The CISO question Microsoft just answered with a $15-per-user SKU
Microsoft Agent 365 hit GA on May 1 at $15 per user per month, with Defender able to block coding agents and a cross-cloud registry that already imports agents from AWS Bedrock and Google Gemini. Coding-agent governance just became a procurable SKU, and the next question is who owns the kill switch.
TLDR On May 1, Microsoft Agent 365 hit general availability at $15 per user per month. Inside the SKU is a Defender capability that can block coding agents and a registry that already syncs across AWS Bedrock and Google Gemini. The harness-governance question moved from "build" to "buy" overnight, and the next quarter is about who owns the kill switch. The headline your board saw Microsoft Agent 365 left preview on May 1 and shipped at $15 per user per month, or bundled in Microsoft 365 E7 at $99 per user per month. The Microsoft Security Blog post ran the line that mattered for engineering leaders. Defender, in Microsoft’s own wording, will be able to “block coding agents and generate detailed alerts to support security investigations.” Thurrott confirmed the same day that controls for GitHub Copilot CLI and Claude Code “will follow” through the same plane. The CFO read the price. The CISO read the Defender line. Both of them want the same answer on Monday. What it actually means For most of the last twelve months, harness governance has been a homemade thing. Engineering leaders pieced together permission settings inside each tool, sandbox rules in the IDE, secret scanners on the CI side, and a Slack channel where someone occasionally posted “did Cursor just commit a key.” That worked because the surface was small. The surface is no longer small. UC Today reported on April 30, citing Microsoft’s Q3 FY26 earnings, the scale that just landed on the security org’s lap. "Paid seats crossed 20 million, up from 15 million in January, with year-over-year seat adds growing 250 percent." UC Today, April 2026 Add to that the 140,000 organizations now on GitHub Copilot and Copilot CLI usage that, per the same Microsoft commentary, is “nearly doubling month over month.” When Defender becomes the network and identity layer metering and gating that population, harness governance stops being a tooling exercise. It becomes a platform decision. Key Insight Agent 365 GA is the firs