{"id":1364,"date":"2024-08-31T18:49:21","date_gmt":"2024-08-31T16:49:21","guid":{"rendered":"https:\/\/www.jussimetso.com\/?p=1364"},"modified":"2025-05-25T17:02:28","modified_gmt":"2025-05-25T14:02:28","slug":"defender-for-cloud-part-5-security-alerts","status":"publish","type":"post","link":"https:\/\/www.jussimetso.com\/index.php\/2024\/08\/31\/defender-for-cloud-part-5-security-alerts\/","title":{"rendered":"Defender for Cloud \u2013 Part 5: Security Alerts"},"content":{"rendered":"<div id=\"bsf_rt_marker\"><\/div>\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"1364\" class=\"elementor elementor-1364\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-bd25211 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"bd25211\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-12f6474\" data-id=\"12f6474\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-0c4b359 elementor-toc--minimized-on-tablet elementor-widget elementor-widget-table-of-contents\" data-id=\"0c4b359\" data-element_type=\"widget\" data-e-type=\"widget\" data-settings=\"{&quot;headings_by_tags&quot;:[&quot;h2&quot;,&quot;h3&quot;,&quot;h4&quot;,&quot;h5&quot;],&quot;exclude_headings_by_selector&quot;:[],&quot;no_headings_message&quot;:&quot;No headings were found on this page.&quot;,&quot;marker_view&quot;:&quot;numbers&quot;,&quot;minimize_box&quot;:&quot;yes&quot;,&quot;minimized_on&quot;:&quot;tablet&quot;,&quot;hierarchical_view&quot;:&quot;yes&quot;,&quot;min_height&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;min_height_tablet&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;min_height_mobile&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]}}\" data-widget_type=\"table-of-contents.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-toc__header\">\n\t\t\t\t\t\t<h4 class=\"elementor-toc__header-title\">\n\t\t\t\tTable of Contents\t\t\t<\/h4>\n\t\t\t\t\t\t\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--expand\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__0c4b359\" aria-expanded=\"true\" aria-label=\"Open table of contents\"><i aria-hidden=\"true\" class=\"fas fa-chevron-down\"><\/i><\/div>\n\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--collapse\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__0c4b359\" aria-expanded=\"true\" aria-label=\"Close table of contents\"><i aria-hidden=\"true\" class=\"fas fa-chevron-up\"><\/i><\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<div id=\"elementor-toc__0c4b359\" class=\"elementor-toc__body\">\n\t\t\t<div class=\"elementor-toc__spinner-container\">\n\t\t\t\t<i class=\"elementor-toc__spinner eicon-animation-spin eicon-loading\" aria-hidden=\"true\"><\/i>\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-407d8d2 elementor-widget elementor-widget-text-editor\" data-id=\"407d8d2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>This next part describes <strong>Security Alerts<\/strong> for the Azure resources. These are great to find out what&#8217;s going on if you don&#8217;t use or have forwarded alerts to Sentinel or you don&#8217;t have access to Defender portal (<a href=\"https:\/\/security.microsoft.com\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">https:\/\/security.microsoft.com<\/span><\/a>) where you also can see these.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-e9113ec elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"e9113ec\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-6563546\" data-id=\"6563546\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-1faea84 elementor-widget elementor-widget-heading\" data-id=\"1faea84\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Summary of the Security Alerts<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-cc12721 elementor-widget elementor-widget-text-editor\" data-id=\"cc12721\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Security alerts are generated by workload protection plans when threats are identified in your Azure, hybrid, or multicloud environments.<\/p><ul><li>Security alerts are triggered by advanced detections available when you enable\u00a0<span style=\"text-decoration: underline;\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/defender-for-cloud\/defender-for-cloud-introduction#protect-cloud-workloads\" target=\"_blank\" rel=\"noopener\" data-linktype=\"relative-path\">Defender plans<\/a><\/span>\u00a0for specific resource types.<\/li><li>Each alert provides details of affected resources, issues, and remediation steps.<\/li><li>MDC classifies alerts and prioritizes them by severity.<\/li><li>Alerts are displayed in the portal for <span style=\"text-decoration: underline;\">90 days<\/span>, even if the resource related to the alert was deleted during that time.\u00a0<\/li><li>Alerts can be exported to CSV format.<\/li><li>Alerts can also be streamed directly to a Security Information and Event Management (SIEM) such as <strong>Microsoft Sentinel<\/strong>, Security Orchestration Automated Response (SOAR), or IT Service Management (ITSM) solution. Security Alerts are also seen in Defender portal if it&#8217;s in use.<\/li><li>MDC leverages the <a href=\"https:\/\/attack.mitre.org\/matrices\/enterprise\/\" target=\"_blank\" rel=\"noopener\" data-linktype=\"external\"><span style=\"text-decoration: underline;\">MITRE ATT&amp;CK Matrix<\/span><\/a>\u00a0to associate alerts with their perceived intent, helping formalize security domain knowledge.<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-e77bc78 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"e77bc78\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-1c75268\" data-id=\"1c75268\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-9b97793 elementor-widget elementor-widget-heading\" data-id=\"9b97793\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Overview of Security Alerts<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-bc133f3 elementor-widget elementor-widget-text-editor\" data-id=\"bc133f3\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Like always I have drew areas about different functions to explain what these means:<\/p><ol><li>Azure Graph query, suppression rules, security alerts map, alerts workbook, CSV report and guides<\/li><li>Alert status information in resources and classifications by severity<\/li><li>Filters<\/li><li>Actual alert listing<\/li><\/ol><p>Since there was no security alerts in my subscription I used sample alerts which MDC generates.