Blog Post

Microsoft Defender for Cloud Blog
1 MIN READ

Announcing Microsoft cloud security benchmark v1 (General Availability)

JimCheng's avatar
JimCheng
Icon for Microsoft rankMicrosoft
Mar 21, 2023

Since its first introduction in 2019, the Azure Security Benchmark (ASB) has been widely used by our customers to secure their Azure environments, especially as a toolkit for Azure security implementation planning and helping report compliance on multiple regulatory standards. As the successor of ASB, today we are announcing the general availability the Microsoft cloud security benchmark v1

 

The Microsoft cloud security benchmark (MCSB) v1 is an expanded and enhanced version from Azure Security Benchmark v3 with a new layer of multicloud security guidance. Currently, a full set of security guidance for Amazon Web Services has been developed for all security domains in the Benchmark. In addition, you can now monitor the MCSB controls across Azure and AWS using Microsoft Defender for Cloud. Similar to Azure, MCSB monitoring is enabled by default in MDC for AWS environments, with GCP coverage coming soon.

 

MCSB public preview was announced in October 2022. In the last few months, we have made improvements including increasing the AWS monitoring capabilities to 172 automated checks and published 93 Azure service baseline in the new MCSB format. 

 

For more What's New in the Microsoft cloud security benchmark v1, please refer to our previous announcement of the public preview. And please also refer to How Microsoft cloud security benchmark (MCSB) helps you succeed in your cloud security journey if you want to understand more on the value proposition of MCSB. 

Updated Mar 21, 2023
Version 1.0
Azure Security Benchmark
best practices
cloud security
compliance
JimCheng's avatar
Icon for Microsoft rankMicrosoft
Joined February 03, 2021
View Profile
Microsoft Defender for Cloud Blog
Microsoft Defender for Cloud is a cloud-native application platform (CNAPP) that offers security and compliance from code to runtime, enhanced by AI, for hybrid and multicloud environments.

4 Comments

Sort By
  • Javaripa's avatar
    Javaripa
    Brass Contributor
    Oct 04, 2023

    Are there any plans for providing security baselines for AWS services?

  • JimCheng's avatar
    JimCheng
    Icon for Microsoft rankMicrosoft
    Jun 13, 2023

    akssingh_shs Sorry for the late response. If your subscription was already assigned on ASB, you don't need to re-assign the initiative, it will be automatically enrolled into MCSB v1. 

     

    In terms of the Defender for Cloud for cognitive services, if you're referring to any kind of threat intelligence for cognitive services, I don't believe so. If you're referring to any Azure Policy for cognitive services, you may look up the Azure built-in policies page where these policies are mostly available in Defender for Cloud recommendations & Compliance Dashboard.

     

  • akssingh_shs's avatar
    akssingh_shs
    Copper Contributor
    Apr 02, 2023

    I also wanted to know whether there was anything in Defender for Cloud that dealt with protecting cognitive services.

  • akssingh_shs's avatar
    akssingh_shs
    Copper Contributor
    Apr 02, 2023

    We are using Defender for Cloud only for Azure in that case what would be different for me with new MCSB . If you could suggest it will really be helpful to decide me that do i really need to assign this new MCSB or continue with ASB.

    ASB Definition ID currently assigned on our subscription is  --/providers/Microsoft.Authorization/policySetDefinitions/1f3afdf9-d0c9-4c3d-847f-89da613e70a8

    Name- Azure Security Benchmark

    Version -57.4.0