Microsoft Security Saturday – 04/02/2022

New Ransomware Recommendation Dashboard in Microsoft Defender for CloudThe new Ransomware recommendations dashboard is an Azure workbook that provides you visibility into what security recommendations you should prioritize to reduce the likelihood of getting compromised by a Ransomware attack. It leverages Microsoft Defender for Cloud recommendations, and secure score to help you track progress of your security posture enhancement. Since it is based on Defender for Cloud, it also brings built-in automation capabilities to help remediate security recommendations and reduce expose factors.

Security posture management and server protection for AWS and GCP are now generally availableToday, we’re excited to announce that Microsoft Defender for Cloud’s multi cloud capabilities for posture management and server protection for Amazon Web Services (AWS) and Google Cloud Platform (GCP) workloads are generally available. Organizations can now easily manage and track their security state across the three largest cloud providers, as well as on-premises environments, in one centralized experience.

Introducing the new Azure Front Door: Reimagined for modern apps and contentToday, we are announcing the general availability of the new Azure Front Door, our native, modern cloud content delivery network (CDN) catering to both dynamic and static content acceleration with built-in turnkey security, and a simple and predictable pricing model. There are two Azure Front Door tiers—Azure Front Door Standard and Premium—that provide a unified, secure solution for delivering your applications, APIs, and content on Azure or anywhere.

Azure Data Explorer: Zero Trust Security with Conditional AccessToday, we are excited to launch conditional access support for Azure Data Explorer (ADX).  This was an important ask from our enterprise & government customers to achieve Zero Trust Security with Azure Data Explorer (ADX). 

EU-US data agreement an important milestone for data protection, Microsoft is committed to doing our partToday, the European Commission and the U.S. government announced an important agreement governing the transfer of data between the EU and the U.S. This new Trans-Atlantic Data Privacy Framework is designed to rebuild and strengthen the data protection bridge between the EU and the U.S. by addressing the concerns of the Court of Justice of the European Union when it invalidated the original Privacy Shield framework in 2020. Microsoft applauds the European Commission and the U.S. government for achieving this important milestone.

Where does AAD App Proxy fit with other Azure reverse proxies?One of the best kept secrets in Azure is Azure Active Directory (AAD) Application Proxy. When exposing web applications running in Azure or on-premises, we all tend to look at services such as Azure Front Door or Azure Application Gateway, but this little gem can make the life of a network administrator so much simpler.

Data Cataloging with Azure PurviewMany big organisations are moving towards decentralisation of data teams. In a decentralised data team setup — where there will be multiple data teams, producing data sets covering different business areas, and treating them as products — a tool for data consumers to discover data sets available to them, with minimum human interaction, is needed.

Microsoft Sentinel Ninja Training – the March 2022 updateIn this post we will list the new and updated modules with new features for the ninja training. To keep up to date with all the new features being released in Microsoft Sentinel, make sure you regularly monitor our what’s new page.

Microsoft Defender for Identity Response ActionsWe are thrilled to announce the general availability of the new response actions in Microsoft Defender for Identity, targeting on-premises Active Directory accounts in the event that an identity is compromised. 

Azure AD RBAC: Custom roles & administrative units for devices now availableIn our first blog of this series, we discussed general availability of custom roles for delegated app management. Continuing the series of announcements for Azure Active Directory (Azure AD) role-based access control (RBAC), I’m excited to share several new features to enable fine-grained delegation of device administration in Azure AD. 

Other worthy newsletters to for your reading pleasure: