Microsoft Defender for Cloud Wrap - Issue #11
Hi, all! Welcome to issue #11 of the newsletter that captures all Defender for Cloud happenings over the course of a couple weeks. With 2022 solidly in place, here's what's happening...
First off, we're looking for your feedback about the new native AWS experience for Microsoft Defender for Cloud.
With Microsoft Defender for Cloud, our goal is to centralize security across multi-cloud environments. At Ignite we announced native CSPM support and threat protection for compute resources in Amazon Web Services (AWS) to give you a centralized view across the security state of your multi-cloud environment.
We are looking to better understand how you are finding this new native experience for AWS and we'd also like to hear from you, as to what additional capabilities would be of real value to your organization.
Could you please help us by filling the this, short, 5-Minutes survey?
...
We've had a couple excellent webinars for Defender for Cloud in the last couple weeks. For those that missed these, here's the offerings along with the replay links:
January 12 - Microsoft Defender for Cloud | Introducing Microsoft Defender for Containers
January 20 - Microsoft Defender for Cloud | What’s New in the Last 3 Months
The 2022 schedule is still being worked out, but when available you can find new webinars here: https://cda.ms/3BQ
...
I hope you're having a super-blessed January.
Talk soon.
-Rod
Things to Read
Exclude a Storage Account from Microsoft Defender for Storage - CHARBEL NEMNOM - MVP | MCT | CCSP - Cloud & CyberSecurity — charbelnemnom.com In this article, we will show you how to exclude a storage account from Microsoft Defender for Storage to reduce costs for your dev and test environments.
Things to Watch/Listen To
What's New in the Last 3 Months | Microsoft Defender for Cloud Webinar — www.youtube.com Thursday, January 20, 2022, 11:00 AM ET / 8:00 AM PT (webinar recording date) Microsoft Defender for Cloud Webinar | What's New in the Last 3 MonthsPresenter...
Introducing Microsoft Defender for Containers | Microsoft Defender for Cloud Webinar — www.youtube.com Wednesday, January 12, 2022, 11:00 AM ET / 8:00 AM PT (webinar recording date) Microsoft Defender for Cloud Webinar | Introducing Microsoft Defender for Cont...
Defender for Cloud in the field - Out of Band Edition — www.linkedin.com The new episode of #Defender for Cloud in the field - Out of Band Edition is out. In this episode we bring some updates for Jan 2022 and also two new workbooks presented by Tom Janetscheck and Shay Amar
Things to Have
Microsoft-Defender-for-Cloud/Workbooks/Defender for Containers Cost Estimation at main · Azure/Microsoft-Defender-for-Cloud · GitHub — github.com Microsoft Defender for Containers is a new offering that consolidates two existing Microsoft Defender for Cloud meters: Microsoft Defender for Kubernetes Microsoft Defender for Container Registries In addition, Microsoft Defender for Servers is no longer required for host-level protection of Kubernetes clusters as relevant node-level protection capabilities are added to the new plan, alongside new capabilities
New and Updated Things
Custom assessments and standards in Microsoft Defender for Cloud for AWS workloads (Preview) - Microsoft Tech Community — techcommunity.microsoft.com Microsoft Defender for Cloud implements AWS security recommendations in the Defender for Cloud portal right alongside Azure recommendations. There are
Microsoft Defender for Resource Manager updated with new alerts and greater emphasis on high-risk operations mapped to MITRE ATT&CK® Matrix — docs.microsoft.com The cloud management layer is a crucial service connected to all your cloud resources. Because of this, it is also a potential target for attackers. Consequently, we recommend security operations teams closely monitor the resource management layer. Microsoft Defender for Resource Manager automatically monitors the resource management operations in your organization, whether they're performed through the Azure portal, Azure REST APIs, Azure CLI, or other Azure programmatic clients. Defender for Cloud runs advanced security analytics to detect threats and alerts you about suspicious activity. The plan's protections greatly enhance an organization's resiliency against attacks from threat actors and significantly increase the number of Azure resources protected by Defender for Cloud.
Microsoft Defender for Key Vault - Migration from Azure Databricks to Azure Synapse Analytics - Microsoft Tech Community — techcommunity.microsoft.com We're excited to announce that SIPS ML team has migrated services – including USM and Microsoft Defender for Key Vault - to Azure Synapse Analytics from
Microsoft Defender for Storage - excluding a storage account | Microsoft Docs — docs.microsoft.com Excluding a specific storage account from a subscription with Microsoft Defender for Storage enabled.