Security posture management and server protection for AWS and GCP are now generally available

Today, we’re excited to announce that Microsoft Defender for Cloud’s multi cloud capabilities for posture management and server protection for Amazon Web Services (AWS) and Google Cloud Platform (GCP) workloads are generally available. Organizations can now easily manage and track their security state across the three largest cloud providers, as well as on-premises environments, in one centralized experience.

Single pane of glass for security posture management enabled with a few clicks

Defender for Cloud’s integrated suite of posture management, advanced threat detection and vulnerability assessment comes out of the box, with no dependencies on other cloud provider capabilities. Frictionless onboarding of large environments can be done with a few clicks, and auto-provisioning of new accounts and workloads is automated with a single configuration. Among the capabilities, customers will get:

• Frictionless and simple onboarding for AWS and GCP environments at scale
• Agentless CSPM, with +240 OOTB security recommendations
• Regulatory compliance standards (AWS: CIS 1.2.0, PCI, Foundational Security Best Practices; GCP: CIS 1.1.0, 1.2.0)
• Recommendations management capabilities
• Cross cloud asset inventory
• Secure score per cloud
• Integrated in workflow automation and exporting capabilities
• Out of the box overtime security state tracking with Workbooks

Multi cloud secure score

Security recommendations on Azure, AWS and GCP resources

Automatically protect new and existing compute instances across clouds with Defender

Defender for Servers offers a wide set of capabilities, ranging from EDR to vulnerability assessment. Deploying agents on compute instances is easily automated with auto-provisioning, so security teams can reduce friction and operational overhead. Protect virtual machines in Azure, AWS, GCP and on-prem with:

• Automatic provisioning of pre-requisites on existing and new machines
• Integrated license for Microsoft Defender for Endpoint
• Vulnerability assessment
• OS hardening recommendations
• OOTB built in and custom guest configuration recommendations
• File integrity monitoring
• Adaptive application control

Vulnerability assessment findings detected on machines from all clouds

More information:

• Deep dive into AWS and GCP releases
• Onboard AWS accounts and GCP projects
• Get started with a free trial in Azure
• Learn how to get started with Microsoft Defender for Cloud
• Subscribe to our YouTube series for product deep dives!
• Discover Azure Arc