Event details
Simona_Balabanova
Microsoft
MicrosoftCould you please elaborate on the value of app governance add-on as I know that an overview of the delegated permissions to applications can be downloaded from Azure AD, too, but without any cost?
The app governance add on provides much more info beyond just delegated permissions. Our value aligns to three pillars:
- Deep visibility & insights into app configuration & high-risk behaviors. Such as priority account access, sensitivity label access, what permissions are in use/not, how much data is being accessed and tailored KQL queries, and more
- Policy-driven governance for Azure-connected apps to meet security & compliance mandates for data access. Such as generate an alert for overprivileged apps, or set up a custom policy to automatically shut down apps that have accessed sensitivity labeled data for a particular workload over a particular threshold data volume
- Comprehensive ML-based detection & remediation of unusual app activity. We offer in built detections based on previously seen attack patterns. You can see a list of our active detections here https://learn.microsoft.com/en-us/defender-cloud-apps/app-governance-anomaly-detection-alerts
- In case you'd like to learn more about the capabilities I mentioned above you can also take a look at our documentation! The trial user guide is a good place to start https://aka.ms/AppGTrialGuide
- @wendy Do you have a reference to what is meant with sensitivity label access?
- Yes, please take a look at our docs page for sensitivity label access in App Governance: https://learn.microsoft.com/en-us/defender-cloud-apps/app-governance-visibility-insights-sensitive-content
- @wendy Interesting- are there other ways (maybe on the roadmap) in which either sensitivity label or retention labels or their respective policies in the compliance portal have overlap with MDCA capabilities / App gov add on capabilities?
