Skip to main content

💼 2 Microsoft Defender

Contextual name: 💼 2 Microsoft Defender
ID: /frameworks/cis-azure-v2.0.0/02
Located in: 💼 CIS Azure v2.0.0

Description

This section covers recommendations to consider for tenant-wide security policies and plans related to Microsoft Defender. Please note that because Microsoft Defender products require additional licensing, all Microsoft Defender plan recommendations in subsection 2.1 are assigned as “Level 2.”

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 2.1 Microsoft Defender for Cloud	22
💼 2.1.1 Ensure That Microsoft Defender for Servers Is Set to 'On' - Level 2 (Manual)		1	1
💼 2.1.2 Ensure That Microsoft Defender for App Services Is Set To 'On' - Level 2 (Manual)		1	1
💼 2.1.3 Ensure That Microsoft Defender for Databases Is Set To 'On' - Level 2 (Manual)		2	1
💼 2.1.4 Ensure That Microsoft Defender for Azure SQL Databases Is Set To 'On' - Level 2 (Manual)		1	1
💼 2.1.5 Ensure That Microsoft Defender for SQL Servers on Machines Is Set To 'On' - Level 2 (Manual)		1	1
💼 2.1.6 Ensure That Microsoft Defender for Open-Source Relational Databases Is Set To 'On' - Level 2 (Manual)
💼 2.1.7 Ensure That Microsoft Defender for Storage Is Set To 'On' - Level 2 (Manual)		1	1
💼 2.1.8 Ensure That Microsoft Defender for Containers Is Set To 'On' - Level 2 (Manual)
💼 2.1.9 Ensure That Microsoft Defender for Azure Cosmos DB Is Set To 'On' - Level 2 (Manual)
💼 2.1.10 Ensure That Microsoft Defender for Key Vault Is Set To 'On' - Level 2 (Manual)		1	1
💼 2.1.11 Ensure That Microsoft Defender for DNS Is Set To 'On' - Level 2 (Manual)		1	1
💼 2.1.12 Ensure That Microsoft Defender for Resource Manager Is Set To 'On' - Level 2 (Manual)
💼 2.1.13 Ensure that Microsoft Defender Recommendation for 'Apply system updates' status is 'Completed' - Level 1 (Manual)
💼 2.1.14 Ensure Any of the ASC Default Policy Settings are Not Set to 'Disabled' - Level 1 (Manual)
💼 2.1.15 Ensure that Auto provisioning of 'Log Analytics agent for Azure VMs' is Set to 'On' - Level 1 (Automated)		1	1
💼 2.1.16 Ensure that Auto provisioning of 'Vulnerability assessment for machines' is Set to 'On' - Level 2 (Manual)
💼 2.1.17 Ensure that Auto provisioning of 'Microsoft Defender for Containers components' is Set to 'On' - Level 2 (Manual)
💼 2.1.18 Ensure That 'All users with the following roles' is set to 'Owner' - Level 1 (Automated)		1	1
💼 2.1.19 Ensure 'Additional email addresses' is Configured with a Security Contact Email - Level 1 (Automated)		1	1
💼 2.1.20 Ensure That 'Notify about alerts with the following severity' is Set to 'High' - Level 1 (Automated)
💼 2.1.21 Ensure that Microsoft Defender for Cloud Apps integration with Microsoft Defender for Cloud is Selected - Level 2 (Manual)		1	1
💼 2.1.22 Ensure that Microsoft Defender for Endpoint integration with Microsoft Defender for Cloud is selected - Level 2 (Manual)
💼 2.2 Microsoft Defender for IoT	1
💼 2.2.1 Ensure That Microsoft Defender for IoT Hub Is Set To 'On' - Level 2 (Manual)

Description
Similar
Sub Sections