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-43a4fcb elementor-widget elementor-widget-image\" data-id=\"43a4fcb\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t<figure class=\"wp-caption\">\n\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_main\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM4MSwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX21haW4ucG5nIn0%3D\">\n\t\t\t\t\t\t\t<img fetchpriority=\"high\" decoding=\"async\" width=\"640\" height=\"428\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?fit=640%2C428&amp;ssl=1\" class=\"attachment-large size-large wp-image-1381\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?w=1801&amp;ssl=1 1801w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?resize=300%2C201&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?resize=1024%2C685&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?resize=768%2C514&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?resize=1536%2C1028&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?resize=850%2C569&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_main.png?w=1280&amp;ssl=1 1280w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<figcaption class=\"widget-image-caption wp-caption-text\">Defender for Cloud - Security Alerts main view<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-2106115 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"2106115\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-be23fc3\" data-id=\"be23fc3\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-a6ecfaf elementor-widget elementor-widget-heading\" data-id=\"a6ecfaf\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Section 1 - Functions<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-adb6025 elementor-widget elementor-widget-image\" data-id=\"adb6025\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_top_functions\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM5NSwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX3RvcF9mdW5jdGlvbnMucG5nIn0%3D\">\n\t\t\t\t\t\t\t<img decoding=\"async\" width=\"640\" height=\"19\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?fit=640%2C19&amp;ssl=1\" class=\"attachment-large size-large wp-image-1395\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?w=1549&amp;ssl=1 1549w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?resize=300%2C9&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?resize=1024%2C30&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?resize=768%2C22&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?resize=1536%2C45&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?resize=850%2C25&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_top_functions.png?w=1280&amp;ssl=1 1280w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-0621991 elementor-widget elementor-widget-heading\" data-id=\"0621991\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Change status<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-911669d elementor-widget elementor-widget-text-editor\" data-id=\"911669d\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>You can change the alert status for example you want to manage\u00a0 alerts by this view.\u00a0<\/p><p>Normally in more mature companies alerts are forwarded for example to Sentinel and handled there.\u00a0<\/p><p>In Sentinel there&#8217;s a Defender for Cloud <a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/sentinel\/connect-defender-for-cloud\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\"><strong>Data Connector<\/strong><\/span><\/a> which forwards those alerts from MDC to Sentinel. There&#8217;s also possible to select a Bi-directional sync so if Alert is closed in Sentinel it is also Closed in MDC&#8217;s Alert table and vice versa.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-901fc86 elementor-widget elementor-widget-image\" data-id=\"901fc86\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img decoding=\"async\" width=\"264\" height=\"300\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_changestatus.png?fit=264%2C300&amp;ssl=1\" class=\"attachment-medium size-medium wp-image-1387\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_changestatus.png?w=309&amp;ssl=1 309w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_changestatus.png?resize=264%2C300&amp;ssl=1 264w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_changestatus.png?resize=300%2C341&amp;ssl=1 300w\" sizes=\"(max-width: 264px) 100vw, 264px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-c645a61 elementor-widget elementor-widget-heading\" data-id=\"c645a61\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Open query<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-78b0c02 elementor-widget elementor-widget-text-editor\" data-id=\"78b0c02\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Open query link opens\u00a0<span style=\"text-decoration: underline;\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/governance\/resource-graph\/overview\" target=\"_blank\" rel=\"noopener\">Azure Resource Graph Explorer<\/a><\/span>\u00a0where you can use pre-made templates to query Security recommendations or you can made your own queries. The query languge is\u00a0<span style=\"text-decoration: underline;\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/kusto\/query\/?view=azure-data-explorer\" target=\"_blank\" rel=\"noopener\">KQL<\/a><\/span>\u00a0(Kusto Query Language)<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-99ce908 elementor-widget elementor-widget-heading\" data-id=\"99ce908\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Suppression rules<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ed530ea elementor-widget elementor-widget-text-editor\" data-id=\"ed530ea\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>In MDC there is a possibility to\u00a0 create a suppression rules for security alerts which aren&#8217;t interesting or relevant. Rules let you automatically dismiss similar alerts in the future.