As Microsoft wraps up its fiscal year this past week here’s the latest newsletter for Microsoft Security.  There’s a lot of good content in this edition to be consumed but have called out ones that should be prioritized in italics.

General News

• The evolution of Microsoft Threat Protection, June update
• 5 principles driving a customer-obsessed identity strategy at Microsoft
• Inside the MSRC – Customer-centric incident response
• Inside the MSRC – Anatomy of a SSIRP incident
• Securing the hybrid cloud with Azure Security Center and Azure Sentinel
• How to integrate Azure Monitor with SIEM tools (Video)
• Lessons learned from the Microsoft SOC Part 2b: Career paths and readiness
• Microsoft Wants More Security Researchers to Hack Into Its Cloud
• Importing Sigma Rules to Azure Sentinel
• MSRC has confirmed an active Linux worm leveraging critical Remote Code Execution (RCE) vulnerability CVE-2019-10149 in Linux Exim email servers
• How to recover from a security breach
• Ovum recommends Microsoft security to safeguard your hybrid and multi cloud environments

Microsoft 365 Security (All Up News)

• Overview of the all-new Microsoft 365 compliance center
• Secure your journey to the cloud with free DMARC monitoring for Office 365
• Advancing Windows 10 as a passwordless platform
• We have released a security patch for Outlook on Android devices to address a vulnerability
• Microsoft Security Baselines Blog

Identity & Data Protection (Azure AD, Intune, AIP, MCAS)

• Azure AD Mailbag: Conditional Access Q&A – especially read #7
• Achieve Zero Trust with Azure AD conditional access
• Getting Started with Microsoft Cloud App Security Policies
• What’s new in the latest Intune EndPoint Zone 1905 webisode? (Video)
• Develop a risk management strategy for your Azure AD application migration
• Five tips to improve the migration process to Azure Active Directory
• Azure AD Adoption Kits
• Discover Shadow IT across IaaS and PaaS with Microsoft’s CASB
• Intune Adoption Kit
• Microsoft Intune extends ruggedized Android devices support with Zebra
• Better Mobile Threat Defense Integration with Microsoft Defender Advanced Threat Protection Now Available
• What is a Primary Refresh Token? Great updated documentation that is recommended reading
• Microsoft Intune security tasks extend Microsoft Defender ATP’s Threat & Vulnerability Management
• AzureAD now supports federated SSO + automated account provisioning with the Oracle Cloud!
• New Pre-Integrated Apps Available in Azure AD
• Asana streamlines user provisioning with Azure AD
• You can now use the Azure AD Identity Protection Risky Users API to retrieve Azure AD users’ risk history, dismiss risky users, & to confirm users as compromised.

Latest Azure AD Stats

Threat Protection (Office ATP, Windows Defender ATP, Azure ATP/ATA)

• Inside out: Get to know the advanced technologies at the core of Microsoft Defender ATP next generation protection
• MDATP Python automation – Automate machine isolation with Python script
• New Windows Defender Application Control (WDAC) features documented for 1903!
• MDATP – The Power of Advanced Hunting – Unleash the hunter in you! (Webinar)
• Windows Server 2008R2 is now supported by MDATP
• Microsoft Defender ATP automation & cloud app discovery now available in previous Windows 10 builds!
• Azure Advanced Threat Protection Webinar Series