Microsoft Launches New Security Exposure Management Tool to Enhance Organizational Resilience

Microsoft's Security Exposure Management provides organizations with a unified, proactive solution to assess, prioritize, and reduce cyber threat exposure.

Published: Dec 04, 2024

Network Security

SHARE ARTICLE

Key Takeaways:

  • Security Exposure Management consolidates data across various platforms to provide a comprehensive view of an organization’s vulnerabilities and attack paths.
  • Tools like Attack Surface Management and Unified Exposure Insights help IT teams prioritize and address high-risk threats.
  • The solution supports integrations with tools like Microsoft Defender XDR and third-party connectors.

Microsoft has announced the general availability of Security Exposure Management. This new solution allows IT administrators to assess and reduce threat exposure within their organization.

Microsoft initially launched Security Exposure Management in preview back in March. It consolidates data across devices, identities, applications, and hybrid environments to provide a unified view of an organization’s attack surface. The platform automates attack path assessments of critical assets and offers prioritized recommendations to boost security. It offers integration with tools such as Microsoft Defender XDR and Security Copilot.

How does Security Exposure Management work?

The Security Exposure Management solution includes three primary tools, including Attack Surface Management, Attack Path Analysis, and Unified Exposure Insights. Attack Surface Management offers continuous views of the attack surface of an organization. Moreover, Attack Path Analysis lets security teams visualize and prioritize high-risk attack paths.

Unified Exposure Insights allows administrators to view the threat exposure of their organization. This capability should help to prioritize risks and align security initiatives with business goals. Microsoft’s Security Exposure Management also supports continuous threat exposure management, allowing IT administrators to proactively monitor, measure, and remediate cyber risks.

“Exposure management is critical for enabling teams to understand the posture of the organization, and it helps security teams see all the potential attack paths to critical assets as if they were looking through it, through the eyes of the attacker,” explained Vasu Jakkal, Microsoft’s corporate VP for compliance, identity management.

Microsoft Launches New Security Exposure Management Tool to Enhance Organizational Resilience
Exposure management overview (Image Credit: Microsoft)

Microsoft has also announced the public preview of third-party connectors for ServiceNow, Rapid 7, Qualys, and Tenable. The Security Exposure Management solution collects data via these connectors and then normalizes it through its exposure graph.

Microsoft’s Security Exposure Management is now available to customers on the Microsoft Defender portal. It’s included with the E5 licenses, which are a premium tier of Microsoft’s licensing plans. Additionally, this feature can be added as an option to other types of Microsoft 365 licenses.

SHARE ARTICLE