This blog post has a curation of many Microsoft security exposure management (MSEM) resources, organized in a format that can help you to go from absolutely no knowledge in MSEM, to designing and implementing different scenarios. You can use this blog post as a training roadmap to ramp up your knowledge in MSEM.
Microsoft Security Exposure Management empowers customers to:
- Build an effective exposure management program with a continuous threat exposure management (CTEM) process.
- Reduce risk with a clear view of every asset and real-time assessment of potential exposures both inside-out and outside-in.
- Identify and classify critical assets, ensuring they are protected against a wide variety of threats.
- Discover and visualize potential adversary intrusion paths, including lateral movement, to proactively identify and stop attacker activity.
- Communicate exposure risk to business leaders and stakeholders with clear KPIs and actionable insights.
- Enhance exposure analysis and remediation by integrating with third-party data sources and tools
Modules
To become a Microsoft security exposure management Ninja, you will need to complete each module. The content of each module will vary, refer to the legend to understand the type of content before clicking in the topic’s hyperlink. The table below summarizes the content of each module:
|
Module |
Description |
|
1 – Introducing Microsoft Security Exposure management |
In this module you will familiarize yourself with MSEM and understand the use case scenarios. |
|
2 – Planning MSEM Adoption |
In this module you will learn the main considerations to correctly plan MSEM adoption. From supported platforms to best practices operationalization. |
|
3 – Attack Surface management Capabilities in Microsoft Security Exposure management | In this module you will learn how to use the attack surface management capabilities available in MSEM, which includes attack paths, attack surface map. |
|
4 – Exposure Insights |
In this module you will learn about the Initiatives, metrics, recommendations, events in Microsoft Security Exposure management and give you insights on how they can help you with your posture journey. In this module you will also familiarize yourself with recommendations and events. |
|
5 – First and Third-party integrations |
In this module you will learn how the variety of tools could help us to extend our exposure management capabilities in Microsoft Security Exposure management, which includes MDC, MDI, MDE, MDVM, EASM and more. This module also covers how these integrations work in MSEM, the different categories of capabilities, and how to get the most benefit. |
|
5 – Regulatory Compliance Capabilities in Microsoft Defender for Cloud |
In this module you will learn about the regulatory compliance dashboard in Microsoft Defender for Cloud and give you insights on how to include additional standards. In this module you will also familiarize yourself with Azure Blueprints for regulatory standards. |
Module 1 - Introducing MSEM
- Introducing Microsoft Security Exposure Management
- Getting Started with Microsoft security exposure management
- Stay ahead of threats with proactive security - part 1
- Stay ahead of threats with proactive security - part 2
- What is Microsoft Security Exposure Management?
- Navigating cyber risks with MSEM (AKA MSEM eBook)
Module 2 - Planning Your MSEM Adoption
- Integration and licensing for Microsoft Security Exposure Management
- Compare Microsoft Security Exposure Management with secure score
- Microsoft Security Exposure Management - Prerequisites
- Proactive Protection with Microsoft Security Exposure Management: Part 1
- Proactive Protection with Microsoft Security Exposure Management: Part 2
- Transform your Defense with MSEM
- Proactive security with continuous exposure management
Module 3 - Attack Surface Management Capabilities in MSEM
- Critical Asset Protection with Microsoft Security Exposure Management
- Microsoft Security Exposure Management graph: unveiling the power
- Visual mapping of potential attack paths
- Microsoft Security Exposure Management Graph: Prioritization is the king
- Attack path management with Microsoft Security Exposure Management
Module 4 - Exposure Insights
- Unlock Proactive Defense: Microsoft Security Exposure Management
- Respond to trending threats and adopt zero-trust with Exposure Management
Module 5 - Configure your data connectors
- Configure your data connectors
- Getting value from your data connectors
- ServiceNow
- Qualys
- Rapid7
- Tenable
Microsoft