‘An ounce of prevention is worth a pound of cure’ expresses the simple logic behind the Defender for Cloud Security Posture Management (CSPM), Cloud Workload Protection (CWP), and External Attack Surface Management (EASM) features of Microsoft Defender XDR. In addition to your SIEM, which is reactive, every shop needs to have insight into misconfiguration issues and compliance risks in the cloud--a logical extension of Zero Trust policies. Learn how the multi-cloud features of Defender for Cloud continuously monitor cloud infrastructure including DevOps platforms for gaps in security policy enforcement across all clouds and all platforms. Leverage agentless vulnerability scanning, secrets scanning, Kubernetes discovery, container assessments, and Security Copilot plug-ins. Understand how Defender EASM continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure.

You will learn:

• How to achieve effective prioritization of cross-platform security recommendations in the Defender XDR portal.
• How to connect GitHub repositories for code supply scanning, surface findings, remediate them, and increase security score.
• Seed Defender EASM with known legitimate assets to make inferences about assets’ relationship to your organization and uncover previously unknown and unmonitored artifacts.