New Technology World

In times of great change, we see challenges and opportunities in many directions. This certainly applies to IT and cybersecurity.

Today, organizations around the world are forced to face sophisticated ransomware and nation-state attacks while dealing with pandemics, frequent supply chain shocks, and global talent shortages. They do all this while staying ahead of stricter compliance requirements and focusing on the strategic advantage they gain from using technology as a transformational advantage.

Cloud, mobile, and edge platforms have driven unprecedented business innovation, adaptation, and resilience during this time, but this broad mix of technologies poses incredible complexity for security and compliance teams. also bring Security Operations Centers (SOCs) must address protecting identities, devices, data, apps, infrastructure, and more. Additionally, we need to consider evolving cyber risks in this multi-cloud, multi-platform world and identify where blind spots may exist across a broad new set of users, devices and destinations.

Combined with these business needs and growing concerns, it is clear that security is the defining opportunity and challenge of our time. At Microsoft, we are on a mission to enable every individual and organization on the planet to achieve more. This means anticipating these needs, reducing security complexity, and protecting your organization across your digital estate. To achieve this, we are making multi-cloud support a central part of our security strategy.

Today, Microsoft is announcing new advancements to help customers gain greater visibility and control across multiple cloud providers, workloads, devices and digital identities, all from a centralized view. These new capabilities and products are designed to secure the foundation for hybrid work and digital transformation.

Enabling the future of multi-cloud security

According to the Flexera 2021 State of the Cloud Report, 92% of respondents are using a multi-cloud model. This means we rely on apps and infrastructure from multiple cloud providers.¹ In another recent survey sponsored by Microsoft, 73% of respondents said managing a multi-cloud environment is difficult.² For organizations to fully embrace these multi-cloud strategies, it’s critical that security solutions reduce complexity and provide comprehensive protection.

Today, Microsoft takes another step in our commitment to protecting our customers across various cloud systems by extending the native capabilities of Microsoft Defender for Cloud to Google Cloud Platform (GCP).

With support for GCP, Microsoft now offers native multi-cloud protection for the industry’s top three platforms: Microsoft Azure, Amazon Web Services (AWS) (announced at Ignite last November), and now Google Cloud Platform (GCP). the only cloud provider with Microsoft Defender for Cloud offers Cloud Security Posture Management and Cloud Workload Protection. Identify configuration weaknesses across these top providers to strengthen your overall security posture in the cloud and provide threat protection across your workloads, all in one place.

GCP support includes out-of-the-box configuration for configuring GCP environments in line with leading security standards such as the Center for Internet Security (CIS) benchmarks that protect critical workloads running on GCP, including servers, containers Comes with recommendations. For more information, see today’s announcement blog.

Empower Zero Trust with CloudKnox Identity Security

Despite all this innovation and change, the foundation of security and compliance begins with ultimately managing identities. Identity is the building block that enables apps, data, and services to be delivered where they are needed.

As the number of platforms, devices, users, services and locations grows exponentially in a multi-cloud world, securing dynamically changing identities and privileges wherever they are is another aspect of multi-cloud protection. an important pillar.

A major pain point for many organizations here is the lack of visibility and control over their ever-evolving identities and permissions. To address this, last year we acquired CloudKnox Security, a leader in Cloud Infrastructure Entitlement Management (CIEM), accelerating our ability to help customers manage entitlements in multi-cloud environments and strengthen their Zero Trust security posture. I was allowed to.

today, Announcing the Public Preview of CloudKnox Permissions ManagementCloudKnox provides complete visibility into user and workload identities across clouds. Consistently enforce least privilege access with automated capabilities and use continuous machine learning-powered monitoring to detect and remediate suspicious activity. For more information, see today’s blog post.

Reinvent the economics of security data with Microsoft Sentinel

To defend against today’s and tomorrow’s threats, security teams need instant access to all security data. But as the amount of security data continues to grow exponentially, a one-size-fits-all model is no longer sufficient.

Microsoft reinvents the economics of working with security information and event management (SIEM) data, accepting all data types regardless of where they reside, providing new ways to access and analyze security data and committed to providing the most comprehensive threat hunting solution. Today we are announcing a new feature as the first step in this journey. Basic logs, a new type of log that enables Microsoft Sentinel to sift through large amounts of data to find high-severity, low-visibility threats, and a new data archiving feature that extends data retention to 7 years is introduced. His current two-year policy to address your global data compliance needs. We’re also adding a new search experience to help security analysts find threats more effectively. Now you can quickly and easily search large amounts of security data from all your logs, analytics, and archives. Learn more about Microsoft Sentinel’s vision and new features.

Provides comprehensive protection

In today’s threat landscape, attacks come from anywhere, inside or outside your organization. It is therefore important to organize security, compliance, identity, endpoint management and privacy as an interdependent whole and provide a comprehensive solution that extends protection across platforms and clouds.

That’s why we’re announcing several updates across our portfolio to help you better protect what’s most important to your business.

• Secure workload identities with Azure Active Directory (Azure AD): We’ve extended Azure AD beyond its core ability to protect user identities to protect workload identities for apps and services. This is because customers are moving more workloads to the cloud and developing more cloud-native applications. We announced conditional access for workload identities last November, and now you can apply identity protection to workload identities as well. For more information, see our blog post.
• Secure payment processing in the cloud with Azure Payment HSM: We recently launched a new service. Azure Payment HSMs, in public preview, enables payment card issuers, networks and payment processors to securely process payments in the cloud. Provides the highest level of protection for encryption keys and customer PINs for secure payment transactions. For more information, please visit the announcement blog.

Join us at What’s Next in Security from Microsoft Digital Event

Cyber ​​risks are inevitable and constantly evolving, but the more automation is used to build comprehensive, integrated, cloud-powered defenses that prevent, detect, and mitigate risks, the more organizations of all sizes Empower your digital transformation without fear. and continue to innovate.

We are committed to providing comprehensive solutions that work seamlessly across platforms and extend beyond our products to clouds and apps to help our customers protect their entire digital estate end-to-end. increase.

As we enter a new year of perseverance and opportunity, we thank our customers and partners for their trust in Microsoft Security. And be sure to join us tomorrow, February 24, 2022, at Microsoft’s next security digital event. This event will bring together industry leaders to discuss these evolving market trends, innovations in multi-cloud protection, and more. Learn more and register for the event here.

learn more

For more information on Microsoft security solutions, please visit our website. Bookmark the security blog for expert security articles.Also please follow @MSFT security For the latest news and updates on cybersecurity.

---

¹2021 Cloud Report State, Flexera.

²Cloud Trends Show Customers Increasing Hybrid and Multicloud Investments, Erin Chappel, Microsoft January 27, 2022.