<\/p><p>Some examples of how to use suppression rule are:<\/p><ul><li>Suppress alerts that you&#8217;ve identified as false positives<\/li><li>Suppress alerts that are being triggered too often to be useful<\/li><\/ul><p>Here&#8217;s a animated image to describe how rule is done (a bit old but it works)<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4198e59 elementor-widget elementor-widget-image\" data-id=\"4198e59\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t<figure class=\"wp-caption\">\n\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/learn.microsoft.com\/en-us\/azure\/defender-for-cloud\/media\/alerts-suppression-rules\/create-suppression-rule.gif?ssl=1\" data-elementor-open-lightbox=\"yes\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DW10%3D\">\n\t\t\t\t\t\t\t<img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/learn.microsoft.com\/en-us\/azure\/defender-for-cloud\/media\/alerts-suppression-rules\/create-suppression-rule.gif?w=640&#038;ssl=1\" title=\"\" alt=\"Create suppression rules\" loading=\"lazy\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<figcaption class=\"widget-image-caption wp-caption-text\">Source: MS Learn<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-90dd981 elementor-widget elementor-widget-heading\" data-id=\"90dd981\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Security alerts map<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9c9ba83 elementor-widget elementor-widget-text-editor\" data-id=\"9c9ba83\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>This map presents security alerts that contain IP addresses targeting your resources. Markings on the map represent sources of the attack on your resources.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-93bf5ff elementor-widget elementor-widget-image\" data-id=\"93bf5ff\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_alertsmap\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM4OCwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2FsZXJ0c21hcC5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"332\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?fit=640%2C332&amp;ssl=1\" class=\"attachment-large size-large wp-image-1388\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?w=2530&amp;ssl=1 2530w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?resize=300%2C156&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?resize=1024%2C531&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?resize=768%2C398&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?resize=1536%2C797&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?resize=2048%2C1062&amp;ssl=1 2048w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?resize=850%2C441&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alertsmap.png?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-637efe2 elementor-widget elementor-widget-heading\" data-id=\"637efe2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Sample alerts<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-5c7378f elementor-widget elementor-widget-text-editor\" data-id=\"5c7378f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>You can create sample alerts from the security alerts page in the Azure portal.<\/p><p>Use sample alerts to:<\/p><ul><li>evaluate the value and capabilities of your Microsoft Defender for Cloud plans.<\/li><li>validate any configurations you&#8217;ve made for your security alerts (such as SIEM integrations, workflow automation, and email notifications).<\/li><\/ul><p>In my case writing this post I generates sample security alerts to demostrate how alerts work and what you can to with those.\u00a0<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-87e0515 elementor-widget elementor-widget-heading\" data-id=\"87e0515\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Active Alerts Workbook<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-0403807 elementor-widget elementor-widget-text-editor\" data-id=\"0403807\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Active Alerts workbook is quick way to get a snapshop what kind of alerts you have in your environments.<\/p><ul><li>It shows alert count by the severity<\/li><li>Resource groups where those alerts are<\/li><li>Alerts by the tag (if there are any)<\/li><li>Top 5 attacked resource by the severity<\/li><li>Top alert types<\/li><li>New alerts within 24 hours<\/li><li>Alerts sorted by the <span style=\"text-decoration: underline;\"><a href=\"https:\/\/attack.mitre.org\/tactics\/enterprise\/\" target=\"_blank\" rel=\"noopener\">Mitre Att&amp;ck tactics<\/a><\/span><\/li><li>Also list view &amp; map view of alerts (not shown in images)<\/li><\/ul><p>Click images to get a bigger picture:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-875c472 elementor-widget elementor-widget-image\" data-id=\"875c472\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t<figure class=\"wp-caption\">\n\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_active_alerts_wb_1\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM4OSwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2FjdGl2ZV9hbGVydHNfd2JfMS5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"300\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?fit=640%2C300&amp;ssl=1\" class=\"attachment-large size-large wp-image-1389\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?w=2124&amp;ssl=1 2124w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?resize=300%2C141&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?resize=1024%2C480&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?resize=768%2C360&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?resize=1536%2C720&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?resize=2048%2C960&amp;ssl=1 2048w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?resize=850%2C399&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_1.png?