Merge pull request #258474 from rayne-wiselman/rayne-ignite-PR2

American-Dipper · web-flow · commit 42dcd7d6223e · 2023-11-15T15:11:47.000-08:00
adding articles from How To Cloud Security Posture
diff --git a/articles/defender-for-cloud/TOC.yml b/articles/defender-for-cloud/TOC.yml
@@ -221,7 +221,7 @@
       - name: Integration with Defender EASM
         displayName: EASM, attack surface management
         href: concept-easm.md
-      - name: Enabling Entra Permissions Management (Preview)
+      - name: Enabling Permissions Management (Preview)
         href: enable-permissions-management.md
       - name: Agentless machine scanning
         href: concept-agentless-data-collection.md
@@ -290,21 +290,21 @@
       items: null
     - name: Cloud security posture
       items:
-        - name: Security posture at-a-glance with the Overview dashboard
+        - name: Review cloud security posture
           displayName: overview, compliance, inventory
           href: overview-page.md
-        - name: See all of your workloads in the workload protections dashboard
+        - name: Review workload protection
           displayName: workloads, dashboard, protections
           href: workload-protections-dashboard.md
-        - name: Programmatic ways to track your secure score
+        - name: Track secure score
           displayName: secure score, rest api, resource graph,
           href: secure-score-access-and-track.md
         - name: Create custom recommendations and security standards
           href: create-custom-recommendations.md
         - name: View recommendations and alerts in Windows Admin Center
           displayName: windows, admin, center
           href: windows-admin-center-integration.md
-        - name: Integrate security solutions and data sources
+        - name: Integrate security solutions
           displayName: security, solutions, integrate, integrated, data sources
           href: partner-integration.md
         - name: Security graph
@@ -489,6 +489,7 @@
     displayName: hybrid, arc, Defender for Servers
     items:
     - name: Plan Defender for Servers deployment
+    - name: Settings & monitoring
       items:
         - name: Get started
           displayName: VM, JIT, plan 1, plan 2, plans, vulnerability assessment, threat
diff --git a/articles/defender-for-cloud/overview-page.md b/articles/defender-for-cloud/overview-page.md
@@ -1,32 +1,29 @@
 ---
-title: Main overview page
-description: Learn about the features of the Defender for Cloud overview page
-ms.date: 07/20/2023
+title: Review cloud security posture in Microsoft Defender for Cloud
+description: Learn about cloud security posture in Microsoft Defender for Cloud
+ms.date: 11/02/2023
 ms.topic: conceptual
-ms.custom: ignite-2022
 ---
 
-# Microsoft Defender for Cloud's overview page
+# Review cloud security posture 
 
-Microsoft Defender for Cloud's overview page is an interactive dashboard that provides a unified view into the security posture of your hybrid cloud workloads. Additionally, it shows security alerts, coverage information, and more.  
-
-You can select any element on the page to get more detailed information.
+Microsoft Defender for Cloud provides a unified view into the security posture of hybrid cloud workloads with the 
+interactive **Overview** dashboard. Select any element on the dashboard to get more information.
 
 :::image type="content" source="./media/overview-page/overview-07-2023.png" alt-text="Screenshot of Defender for Cloud's overview page." lightbox="./media/overview-page/overview-07-2023.png":::
 
-## Features of the overview page
-
-:::image type="content" source="./media/overview-page/top-bar-of-overview-new.png" alt-text="Screenshot of Defender for Cloud's overview page's top bar." lightbox="media/overview-page/top-bar-of-overview-new.png":::
+## Metrics
 
-### Metrics
 
 The **top menu bar** offers:
 
 - **Subscriptions** - You can view and filter the list of subscriptions by selecting this button. Defender for Cloud will adjust the display to reflect the security posture of the selected subscriptions.
 - **What's new** - Opens the [release notes](release-notes.md) so you can keep up to date with new features, bug fixes, and deprecated functionality.
 - **High-level numbers** for the connected cloud accounts, showing the context of the information in the main tiles, and the number of assessed resources, active recommendations, and security alerts. Select the assessed resources number to access [Asset inventory](asset-inventory.md). Learn more about connecting your [AWS accounts](quickstart-onboard-aws.md) and your [GCP projects](quickstart-onboard-gcp.md).
 
