From 5a27c4c32df05ce6c94cd7ce26b9ad9a6be39c9d Mon Sep 17 00:00:00 2001 From: drewnicholas1111 Date: Wed, 20 Jul 2022 08:51:30 -0500 Subject: [PATCH] Update Module-5-Improving-your-Secure-Posture.md Adding Exercise 5: Creating Governance Rules and Assigning Owners --- .../Module-5-Improving-your-Secure-Posture.md | 16 +++++++++++++++- 1 file changed, 15 insertions(+), 1 deletion(-) diff --git a/Labs/Modules/Module-5-Improving-your-Secure-Posture.md b/Labs/Modules/Module-5-Improving-your-Secure-Posture.md index bd93b8b19..0b8ea0cdf 100644 --- a/Labs/Modules/Module-5-Improving-your-Secure-Posture.md +++ b/Labs/Modules/Module-5-Improving-your-Secure-Posture.md @@ -197,7 +197,21 @@ SecurityResources | extend SecureControl = properties.displayName, unhealthy = properties.unhealthyResourceCount, currentscore = properties.score.current, maxscore = properties.score.max | project SecureControl , unhealthy, currentscore, maxscore ``` +### Exercise 5: Creating Governance Rules and Assigning Owners +Security teams are responsible for improving the security posture of their organizations but they may not have the resources or authority to actually implement security recommendations. Assigning owners with due dates and defining governance rules creates accountability and transparency so you can drive the process of improving the security posture in your organization. + +Stay on top of the progress on the recommendations in the security posture. Weekly email notifications to the owners and managers make sure that they take timely action on the recommendations that can improve your security posture and recommendations. + +1. Return to Microsoft Defender for Cloud blade and Click on **Environment settings**. Click the down arrow on **Azure** to show the subscription, and then click the down arrow on **Azure Susbcription 1** to show the workspace. Notice the Defender coverage is 11/11 plans for the subscription and 2/2 plans for the workspace, meaning that you are now fully protected using Microsoft Defender for Cloud. + ![Environment settings](../Images/mdfc-envsettings.png?raw=true) +3. From Settings's sidebar, select **Governance Rules** which is found under the **Policy Settings** section. + image +4. + +| project SecureControl , unhealthy, currentscore, maxscore +``` + More details on the [official article](https://docs.microsoft.com/en-us/azure/security-center/secure-score-security-controls) or on the [blog post](https://techcommunity.microsoft.com/t5/azure-security-center/querying-your-secure-score-across-multiple-subscriptions-in/ba-p/1749193) -### Continue with the next lab: [Module 6 - Workload Protections](../Modules/Module-6-Azure-Defender.md) \ No newline at end of file +### Continue with the next lab: [Module 6 - Workload Protections](../Modules/Module-6-Azure-Defender.md)