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<figcaption class=\"widget-image-caption wp-caption-text\">Active Alerts Workbook part 1<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-892202d elementor-widget elementor-widget-image\" data-id=\"892202d\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t<figure class=\"wp-caption\">\n\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_active_alerts_wb_2\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM5MCwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2FjdGl2ZV9hbGVydHNfd2JfMi5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"206\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?fit=640%2C206&amp;ssl=1\" class=\"attachment-large size-large wp-image-1390\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?w=1995&amp;ssl=1 1995w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?resize=300%2C97&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?resize=1024%2C330&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?resize=768%2C247&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?resize=1536%2C494&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?resize=850%2C274&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_active_alerts_wb_2.png?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<figcaption class=\"widget-image-caption wp-caption-text\">Active Alerts Workbook part 1Active Alerts Workbook part 2<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-13c97da elementor-widget elementor-widget-heading\" data-id=\"13c97da\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Download CSV report<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9ddeff2 elementor-widget elementor-widget-text-editor\" data-id=\"9ddeff2\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>As the link says you can download the Security alerts as a CSV report. There are more informations as this clip shows:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-df7bb54 elementor-widget elementor-widget-image\" data-id=\"df7bb54\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_csv\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM5MSwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2Nzdi5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"187\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?fit=640%2C187&amp;ssl=1\" class=\"attachment-large size-large wp-image-1391\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?w=2436&amp;ssl=1 2436w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?resize=300%2C88&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?resize=1024%2C299&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?resize=768%2C224&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?resize=1536%2C448&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?resize=2048%2C598&amp;ssl=1 2048w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?resize=850%2C248&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_csv.png?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-1f5fe3b elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"1f5fe3b\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-95bc8e9\" data-id=\"95bc8e9\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-dd5f6ff elementor-widget elementor-widget-heading\" data-id=\"dd5f6ff\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Guides &amp; Feedback<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-2cf8458 elementor-widget elementor-widget-text-editor\" data-id=\"2cf8458\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>When you click Guides &amp; Feedback link portal opens the side panel where you can see\u00a0Useful links and Community tools sections.<\/p><p><strong>Useful links<\/strong><\/p><p><span style=\"text-decoration: underline;\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/defender-for-cloud\/alerts-overview\">Security alerts and incidents &#8211; Microsoft Defender for Cloud | Microsoft Learn<\/a><\/span><\/p><p><span style=\"text-decoration: underline;\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/defender-for-cloud\/alerts-reference\">Reference guide for security alerts &#8211; Microsoft Defender for Cloud | Microsoft Learn<\/a><\/span><\/p><p><span style=\"text-decoration: underline;\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/defender-for-cloud\/managing-and-responding-alerts\">Manage and respond to security alerts &#8211; Microsoft Defender for Cloud | Microsoft Learn<\/a><\/span><\/p><p><strong>Community tools from GitHub<\/strong><\/p><p>Also some community tools from Microsoft Azure&#8217;s Defender for Cloud GitHub <a href=\"https:\/\/github.com\/Azure\/Microsoft-Defender-for-Cloud\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">repo.<\/span><\/a><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-5765e49 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"5765e49\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-1217308 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"1217308\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-d2f8eea\" data-id=\"d2f8eea\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-556d081 elementor-widget elementor-widget-heading\" data-id=\"556d081\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Section 2 - Alerts status and classifications<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-5c14e86 elementor-widget elementor-widget-image\" data-id=\"5c14e86\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_alerts_statuses\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM5NiwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2FsZXJ0c19zdGF0dXNlcy5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"36\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?fit=640%2C36&amp;ssl=1\" class=\"attachment-large