January 20, 2024May 25, 2025 Defender for Cloud – Part 0: Introduction (The blog series) Table of Contents Microsoft Defender for Cloud is my favourite tool / solution inside Azure portal. I use it often and also do private preview testing inside Microsoft Cloud Security programs. (You can join here).This is based on my experiences but there also some quotes from MS learn and other materials from youtube etc. Images are mainly from Azure portal and from MS Learn.These posts will be update by the time I get more content.Let’s start. Introduction to Defender for Cloud Microsoft Defender for Cloud (later MDC) is a solution in (Microsoft Azure Cloud) for cloud security posture management (CSPM) and cloud workload protection (CWP) that finds weak spots across your cloud configuration, helps strengthen the overall security posture of your environment, and can protect workloads across multicloud and hybrid environments from evolving threats. There’s an interactive guide of how to manage cloud security posture with MDC. (opens in new tab). Defender for Cloud fills three vital needs as you manage the security of your resources and workloads in the cloud and on-premises: Defender for Cloud secure score continually assesses your security posture so you can track new security opportunities and precisely report on the progress of your security efforts.Defender for Cloud recommendations secures your workloads with step-by-step actions that protect your workloads from known security risks.Defender for Cloud alerts defends your workloads in real-time so you can react immediately and prevent security events from developing. With Defender for Cloud you can Strengthen the security posture of your cloud resourcesProtect cloud and hybrid workloads against threatsProtect your resources and track your security progressProtect all of your resources under one roofDefend your Azure-native resourcesDefend your on-premises resourcesDefend resources running on other clouds (Amazon Web Services, Google Cloud Platform)Close vulnerabilities before they get exploitedEnforce your security policy from the top downExtend Defender for Cloud with Defender plans and external monitoring Integrations in Defender for Cloud Defender for Cloud has integrations at least following solutions:Defender for EndpointPurview (data security section)SentinelExternal Attack Surface Management (EASM)Azure ArcAmazon Web ServicesGoogle Cloud PlatformGitHubAzure DevOpsGitLab The parts of the MDC blog series Part 0: Microsoft Defender for Cloud – The EPIC blog series – introductionPart 1: Getting started aka Setup Part 2: The Asset Inventory Part 3: Security posturePart 4: Security recommendationsPart 5: Security alertsPart 6: Attack path analysisPart 7: Cloud security explorerPart 8: WorkbooksPart 9: Regulatory compliancePart 10: Workload protectionspart 10.5: Advanced Workload protectionPart 11: Data and AI security – The end of the series Jussi Metso Author is a a lifelong IT enthusiast, Microsoft Security MVP and interested in Cloud Security, XDR, SIEM and AI. Motto: Learning is the key for your future. Share on Social Mediaxfacebooklinkedinwhatsapp Discover more from Jussi Metso Subscribe to get the latest posts sent to your email. Type your email… Subscribe DEFENDER FOR CLOUD #cloudsecurity#mdcseries
DEFENDER FOR CLOUD Defender for Cloud – Part 11: Data and AI Security May 27, 2025May 25, 2025 The Data and AI security overview section displays your cloud data and AI estate for each cloud. It includes all data and AI resources, categorized into storage assets, managed databases, hosted databases (IaaS), and AI services. Read More
DEFENDER FOR CLOUD Microsoft Defender for DevOps December 21, 2022December 30, 2022 Table of Contents What is Microsoft Defender for DevOps? Microsoft Defender for DevOps adds additional security capabilities to… Read More
DEFENDER FOR CLOUD Defender for Cloud – Part 5: Security Alerts August 31, 2024May 25, 2025 Defender for Cloud helps you to detect and prevent threats to your hybrid cloud environment. When a threat is detected, Defender for Cloud raises security alerts. On this security alerts page, you can triage your alerts, investigate the findings, and quickly respond manually or with predefined automated workflows. Read More
Awesome job, Jussi! Your blog is packed with helpful info. I enjoyed reading it. Thanks for all your hard work!