SaaS Security Posture Management Expanded in Microsoft Defender

Microsoft is enhancing how SaaS-based applications are secured and protected with the latest updates to Microsoft Defender for Cloud Apps. SaaS Security Posture Management (SSPM). SSPM updates and other enhancements to Microsoft Defender for Cloud Apps improves the discovery of these apps, provides visibility into the usage of credentials, can examine app-to-app data connections, helps identify OAuth access and unused OAuth apps, and brings these signals into the broader Extended Detection and Response (XDR) capabilities in the Defender suite and Azure Sentinel. The first apps with this advanced SSPM support include Microsoft 365, Salesforce, ServiceNow, Okta, and GitHub. More information on this announcement can be found here. 

Why This Matters

  • Microsoft is investing heavily in the Defender suite to offer one of the most complete security set of solutions. Defender is a top priority for Microsoft and Microsoft will be actively working with all customers to consider using Defender.
  • The heart of the security push is the XDR platform to take all security events, better correlate those events, and build a timeline of activity. But, more importantly, the XDR platform brings AI to detect events happening and auto-remediate many of them letting security teams focus on the more complex events.