size-large wp-image-1396\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?w=1516&amp;ssl=1 1516w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?resize=300%2C17&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?resize=1024%2C58&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?resize=768%2C44&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?resize=850%2C48&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_alerts_statuses.png?w=1280&amp;ssl=1 1280w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-dff7a6f elementor-widget elementor-widget-text-editor\" data-id=\"dff7a6f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>This is just a static image of alert status (I mean there are no links), how many resources those alerts are affected and open alerts by the severity. Thought it&#8217;s static it updates automatically by the system.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-61f4604 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"61f4604\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-7db1c33 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"7db1c33\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-69c24d9\" data-id=\"69c24d9\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-cb8b7ea elementor-widget elementor-widget-heading\" data-id=\"cb8b7ea\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Section 3 - Search &amp; Filters<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-23f7fe3 elementor-widget elementor-widget-heading\" data-id=\"23f7fe3\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Search<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3004ff7 elementor-widget elementor-widget-text-editor\" data-id=\"3004ff7\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>You can write to Search box what\u00a0 would you like to find.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-5dc8ffe elementor-widget elementor-widget-heading\" data-id=\"5dc8ffe\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Subscription<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-c071719 elementor-widget elementor-widget-text-editor\" data-id=\"c071719\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>You can select which subscription you want to search the alerts.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-58dfd60 elementor-widget elementor-widget-heading\" data-id=\"58dfd60\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h4 class=\"elementor-heading-title elementor-size-default\">Other filters<\/h4>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e5cd788 elementor-widget elementor-widget-text-editor\" data-id=\"e5cd788\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>You can choose from the filter dropdown what you want to search:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-49d8076 elementor-widget elementor-widget-image\" data-id=\"49d8076\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_filters.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_filters\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM5NywidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2ZpbHRlcnMucG5nIn0%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"297\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_filters.png?fit=300%2C297&amp;ssl=1\" class=\"attachment-medium size-medium wp-image-1397\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_filters.png?w=682&amp;ssl=1 682w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_filters.png?resize=300%2C297&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_filters.png?resize=150%2C150&amp;ssl=1 150w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-b2b6212 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"b2b6212\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-a4e6207 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"a4e6207\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-c2de8ba\" data-id=\"c2de8ba\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-ee93537 elementor-widget elementor-widget-heading\" data-id=\"ee93537\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Section 4 - Results<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-6cfa65c elementor-widget elementor-widget-text-editor\" data-id=\"6cfa65c\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Security alert results are based on what you choose above. In my case and the default columns are Severity<\/p><ul><li>Alert name<\/li><li>Affected resource<\/li><li>Resource Group<\/li><li>Activity Start Time<\/li><li>MITRE ATT&amp;CK tactics<\/li><li>Status<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-bdc7eed elementor-widget elementor-widget-image\" data-id=\"bdc7eed\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_results\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM5OCwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX3Jlc3VsdHMucG5nIn0%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"133\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?fit=640%2C133&amp;ssl=1\" class=\"attachment-large size-large wp-image-1398\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?w=2096&amp;ssl=1 2096w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?resize=300%2C63&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?resize=1024%2C213&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?resize=768%2C160&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?resize=1536%2C320&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?resize=2048%2C427&amp;ssl=1 2048w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?resize=850%2C177&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_results.png?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-da75c67 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"da75c67\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-3f899fa elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"3f899fa\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-6428f86\" data-id=\"6428f86\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-14b126a elementor-widget elementor-widget-heading\" data-id=\"14b126a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">How to manage the alerts?