Security Guidance Series: CAF 4.0 Understanding Threat From Awareness to Intelligence-Led Defence

AaronSingh

Microsoft

Dec 10, 2025

CAF 4.0 raises the bar for threat understanding. Public sector teams must shift from static risks to living, intelligence-led threat models that shape real security decisions.

The updated CAF 4.0 raises expectations around control A2.b - Understanding Threat. Rather than focusing solely on awareness of common cyber-attacks, the framework now calls for a sector-specific, ...

Updated Nov 26, 2025

Version 1.0

cloud security

compliance

governance

identity and access management

microsoft defender xdr

Microsoft

Joined September 12, 2025

View Profile

Microsoft Security Community Blog

Follow this blog board to get notified when there's new activity

Blog Post

Security Guidance Series: CAF 4.0 Understanding Threat From Awareness to Intelligence-Led Defence

CAF 4.0 raises the bar for threat understanding. Public sector teams must shift from static risks to living, intelligence-led threat models that shape real security decisions.