Key Takeaways:
Microsoft has announced the general availability of Security Exposure Management. This new solution allows IT administrators to assess and reduce threat exposure within their organization.
Microsoft initially launched Security Exposure Management in preview back in March. It consolidates data across devices, identities, applications, and hybrid environments to provide a unified view of an organization’s attack surface. The platform automates attack path assessments of critical assets and offers prioritized recommendations to boost security. It offers integration with tools such as Microsoft Defender XDR and Security Copilot.
The Security Exposure Management solution includes three primary tools, including Attack Surface Management, Attack Path Analysis, and Unified Exposure Insights. Attack Surface Management offers continuous views of the attack surface of an organization. Moreover, Attack Path Analysis lets security teams visualize and prioritize high-risk attack paths.
Unified Exposure Insights allows administrators to view the threat exposure of their organization. This capability should help to prioritize risks and align security initiatives with business goals. Microsoft’s Security Exposure Management also supports continuous threat exposure management, allowing IT administrators to proactively monitor, measure, and remediate cyber risks.
“Exposure management is critical for enabling teams to understand the posture of the organization, and it helps security teams see all the potential attack paths to critical assets as if they were looking through it, through the eyes of the attacker,” explained Vasu Jakkal, Microsoft’s corporate VP for compliance, identity management.
Microsoft has also announced the public preview of third-party connectors for ServiceNow, Rapid 7, Qualys, and Tenable. The Security Exposure Management solution collects data via these connectors and then normalizes it through its exposure graph.
Microsoft’s Security Exposure Management is now available to customers on the Microsoft Defender portal. It’s included with the E5 licenses, which are a premium tier of Microsoft’s licensing plans. Additionally, this feature can be added as an option to other types of Microsoft 365 licenses.