Microsoft Defender for Cloud Apps: Feature Update – New SaaS Security Initiative in the “Exposure management” experience

Hi All,

Greetings for the day.

Today sharing very important update related to Microsoft Defender.

Feature Update – Microsoft Defender for Cloud Apps: New SaaS Security Initiative in the “Exposure management” experience

Details

• The SaaS Security Initiative, a new feature designed to change the way we consume SaaS security posture recommendations.
• These recommendations consolidates best-practice recommendations for configuring SaaS applications.
• The SaaS Security Initiative provides a centralized location for all SaaS Security best practices.
• It is designed to help us to manage and rank security recommendations effectively.
• By starting with the metrics that hold the highest weight, we can efficiently enhance SaaS Security posture.

What is The SaaS Security Initiative

• The SaaS Security Initiative serves as the new homepage for SSPM (SaaS Security Posture Management).
• The SaaS Security Initiative consolidating all best-practice recommendations into 12 measurable metrics. 
• These metrics allow us to efficiently manage and rank the large number of security recommendations.

Prerequisites for SaaS Security Initiative

• License for Defender for Cloud Apps
• Enable at least one connector in Defender for Cloud Apps. The app which you wish to see security recommendations for, must be connected.

How to navigate to the SaaS Security Initiative page

• Go to Microsoft Defender portal – either through Microsoft 365 admin center or from direct link – https://security.microsoft.com/homepage
  • We have detailed article on how to navigate to Microsoft Defender portal. Small Tips and Tricks – Microsoft 365 Defender – How to navigate to Microsoft 365 Defender portal – https://knowledge-junction.in/2022/10/06/small-tips-and-tricks-microsoft-365-defender-how-to-navigate-to-microsoft-365-defender-portal/

• From left pane of Microsoft Defender Portal, expand the “Exposure management” tab

• Next, expand the “Exposure insights” tab – Exposure Management >> Exposure insights as

• Next click on “initiatives” menu – Microsoft Defender portal >> Exposure management >> Exposure insights >> Initiatives.
• We will be navigated to “exposure-initiatives” page – https://security.microsoft.com/exposure-initiatives?viewid=xspm&tid=6b38e1c3-a1fe-40cc-8b93-a4159a50592c

• Scroll down the “exposure-initiatives” page to go the “SaaS Security” initiative

• Click on “SaaS Security” as shown in above figure.
• Right pane will open with various interesting details, as shown in image below.
  • SaaS Security score.
  • Expected target score.
  • Choice to set “Set target score”.
  • Number of associated security recommendations.
  • Related Metrics, their current value and respective recommendations.

• At the bottom of page we have button to open initiative page “Open initiative page” as shown in above page.
• Click on button “Open initiative page“.
• Detailed “SaaS Security” initiative page will open. https://security.microsoft.com/exposure-initiative?initiativeId=saas_security&viewid=overview&tid=6b38e1c3-a1fe-40cc-8b93-a4159a50592c

•  This page gives us to access the Security metrics view.
• The Security metrics page displays 12 measurable metrics that categorize hundreds of best-practices recommendations.
• Each metric includes a list of associated app connectors, encouraging organizations to enable more connectors for enhanced visibility. 

Note: This new feature will be on by default.

Thanks for reading 🙂 ENJOY BEAUTIFUL LIFE 🙂 SHARING IS CARING 🙂