kurtshDec 15, 2023

Do you know if your users are accessing ChatGPT or other AI apps?

Microsoft Defender for Cloud Apps has introduced 400 Generative AI applications to its Cloud App Catalog & its discovery capabilities.

Is your sensitive data being shared with applications and exposed later to an external audience? Are the AI apps in use compliant with SOC2 or HIPAA?

Discover, monitor and protect the use of Generative AI apps
https://techcommunity.microsoft.com/t5/microsoft-defender-xdr-blog/discover-monitor-and-protect-the-use-of-generative-ai-apps/ba-p/3999228

#defender #microsoft #MDCA #generativeai #ai #gpt #security

Discover, monitor and protect the use of Generative AI apps

We are thrilled to share that the Microsoft Defender for Cloud Apps discovery capabilities (extension to over 400 Generative AI apps) is now generally..

TECHCOMMUNITY.MICROSOFT.COM
F0rm4tAug 25, 2023

๐—œ๐—ป๐˜๐—ฒ๐—ด๐—ฟ๐—ฎ๐˜๐—ถ๐—ป๐—ด ๐— ๐—ถ๐—ฐ๐—ฟ๐—ผ๐˜€๐—ผ๐—ณ๐˜ ๐Ÿฏ๐Ÿฒ๐Ÿฑ ๐——๐—ฒ๐—ณ๐—ฒ๐—ป๐—ฑ๐—ฒ๐—ฟ ๐—ถ๐—ป๐˜๐—ผ ๐˜†๐—ผ๐˜‚๐—ฟ ๐˜€๐—ฒ๐—ฐ๐˜‚๐—ฟ๐—ถ๐˜๐˜† ๐—ผ๐—ฝ๐—ฒ๐—ฟ๐—ฎ๐˜๐—ถ๐—ผ๐—ป๐˜€

The deployment and implementation of the Microsoft 365 Defender platform will need careful planning with the SOC team to optimize the day-to-day operations and lifecycle management of the Microsoft 365 Defender service itself.

This content explores several concepts on how to operationalize and integrate Microsoft 365 Defender with either new or existing people, processes, and technologies that form the basis for modern security operations.

Use these steps to integrate Microsoft 365 Defender into your SOC.

1๏ธโƒฃPlan for Microsoft 365 Defender operations readiness

2๏ธโƒฃPerform a SOC integration readiness assessment using the Zero Trust Framework

3๏ธโƒฃPlan for Microsoft 365 Defender integration with your SOC catalog of services

4๏ธโƒฃDefine Microsoft 365 Defender roles, responsibilities, and oversight

5๏ธโƒฃDevelop and test use cases

6๏ธโƒฃIdentify SOC maintenance tasks

https://learn.microsoft.com/en-us/microsoft-365/security/defender/integrate-microsoft-365-defender-secops?view=o365-worldwide

#m365defender #defender #microsoft #xdr #soc #zerotrust #azure #cloud #cloudsecurity #securityanalyst #mdo #mde #mdi #entraid #mdca

Integrating Microsoft 365 Defender into your security operations

The basics of integrating Microsoft 365 Defender into your security operations.

F0rm4tAug 25, 2023

๐—–๐—ผ๐—ป๐—ณ๐—ถ๐—ด๐˜‚๐—ฟ๐—ฒ ๐—๐˜‚๐˜€๐˜-๐—ถ๐—ป-๐—ง๐—ถ๐—บ๐—ฒ ๐—”๐—ฐ๐—ฐ๐—ฒ๐˜€๐˜€ ๐˜๐—ผ ๐— ๐Ÿฏ๐Ÿฒ๐Ÿฑ ๐——๐—ฒ๐—ณ๐—ฒ๐—ป๐—ฑ๐—ฒ๐—ฟ

๐Ÿ”ตEntra ID (formerly Azure AD) offers the Privileged Identity Management (PIM) for Groups feature, enabling users to attain just-in-time membership and ownership of groups, thus governing access to a range of services.

๐Ÿ”ตM365 Defender unified RBAC workloads offers centralized permissions management for the following services:

โžก๏ธDefender for Endpoint

โžก๏ธDefender for Identity

โžก๏ธDefender for Cloud Apps

โžก๏ธDefender for Office 365

โžก๏ธMicrosoft Defender Vulnerability Management

โžก๏ธSecure score

PIM for Groups paired with M365 Defender RBAC offers a solution for just-in-time Defender access.

Find out more details: https://techcommunity.microsoft.com/t5/security-compliance-and-identity/configure-just-in-time-access-to-m365-defender/ba-p/3764564

#azure #azuread #entraid #identity #rbac #m365defender #xdr #justintime #pim #pam #mde #mdo #mdi #securescore #mdca #casb #microsoft #microsoftsecurity #soc #cloud #cloudsecurity #cloudnative

Configure Just-in-Time Access to M365 Defender

Group membership can define M365 Defender role assignment and group membership can be given in a just-in-time manner, which means that M365 Defender roles can..

TECHCOMMUNITY.MICROSOFT.COM