Monthly news - April 2023

[Guest Stanislav Belov]

Microsoft Defender for Cloud Monthly news April 2023 Edition [attachment=36346:name]

This is our monthly "What's new" blog post, summarizing product updates and various new assets we released over the past month. In this edition, we are looking at all the goodness from March 2023.

Legend:
[attachment=36347:name]	Product videos	[attachment=36348:name]	Webcasts (recordings)	[attachment=36349:name]	Docs on Microsoft	[attachment=36350:name]	Blogs on Microsoft
[attachment=36351:name]	GitHub	[attachment=36352:name]	External content	[attachment=36353:name]	Product improvements	[attachment=36354:name]	Announcements

Microsoft Defender for Cloud
[attachment=36355:name]	Watch a new episode of the Defender for Cloud in the Field show to learn about the principles of Zero Trust, the importance of switching your mindset to adopt this strategy and how Defender for Cloud can help.
[attachment=36356:name]	A new Defender for Storage plan is available, including near-real time malware scanning and sensitive data threat detection. The new plan includes advanced security capabilities to help protect against malicious file uploads, sensitive data exfiltration, and data corruption. It also provides a more predictable and flexible pricing structure for better control over coverage and costs.
[attachment=36357:name]	Microsoft Defender Cloud Security Posture Management (CSPM) is now Generally Available, with new integrated data-aware security posture. Defender CSPM extends existing free posture management capabilities to help security teams gain full visibility across their multicloud and hybrid environments, get integrated, contextual risk insights across their infrastructure, quickly identify their most critical risk with attack path analysis, and proactively remediate vulnerabilities and misconfigurations. And today, new integrated data-aware security posture capabilities empower teams to prevent data breaches with full visibility into the multicloud data estate and pressing risks to sensitive data.
[attachment=36358:name]	We introduce an improved Azure security policy management experience for built-in recommendations that simplifies the way Defender for Cloud customers fine tune their security requirements.
[attachment=36359:name]	With digital transformation in the face of macroeconomic pressures, strategies to optimize both cloud environments and cloud security are increasingly appealing to enterprises. Organizations worry about vulnerabilities in code getting deployed, critical misconfigurations, overprivileged access to cloud infrastructure, and evolving threats that can cause sensitive data loss. The answer is an end-to-end solution that offers comprehensive cloud security from development to runtime — a Cloud-Native Application Protection Platform (CNAPP). Let’s dive into what’s driving CNAPP adoption and walk through how Microsoft Defender for Cloud — one of the only platforms with comprehensive coverage and integrated insights all in one solution — can help organizations embed security from code to cloud.
[attachment=36361:name]	In this article we will walk you through the scenarios how to identify and mitigate the biggest security risk issues while distinguishing them from less risky issues with Microsoft Defender for Cloud Attack Path Analysis.
[attachment=36362:name]	In this updated interactive guide, you’ll see how Microsoft Defender for Cloud helps you find weak spots in your cloud configuration, strengthen the overall security posture of your environment, and protect workloads across multicloud and hybrid environments from evolving threats.
[attachment=36363:name]	Although Microsoft Defender for Servers (part of the Microsoft Defender for Cloud suite) does not rely on security events collection to provide its protection capabilities, customers may want to collect this valuable data to bring additional context to their server security investigations or alerts. For this reason, Defender for Servers Plan 2 users benefit from a 500-MB free data ingestion allowance (per day, per server) into Log Analytics, as long as the Defender for Servers Plan 2 is also enabled at the Log Analytics Workspace level. Security events collection (for Windows systems only) is done with the help of a guest agent. This has been possible so far with the legacy Log Analytics agent and the Defender for Servers auto-provisioning experience, and is also possible for Microsoft Sentinel users, via the Log Analytics and Azure Monitor Agent (AMA) data connectors. However, if you are not a Sentinel user yet and you are using Defender for Servers with the new AMA experience, it is still possible to collect security events, as you will learn in this blog post.
[attachment=36364:name]	Save the date and save your spot for a closer look at what was announced at Microsoft Secure. Our goal is to equip you with the technical information that will help you and your team implement our comprehensive security solutions in your business. Join us on April 13th for demos, technical deep dives, and of course everyone's favorite — Ask Microsoft Anything (AMA).
[attachment=36365:name]	Discover how other organizations successfully use Microsoft Defender for Cloud to protect their cloud workloads. This month we are featuring Sapiens International Corporation – a world-renowned leader in insurtech that empowers the financial sector, with a focus on insurance, to transform and become digital, innovative and agile – that uses Microsoft security solutions, including Defender for Cloud, to secure their environment.
[attachment=36366:name]	Cloud Security Posture Management provides organizations with a centralized view of their cloud security posture, allowing them to quickly identify and respond to security risks, ensures compliance, and allows for continuous monitoring and improvement of cloud security posture. Defender CSPM plan provides advanced posture management capabilities such as Attack path analysis, Cloud security explorer, Agentless Scanning, security governance capabilities, and also tools to assess your security compliance. This article provides guidelines on how to perform a proof of concept for Microsoft Defender CSPM plan.

 

 

 

 

 

Note: If you want to stay current with Defender for Cloud and receive updates in your inbox, please consider subscribing to our monthly newsletter: Microsoft Forms

 

 

 

Continue reading...