-### Feature tiles
+:::image type="content" source="./media/overview-page/top-bar-of-overview-new.png" alt-text="Screenshot of Defender for Cloud's overview page's top bar." lightbox="media/overview-page/top-bar-of-overview-new.png":::
+
+## Feature tiles
 
 The center of the page displays the **feature tiles**, each linking to a high profile feature or dedicated dashboard:
 
@@ -35,7 +32,7 @@ The center of the page displays the **feature tiles**, each linking to a high pr
 - **Regulatory compliance** - Defender for Cloud provides insights into your compliance posture based on continuous assessments of your Azure environment. Defender for Cloud analyzes risk factors in your environment according to security best practices. These assessments are mapped to compliance controls from a supported set of standards. [Learn more](regulatory-compliance-dashboard.md).
 - **Inventory** - The asset inventory page of Microsoft Defender for Cloud provides a single page for viewing the security posture of the resources you've connected to Microsoft Defender for Cloud. All resources with unresolved security recommendations are shown in the inventory. If you've enabled the integration with Microsoft Defender for Endpoint and enabled Microsoft Defender for Servers, you'll also have access to a software inventory. The tile on the overview page shows you at a glance the total healthy and unhealthy resources (for the currently selected subscriptions). [Learn more](asset-inventory.md).
 
-### Insights
+## Insights
 
 The **Insights** pane offers customized items for your environment including:
 
@@ -46,7 +43,7 @@ The **Insights** pane offers customized items for your environment including:
 
 ## Next steps
 
-This page introduced the Defender for Cloud overview page. For related information, see:
+- [Learn more](concept-cloud-security-posture-management.md) about cloud security posture management.
+- [Learn more](security-policy-concept.md) about security standards and
+- [Review your asset inventory](asset-inventory.md)
 
-- [Explore and manage your resources with asset inventory and management tools](asset-inventory.md)
-- [Secure score in Microsoft Defender for Cloud](secure-score-security-controls.md)
diff --git a/articles/defender-for-cloud/partner-integration.md b/articles/defender-for-cloud/partner-integration.md
@@ -1,12 +1,12 @@
 ---
-title: Integrate security solutions
-description: Learn about how Microsoft Defender for Cloud integrates with partners to enhance the overall security of your Azure resources.
+title: Integrate security solutions in Microsoft Defender for Cloud
+description: Learn about how Microsoft Defender for Cloud integrates with partner solutions. 
 ms.topic: conceptual
 ms.custom: ignite-2022
 ms.date: 01/10/2023
 ---
 
-# Integrate security solutions in Microsoft Defender for Cloud
+# Integrate security solutions in Defender for Cloud
 
 This document helps you to manage security solutions already connected to Microsoft Defender for Cloud and add new ones.
 
diff --git a/articles/defender-for-cloud/secure-score-access-and-track.md b/articles/defender-for-cloud/secure-score-access-and-track.md
@@ -5,7 +5,7 @@ ms.topic: how-to
 ms.date: 01/09/2023
 ---
 
-# Access and track your secure score
+# Track secure score
 
 You can find your overall secure score, and your score per subscription, through the Azure portal or programmatically as described in the following sections:
 
diff --git a/articles/defender-for-cloud/workload-protections-dashboard.md b/articles/defender-for-cloud/workload-protections-dashboard.md
@@ -1,43 +1,33 @@
 ---
-title: Workload protection dashboard and its features
-description: Learn about the features of Microsoft Defender for Cloud's workload protection dashboard
+title: Review workload protection in Microsoft Defender for Cloud
+description: Review workload protection in the Workload protections dashboard in Microsoft Defender for Cloud
 ms.topic: how-to
 ms.date: 01/09/2023
 ---
 
-# The workload protections dashboard
+# Review workload protection
 
-This dashboard provides:
+Microsoft Defender for Cloud provides unified view into threat detection and protection for protected resources with the interactive **Workload protections** dashboard.
 
