January 20, 2024April 24, 2025 Defender for Cloud – Part 0: Introduction (The blog series) Microsoft Defender for Cloud is my favourite tool / solution inside Azure portal. I use it often and also do private preview testing inside Microsoft Cloud Security programs. (You can join here).This is based on my experiences but there also some quotes from MS learn and other materials from youtube etc. Images are mainly from Azure portal and from MS Learn.These posts will be update by the time I get more content.Let’s start. Introduction to Defender for Cloud Microsoft Defender for Cloud (later MDC) is a solution in (Microsoft Azure Cloud) for cloud security posture management (CSPM) and cloud workload protection (CWP) that finds weak spots across your cloud configuration, helps strengthen the overall security posture of your environment, and can protect workloads across multicloud and hybrid environments from evolving threats. There’s an interactive guide of how to manage cloud security posture with MDC. (opens in new tab). Defender for Cloud fills three vital needs as you manage the security of your resources and workloads in the cloud and on-premises: Defender for Cloud secure score continually assesses your security posture so you can track new security opportunities and precisely report on the progress of your security efforts.Defender for Cloud recommendations secures your workloads with step-by-step actions that protect your workloads from known security risks.Defender for Cloud alerts defends your workloads in real-time so you can react immediately and prevent security events from developing. With Defender for Cloud you can Strengthen the security posture of your cloud resourcesProtect cloud and hybrid workloads against threatsProtect your resources and track your security progressProtect all of your resources under one roofDefend your Azure-native resourcesDefend your on-premises resourcesDefend resources running on other clouds (Amazon Web Services, Google Cloud Platform)Close vulnerabilities before they get exploitedEnforce your security policy from the top downExtend Defender for Cloud with Defender plans and external monitoring Integrations in Defender for Cloud Defender for Cloud has integrations at least following solutions:Defender for EndpointPurview (data security section)SentinelExternal Attack Surface Management (EASM)Azure ArcAmazon Web ServicesGoogle Cloud PlatformGitHubAzure DevOpsGitLab The parts of the MDC blog series Part 0: Microsoft Defender for Cloud – The EPIC blog series – introductionPart 1: Getting started aka Setup Part 2: The Asset Inventory Part 3: Security posturePart 4: Security recommendationsPart 5: Security alertsPart 6: Attack path analysisPart 7: Cloud security explorerPart 8: WorkbooksPart 9: Regulatory compliancePart 10: Workload protectionsPart 11: Data and AI securityPart 12: Environment settings & Defender plans Share on Social Media x facebook linkedinwhatsapp Discover more from Jussi Metso Subscribe to get the latest posts sent to your email. Type your email… Subscribe DEFENDER FOR CLOUD
DEFENDER FOR CLOUD AWS & GCP connectivity status in Defender for Cloud May 23, 2023May 23, 2023 Microsoft Defender for Cloud have a new public preview feature which allows user to check… Read More
DEFENDER FOR CLOUD Defender for Cloud – Part 3: Security Posture June 22, 2024April 24, 2025 Properly managing security posture in public cloud environments is challenging due to lack of awareness and resource constraints. The post introduces Microsoft Defender for Cloud, highlighting its Security Posture feature, which assists with governance, risk assessment, and security management across hybrid and multi-cloud environments, thereby enhancing overall asset security. Read More
DEFENDER FOR CLOUD Defender for Cloud – Part 5: Security Alerts August 31, 2024April 24, 2025 Defender for Cloud helps you to detect and prevent threats to your hybrid cloud environment. When a threat is detected, Defender for Cloud raises security alerts. On this security alerts page, you can triage your alerts, investigate the findings, and quickly respond manually or with predefined automated workflows. Read More
Awesome job, Jussi! Your blog is packed with helpful info. I enjoyed reading it. Thanks for all your hard work!