<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-b14f497 elementor-widget elementor-widget-text-editor\" data-id=\"b14f497\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>You can manage alerts different ways but let&#8217;s focus to manage in Defender for Cloud.<\/p><p>Like I wrote before you change the alert status by selecting the checkbox in front of Alert Severity and from the top of the panel from the drop down list with title Change Status.<\/p><p>If you click the alert name the alert opens to side panel:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-14fad43 elementor-widget elementor-widget-image\" data-id=\"14fad43\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_sidepanel.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_sidepanel\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM5OSwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX3NpZGVwYW5lbC5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"173\" height=\"300\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_sidepanel.png?fit=173%2C300&amp;ssl=1\" class=\"attachment-medium size-medium wp-image-1399\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_sidepanel.png?w=554&amp;ssl=1 554w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_sidepanel.png?resize=173%2C300&amp;ssl=1 173w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_sidepanel.png?resize=300%2C520&amp;ssl=1 300w\" sizes=\"(max-width: 173px) 100vw, 173px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-861cd4f elementor-widget elementor-widget-text-editor\" data-id=\"861cd4f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Review the high-level information about the security alert.<\/p><ul><li style=\"list-style-type: none;\"><ul><li>Alert severity, status, and activity time<\/li><li>Description that explains the precise activity that was detected<\/li><li>Affected resources<\/li><li>Kill chain intent of the activity on the MITRE ATT&amp;CK matrix (if applicable)<\/li><\/ul><\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-d34e8f6 elementor-widget elementor-widget-heading\" data-id=\"d34e8f6\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Full details<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-654be7e elementor-widget elementor-widget-text-editor\" data-id=\"654be7e\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>If you click the view full details button you can see everything from the selected alert.\u00a0<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3d1eacd elementor-widget elementor-widget-image\" data-id=\"3d1eacd\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_full_details\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTQwOSwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2Z1bGxfZGV0YWlscy5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"377\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?fit=640%2C377&amp;ssl=1\" class=\"attachment-large size-large wp-image-1409\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?w=2201&amp;ssl=1 2201w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?resize=300%2C177&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?resize=1024%2C603&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?resize=768%2C453&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?resize=1536%2C905&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?resize=2048%2C1207&amp;ssl=1 2048w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?resize=850%2C501&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_full_details.png?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-dfd3352 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"dfd3352\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-4900a28\" data-id=\"4900a28\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-6ec3da4 elementor-widget elementor-widget-heading\" data-id=\"6ec3da4\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Take action\n<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-b4e99c1 elementor-widget elementor-widget-text-editor\" data-id=\"b4e99c1\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>After investigating a security alert, you can respond to the alert. By clickin the take action button you will see the remediate actions.<\/p><p>In this case there are six different sections to help the case:<\/p><ul><li><strong>Inspect resource context<\/strong>. Since this is a sample alert there are no logs available but in real case there could be.<\/li><li><strong>Mitigate the threat.<\/strong> Some short guides what to do. Also if there are any other alerts regarding to that resource those alerts can be seen clicking the link.<\/li><li><strong>Prevent future attacks.<\/strong> If there are security misconfigurations in resources you should fix those to prevent similar alerts in the future.<\/li><li><strong>Trigger automated response.<\/strong> You can use logic apps to automate the response to alert and therefore reduce the attack surface.<\/li><li><strong>Suppress similar alerts.<\/strong> It&#8217;s possible to create suppression rules to automatically remediate the alerts.<\/li><li><strong>Configure email notification settings.<\/strong> You can set email notifications to who and in which conditions alert notification emails are send.<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3f67141 elementor-widget elementor-widget-image\" data-id=\"3f67141\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_take_actions.