-- Visibility into your Microsoft Defender for Cloud coverage across your different resource types.
-
-- Links to configure advanced threat protection capabilities.
-
-- The onboarding state and agent installation.
+:::image type="content" source="./media/workload-protections-dashboard/sample-defender-dashboard-numbered.png" alt-text="An example of Defender for Cloud's workload protections dashboard." lightbox="./media/workload-protections-dashboard/sample-defender-dashboard-numbered.png":::
 
-- Threat detection alerts.
+## Defender for Cloud coverage
 
-To access the workload protections dashboard, select **Workload protections** from the Cloud Security section of Defender for Cloud's menu.
+In the **Defender for Cloud coverage** section of the dashboard, you can see the resources types in your subscription that are eligible for protection by Defender for Cloud. Wherever relevant, you can upgrade here as well. If you want to upgrade all possible eligible resources, select **Upgrade all**.
 
-## What's shown on the dashboard?
+## Security alerts
 
-:::image type="content" source="./media/workload-protections-dashboard/sample-defender-dashboard-numbered.png" alt-text="An example of Defender for Cloud's workload protections dashboard." lightbox="./media/workload-protections-dashboard/sample-defender-dashboard-numbered.png":::
+The **Security alerts** section shows alerts. When Defender for Cloud detects a threat in any area of your environment, it generates an alert. These alerts describe details of the affected resources, suggested remediation steps, and in some cases an option to trigger a logic app in response. Selecting anywhere in this graph opens the **Security alerts page**.
 
-The dashboard includes the following sections:
+## Advanced protection
 
-1. **Microsoft Defender for Cloud coverage** - Here you can see the resources types that's in your subscription and eligible for protection by Defender for Cloud. Wherever relevant, you can upgrade here as well. If you want to upgrade all possible eligible resources, select **Upgrade all**.
+Defender for Cloud includes many advanced threat protection capabilities for virtual machines, SQL databases, containers, web applications, your network, and more. In this advanced protection section, you can see the status of the resources in your selected subscriptions for each of these protections. Select any of them to go directly to the configuration area for that protection type.
 
-2. **Security alerts** - When Defender for Cloud detects a threat in any area of your environment, it generates an alert. These alerts describe details of the affected resources, suggested remediation steps, and in some cases an option to trigger a logic app in response. Selecting anywhere in this graph opens the **Security alerts page**.
+## Insights
 
-3. **Advanced protection** - Defender for Cloud includes many advanced threat protection capabilities for virtual machines, SQL databases, containers, web applications, your network, and more. In this advanced protection section, you can see the status of the resources in your selected subscriptions for each of these protections. Select any of them to go directly to the configuration area for that protection type.
+Insights provide you with news, suggested reading, and high priority alerts that are relevant in your environment.  
 
-4. **Insights** - This rolling pane of news, suggested reading, and high priority alerts gives Defender for Cloud's insights into pressing security matters that are relevant to you and your subscription. Whether it's a list of high severity CVEs discovered on your VMs by a vulnerability analysis tool, or a new blog post by a member of the Defender for Cloud team, you'll find it here in the Insights panel.
 
 ## Next steps
 
-In this article, you learned about the workload protections dashboard.
-
-> [!div class="nextstepaction"]
-> [Enable enhanced protections](enable-enhanced-security.md)
-
-Learn more about the [advanced protections provided by the Defender plans](defender-for-cloud-introduction.md#protect-cloud-workloads).
+[Learn about](defender-for-cloud-introduction.md) workloads you can protect in Defender for Cloud
