Microsoft cloud security benchmark in Defender for Cloud
Industry standards, regulatory standards, and benchmarks are represented in Microsoft Defender for Cloud as security standards. These standards are assigned to scopes such as Azure subscriptions, AWS accounts, and GCP projects.
Defender for Cloud continuously assesses your hybrid cloud environment against these standards, and provides information about compliance in the Regulatory compliance dashboard.
When you onboard subscriptions and accounts to Defender for Cloud, the Microsoft cloud security benchmark (MCSB) automatically starts to assess resources in scope.
This benchmark builds on the cloud security principles defined by the Azure Security Benchmark and applies these principles with detailed technical implementation guidance for Azure, for other cloud providers (such as AWS and GCP), and for other Microsoft clouds.
The compliance dashboard gives you a view of your overall compliance standing. Security for non-Azure platforms follows the same cloud-neutral security principles as Azure. Each control within the benchmark provides the same granularity and scope of technical guidance across Azure and other cloud resources.
From the compliance dashboard, you're able to manage all of your compliance requirements for your cloud deployments, including automatic, manual, and shared responsibilities.
Note
Shared responsibilities is only compatible with Azure.
Next steps
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for