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_take_actions\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTQxMCwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX3Rha2VfYWN0aW9ucy5wbmcifQ%3D%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"538\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_take_actions.png?fit=640%2C538&amp;ssl=1\" class=\"attachment-large size-large wp-image-1410\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_take_actions.png?w=1149&amp;ssl=1 1149w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_take_actions.png?resize=300%2C252&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_take_actions.png?resize=1024%2C861&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_take_actions.png?resize=768%2C646&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_take_actions.png?resize=850%2C715&amp;ssl=1 850w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-8a48e99 elementor-widget elementor-widget-text-editor\" data-id=\"8a48e99\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Finally when you complete the investigation into the alert and responded in the appropriate way, change the status to <strong>Dismissed<\/strong>.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-08a6187 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"08a6187\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-07a26bb elementor-widget elementor-widget-heading\" data-id=\"07a26bb\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Email notification about Security alerts<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-310707b elementor-widget elementor-widget-text-editor\" data-id=\"310707b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>As a default Microsoft sends email about security alerts if you have defined them in Environment settings.<\/p><p>A sample email below:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f5330f3 elementor-widget elementor-widget-image\" data-id=\"f5330f3\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t<figure class=\"wp-caption\">\n\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_email\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM4MiwidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2VtYWlsLnBuZyJ9\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"276\" height=\"300\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email.png?fit=276%2C300&amp;ssl=1\" class=\"attachment-medium size-medium wp-image-1382\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email.png?w=820&amp;ssl=1 820w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email.png?resize=276%2C300&amp;ssl=1 276w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email.png?resize=768%2C834&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email.png?resize=300%2C326&amp;ssl=1 300w\" sizes=\"(max-width: 276px) 100vw, 276px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<figcaption class=\"widget-image-caption wp-caption-text\">Email notification from Defender for Cloud<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e289e93 elementor-widget elementor-widget-text-editor\" data-id=\"e289e93\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>To set those email notifications go to <strong>Environment Settings<\/strong>, choose the wanted subscription and then click <strong>Email notifications<\/strong> and set email:<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f8c3366 elementor-widget elementor-widget-image\" data-id=\"f8c3366\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t<figure class=\"wp-caption\">\n\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?ssl=1\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"mdc_secualerts_email_settings\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MTM4MywidXJsIjoiaHR0cHM6XC9cL3d3dy5qdXNzaW1ldHNvLmNvbVwvd3AtY29udGVudFwvdXBsb2Fkc1wvMjAyNFwvMDhcL21kY19zZWN1YWxlcnRzX2VtYWlsX3NldHRpbmdzLnBuZyJ9\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"640\" height=\"265\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?fit=640%2C265&amp;ssl=1\" class=\"attachment-large size-large wp-image-1383\" alt=\"\" srcset=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?w=1691&amp;ssl=1 1691w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?resize=300%2C124&amp;ssl=1 300w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?resize=1024%2C424&amp;ssl=1 1024w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?resize=768%2C318&amp;ssl=1 768w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?resize=1536%2C637&amp;ssl=1 1536w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?resize=850%2C352&amp;ssl=1 850w, https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_secualerts_email_settings.png?w=1280&amp;ssl=1 1280w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<figcaption class=\"widget-image-caption wp-caption-text\">Email notifications settings<\/figcaption>\n\t\t\t\t\t\t\t\t\t\t<\/figure>\n\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-0bf47f8 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"0bf47f8\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-142c4fc elementor-widget elementor-widget-text-editor\" data-id=\"142c4fc\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>Here was a presentation of Security Alerts. Hope you get the idea of it. The part is the Attack path analysis. Stay tuned.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9d1045f elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"9d1045f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-bc007c7 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"bc007c7\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-4852df9d\" data-id=\"4852df9d\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-3765ef1a elementor-widget elementor-widget-heading\" data-id=\"3765ef1a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">The parts of the MDC blog series<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-7861664d elementor-widget elementor-widget-text-editor\" data-id=\"7861664d\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-element elementor-element-e84b670 elementor-widget elementor-widget-heading\" data-id=\"e84b670\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\u00a0<\/div><div class=\"elementor-element elementor-element-e246c31 elementor-widget