Blog Post

Microsoft Defender for Cloud Blog
2 MIN READ

Security posture management and server protection for AWS and GCP are now generally available

OrSerokJeppa's avatar
OrSerokJeppa
Icon for Microsoft rankMicrosoft
Mar 30, 2022

Today, we’re excited to announce that Microsoft Defender for Cloud’s multi cloud capabilities for posture management and server protection for Amazon Web Services (AWS) and Google Cloud Platform (GCP) workloads are generally available. Organizations can now easily manage and track their security state across the three largest cloud providers, as well as on-premises environments, in one centralized experience.

 

Single pane of glass for security posture management enabled with a few clicks

Defender for Cloud’s integrated suite of posture management, advanced threat detection and vulnerability assessment comes out of the box, with no dependencies on other cloud provider capabilities. Frictionless onboarding of large environments can be done with a few clicks, and auto-provisioning of new accounts and workloads is automated with a single configuration. Among the capabilities, customers will get:

  • Frictionless and simple onboarding for AWS and GCP environments at scale
  • Agentless CSPM, with +240 OOTB security recommendations
  • Regulatory compliance standards (AWS: CIS 1.2.0, PCI, Foundational Security Best Practices; GCP: CIS 1.1.0, 1.2.0)
  • Recommendations management capabilities
  • Cross cloud asset inventory
  • Secure score per cloud
  • Integrated in workflow automation and exporting capabilities
  • Out of the box overtime security state tracking with Workbooks

Multi cloud secure score

 

Security recommendations on Azure, AWS and GCP resources

 

Automatically protect new and existing compute instances across clouds with Defender

Defender for Servers offers a wide set of capabilities, ranging from EDR to vulnerability assessment. Deploying agents on compute instances is easily automated with auto-provisioning, so security teams can reduce friction and operational overhead. Protect virtual machines in Azure, AWS, GCP and on-prem with:

  • Automatic provisioning of pre-requisites on existing and new machines
  • Integrated license for Microsoft Defender for Endpoint
  • Vulnerability assessment
  • OS hardening recommendations
  • OOTB built in and custom guest configuration recommendations
  • File integrity monitoring
  • Adaptive application control

Vulnerability assessment findings detected on machines from all clouds

 

 

More information:

 

Updated Mar 30, 2022
Version 2.0
  • Gino_Barletta's avatar
    Gino_Barletta
    Copper Contributor

    Can Microsoft Defender for Cloud’s multi cloud capabilities (say CSPM and/or CWPP, or otherwise) be used to perform [web] Application Vulnerability for Amazon Elastic Container Registry (Amazon ECR) ?
    OrSerokJeppa

  • Dean_Gross's avatar
    Dean_Gross
    Silver Contributor

    When we create the stack in AWS we are not seeing any place to enter the secret that was generated in MDC. What are we missing?

  • Hello, this is a great feature. I wanted to know where in the MDFC does the data from AWS and GCP get stored. Is this also under the securityresources table in the Azure Resource Graph. If yes, how is the access control on this data done so that the queries are restricted to only those AWS and GCP account consumers to protect confidentiality of the security findings?