If you have been following along at home you will know this was a big month for Microsoft Security as Azure Sentinel (only cloud native SIEM) went GA.  So, as you can imagine there are several articles below on Sentinel.  As with every newsletter, I have italicized the articles that should be of primary focus for consumption.  For awareness, in addition to the monthly newsletter, I am publishing a weekly version that can be accessed here.  Make sure to bookmark this link to get the great content below on a weekly basis.

General News

• Operational resilience begins with your commitment to and investment in cyber resilience
• Why banks are adopting a modern approach to cybersecurity—the Zero Trust model
• Overview of the Marsh-Microsoft 2019 Global Cyber Risk Perception survey results
• MSRC – September 2019 Security Updates
• MSRC:  Acquiring a VHD to Investigate
• Minutes and Motivation Matters

• Solve the IoT security paradox to unleash innovation
• Using Threat Intelligence in your Jupyter Notebooks

Azure Security & Compliance News

• Steps to run PCE (Azure Policy Compliance Evaluator)
• Enhanced security and resiliency with your Azure Data Explorer cluster
• Azure Firewall updates—September 2019
• Managing rules with adaptive application controls in Azure Security Center has improved
• Preparing towards Azure Sentinel’s GA
• Microsoft Taste of Premier Video Series Reviews Azure Sentinel (Video)
• Azure Sentinel: Webinar Recordings
• Azure Security Center Webinar: Secure Score
• Azure Security Expert Series Empower Your Security Operations with Azure Sentinel
• Azure Sentinel—the cloud-native SIEM that empowers defenders is now generally available
• Avanade leads in threat detection and security automation with Azure Sentinel
• IT company automates security, adds value to offerings for midsize customers with Azure Sentinel

M365 Security All Up News

• PSA (Please Read): Improving Security – Together
• Improve your Cloud Security posture with Microsoft Secure Score
• Security baseline for Office 365 ProPlus (v1908, Sept 2019) – FINAL
• New extended support dates for MDOP (including MBAM) tools
• Security Policy Advisor for Office 365 ProPlus is now Generally Available!
• Rolling out S/MIME support in Outlook for iOS begins
• 7 apps you can build using the Microsoft Graph Security API!
• Updates to SharePoint security, administration, and migration

M365 Identity & Data Protection (Azure AD, Intune, AIP, MCAS)

• Action Required: Evaluate and update Conditional Access policies in preparation for iPadOS launch
• Azure Active Directory Global Reader role
• Maximizing your Identity Security Posture with Azure Advanced Threat Protection
• Presenting the new Unfamiliar Sign-in Properties
• MCAS AIP: How to control access to your sensitive information from outside your organization?
• Manage emergency access accounts in Azure AD
• Sensitivity labeling now built into Office apps for Windows to help protect sensitive information
• How you can use the AIP Unified Labeling client TODAY
• Unified labeling AIP scanner preview brings scaling out and more!
• Search groups and members (preview) in Azure Active Directory
• How Pingboard secures data and boosts competitive value with Azure AD
• What’s new in Azure Active Directory? – Aug 2019
• One Identity across Yammer and Office
• Announcing General Availability for Azure Active Directory based access control for Service Bus
• Adobe Acrobat chooses Microsoft 365 for built-in app protection
• New Pre-Integrated Apps Available in Azure AD | Sep 2019
• How to use PolyBase by authenticating via AAD pass-through
• Azure AD expands integration with SAP Identity Authentication Service
• Azure Information Protection Documentation Update for September 2019
• Azure AD + F5—helping you secure all your applications
• Want to learn how to deploy and configure Azure Advanced Threat Protection?

M365 Threat Protection (Office ATP, Windows Defender ATP, Azure ATP/ATA)

• Deep learning rises: new methods for detecting malicious PowerShell scripts
• Automated incident response in Office 365 ATP now generally available
• Microsoft Defender ATP supports custom IOCs for URLs, IP addresses, and domains
• Windows Defender tamper protection management in Microsoft Intune
• Microsoft Defender ATP EDR support for Windows Server 2008 R2 now generally available
• Enhanced visibility into web threats with Microsoft Defender ATP
• Advanced hunting updates: USB events, machine-level actions, and schema changes

M365 Compliance & Goverance

• Foundations of Microsoft Flow—secure and compliant automation, part 1 
• Foundations of Flow—secure and compliant automation, part 2