Microsoft Ignite 2022: Top Security Announcements
Wade Tyler Millward
The announcements include Defender for DevOps, automatic ransomware attack disruption with Microsoft 365 Defender and a new public preview of Microsoft Entra Identity Governance.
New Microsoft Defender For Cloud Previews
Microsoft introduced new previews related to Defender for Cloud. One preview is for a Defender for DevOps service meant to provide visibility across multiple development operations environments for a central location to manage DevOps security.
The service is also meant to strengthen cloud resource configurations in code and prioritize remediation of critical issues. Defender for DevOps supports GitHub and Azure DevOps, with support for other DevOps platforms coming “soon,” according to Microsoft.
Another preview is for Defender Cloud Security Posture Management (CSPM), which aims to deliver integrated insights across DevOps, runtime infrastructure, external attack surfaces and other cloud resources. Defender CSPM is built on Microsoft’s cloud security graph and provides a proactive attack path analysis, according to Microsoft.
The free CSPM experience also now comes with a comprehensive multi-cloud security framework for Defender for Cloud, which is meant to help map best practices across clouds and industry frameworks, according to Microsoft.
A number of other capabilities are in preview, including agentless scanning for Defender for Servers and an agent-based approach to virtual machines (VMs) in Microsoft Azure and Amazon Web Services (AWS). A preview is also available for expanded multi-cloud threat protection with agentless scanning in AWS Elastic Container Registry.