elementor-widget-text-editor\" data-id=\"e246c31\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\"><div class=\"elementor-widget-container\"><ul><li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.jussimetso.com\/index.php\/2024\/01\/20\/microsoft-defender-for-cloud-the-blog-series-part-0-introduction\/\" target=\"_blank\" rel=\"noopener\">Part 0: Microsoft Defender for Cloud \u2013 The EPIC blog series \u2013 introduction<\/a><\/span><\/li><li><span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.jussimetso.com\/index.php\/2024\/01\/25\/microsoft-defender-for-cloud-the-blog-series-part-1-getting-started\/\" target=\"_blank\" rel=\"noopener\">Part 1: Getting started aka Setup<\/a><\/span>\u00a0<strong><br \/><\/strong><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2024\/06\/22\/defender-for-cloud-part-2-the-asset-inventory\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 2: The Asset Inventory\u00a0<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2024\/06\/22\/defender-for-cloud-part-3-security-posture\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 3: Security posture<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2024\/08\/24\/defender-for-cloud-part-4-security-recommendations\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 4: Security recommendations<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2024\/08\/31\/defender-for-cloud-part-5-security-alerts\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 5: Security alerts<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2025\/02\/12\/defender-for-cloud-part-6-attack-path-analysis\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 6: Attack path analysis<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2025\/02\/22\/defender-for-cloud-part-7-cloud-security-explorer\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 7: Cloud security explorer<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2025\/03\/07\/defender-for-cloud-part-8-workbooks\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 8: Workbooks<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2025\/03\/13\/defender-for-cloud-part-regulatory-compliance\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 9: Regulatory compliance<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2025\/04\/24\/defender-for-cloud-part-10-cloud-workload-protection-cwp\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 10: Workload protections<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2025\/05\/10\/defender-for-cloud-part-10-5-cwp-advanced-protection\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">part 10.5: Advanced Workload protection<\/span><\/a><\/li><li><a href=\"https:\/\/www.jussimetso.com\/index.php\/2025\/05\/27\/defender-for-cloud-part-11-data-and-ai-security\/\" target=\"_blank\" rel=\"noopener\"><span style=\"text-decoration: underline;\">Part 11: Data and AI security &#8211; The end of the series<\/span><\/a><\/li><\/ul><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1c134896 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"1c134896\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-556fde3e elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"556fde3e\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-1574a7ec\" data-id=\"1574a7ec\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-2bc65aed elementor-widget elementor-widget-author-box\" data-id=\"2bc65aed\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"author-box.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-author-box\">\n\t\t\t\t\t\t\t<div  class=\"elementor-author-box__avatar\">\n\t\t\t\t\t<img decoding=\"async\" src=\"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/07\/jussi_06_2024.jpg?fit=262%2C300&#038;ssl=1\" alt=\"Picture of Jussi Metso\" loading=\"lazy\">\n\t\t\t\t<\/div>\n\t\t\t\n\t\t\t<div class=\"elementor-author-box__text\">\n\t\t\t\t\t\t\t\t\t<div >\n\t\t\t\t\t\t<h6 class=\"elementor-author-box__name\">\n\t\t\t\t\t\t\tJussi Metso\t\t\t\t\t\t<\/h6>\n\t\t\t\t\t<\/div>\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-author-box__bio\">\n\t\t\t\t\t\t<p>Author is a a lifelong IT enthusiast, Microsoft Security MVP and interested in Cloud Security, XDR, SIEM and AI. Motto: Learning is the key for your future. <\/p>\n\t\t\t\t\t<\/div>\n\t\t\t\t\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Defender for Cloud helps you to detect and prevent threats to your hybrid cloud environment. When a threat is detected, Defender for Cloud raises security alerts.<\/p>\n<p>On this security alerts page, you can triage your alerts, investigate the findings, and quickly respond manually or with predefined automated workflows.<\/p>\n","protected":false},"author":1,"featured_media":1365,"comment_status":"open","ping_status":"open","sticky":false,"template":"elementor_theme","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[9],"tags":[36,40],"class_list":["post-1364","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-defender-for-cloud","tag-cloudsecurity","tag-mdcseries"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.jussimetso.com\/wp-content\/uploads\/2024\/08\/mdc_series_5.png?fit=726%2C369&ssl=1","jetpack_shortlink":"https:\/\/wp.me\/pes24X-m0","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/posts\/1364","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/comments?post=1364"}],"version-history":[{"count":16,"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/posts\/1364\/revisions"}],"predecessor-version":[{"id":2445,"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/posts\/1364\/revisions\/2445"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/media\/1365"}],"wp:attachment":[{"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/media?parent=1364"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/categories?post=1364"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jussimetso.com\/index.php\/wp-json\/wp\/v2\/tags?post=1364"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}