relentless vigilance—a combination that platforms like Inforcer increasingly make possible, but that ultimately relies on informed, empowered people behind the dashboards.