| 🛡️ Activity Log Alert for Create or Update Network Security Group does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Create or Update Public IP Address Rule does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Create or Update Security Solution does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Create or Update SQL Server Firewall Rule does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Create Policy Assignment does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Delete Network Security Group does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Delete Policy Assignment does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Delete Public IP Address Rule does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Delete Security Solution does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Delete SQL Server Firewall Rule does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Activity Log Alert for Service Health does not exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Application Insights are not configured🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
| 🛡️ Bastion Host does not exist🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
| 🛡️ Custom Subscription Administrator Roles exist🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Integration With Microsoft Defender For Cloud Apps is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Integration With Microsoft Defender For Endpoint is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Log Analytics Agent is not auto provisioned🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For App Services is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For Azure Cosmos DB is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For Containers is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For IoT Hub is not set to On🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Microsoft Defender For Key Vault is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For Open-Source Relational Databases is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For Resource Manager is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For Servers is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For SQL Servers On Machines is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Microsoft Defender For Storage is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Network Watcher is not enabled in every available region🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Privileged Role Assignments are not periodically reviewed🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Resource Lock Administrator Custom Role does not exist🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Resources Basic SKU is used for production workloads🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Security Alert Notifications additional email address is not configured🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Security Alert Notifications for alerts with High or Critical severity is not configured🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Security Alert Notifications for attack path with Critical severity is not configured🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Security Alert Notifications to subscription owners are not configured🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Subscription Leaving Microsoft Entra ID Directory and Subscription Entering Microsoft Entra ID Directory is not set to Permit No One🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Use of the 'User Access Administrator' role is not restricted🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Vulnerability Assessment is not auto provisioned🟢⚪ | | 🟢 x2, ⚪ x1 | no data |