- Microsoft Defender for APIs provides organizations with comprehensive protection for business-critical APIs and sensitive data, addressing evolving cyber threats throughout the API lifecycle.
- The service prioritizes vulnerability fixes and facilitates quick detection and response to sophisticated security threats.
- Microsoft Defender for APIs integrates with Security Incident and Event Management (SIEM) platforms (like Microsoft Sentinel) to streamline the investigation process for security alerts.
Microsoft has announced the general availability of its Defender for APIs security solution. This new offering has been in preview as part of the Microsoft Defender for Cloud service since April, allowing organizations to safeguard their business-critical APIs and sensitive data from evolving cyber threats.
Microsoft Defender for Cloud is designed to offer security and compliance protections across hybrid cloud workloads. Microsoft Defender for APIs provides complete lifecycle protection, detection, and response coverage. The service integrates with Microsoft Defender Cloud Security Posture Management (CSPM) to detect and address security recommendations related to unauthenticated and unused APIs.
“Defender for APIs helps you to gain visibility into business-critical APIs. You can investigate and improve your API security posture, prioritize vulnerability fixes, and quickly detect and respond to active real-time threats. You can Integrate security alerts directly into your Security Incident and Event Management (SIEM) platform like Sentinel for investigation and triage,” Microsoft explained.
The API attack path analysis feature monitors lateral data movement and offers actionable insights and recommendations for detecting security risks. The labeling provides visibility into the classified API assets of an organization and lets IT admins take actions in accordance with governance policies. An API Security workbook also offers a detailed summary of security alerts and posture findings.
Microsoft has announced a new partnership with API security testing firm “42Crunch.” The new deal makes Microsoft the only cloud provider that lets organizations evaluate security risks and detect API threats across the complete cloud application lifecycle. This capability is currently available in public preview, and support for Azure DevOps will be available in the coming months.
Microsoft Defender for APIs is currently available for all commercial customers. Microsoft says that organizations that previously signed up for public preview will be automatically transitioned to the general availability version. You can find the pricing details of the Defender for APIs solution on this page.