Forum Discussion

acamillo's avatar
acamillo
Brass Contributor
Apr 02, 2022

Defender for Cloud - Workload Protection features per Workload ?

I've been thinking about all the current Protection Use cases of Defender for Cloud (Mar/22).

 

There is support for many cloud-native workloads so a bird's eye view of what can be achieved on each is quite welcome I believe.

 

So I've scoured the public official docs and made a chart of some of the capabilities per workload.

I don't know if there's a better, public and official document on this?

 

 

This is what I found out in my own research:
 

The list of Workloads was retrieved from https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-cloud-introduction.

For each Workload’s Protection Use cases, the official public docs file was referenced.

There are nuances for supported controls per platform so be sure to check the sources for all details.

Information updated on Mar 2022.

All Information contained in here must always be checked against the latest documentation.

For a Complete list of all alerts generated by Defender for Cloud, per workload with reference of MITRE ATT&CK’s tactics, check out https://docs.microsoft.com/en-us/azure/defender-for-cloud/alerts-reference#alerts-azureappserv.

 

source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-servers-introduction

 

source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-containers-introduction?tabs=defender-for-container-arch-aks

 

source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-app-service-introduction

 

source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-storage-introduction

 

Source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/alerts-reference#alerts-azurekv

 

Source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/alerts-reference#alerts-resourcemanager

 

Source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-dns-introduction

 

Source Azure SQL: https://docs.microsoft.com/en-us/azure/defender-for-cloud/quickstart-enable-database-protections

Source SQL Servers on Machines: https://docs.microsoft.com/en-us/azure/defender-for-cloud/quickstart-enable-database-protections

 

Source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/defender-for-databases-introduction

 

Source: https://docs.microsoft.com/en-us/azure/defender-for-cloud/concept-defender-for-cosmos

 

1 Reply

  • acamillo's avatar
    acamillo
    Brass Contributor
    Apr 05, 2022
    I found this public document with a great list of supported features per workload:
    https://docs.microsoft.com/en-us/azure/defender-for-cloud/features-paas?wt.mc_id=SecNinja_ascninja

Resources