Category Archives: Defender for Cloud

Speaking at NICConf 2024 in Oslo about Microsoft Defender for CSPM and Hybrid Cloud with WS2025, Azure Arc and WAC

I´m thrilled to announce that I have been invited to the Nordic Infrastructure Conference in Oslo, the NICconf, for the second time.

NICconf is a two-day event in the heart of Oslo with around 3000 particioants, focusing on Microsoft technologies such as Azure, Hybrid Cloud, Identity and Security. There will also be a pre-day organized where attendees can participate in different masterclasses (full day workshops). There will be a masterclass by Paula Januszkiewics or Mikael Nyström and Viktor Hedberg,

Continue reading Speaking at NICConf 2024 in Oslo about Microsoft Defender for CSPM and Hybrid Cloud with WS2025, Azure Arc and WAC

Awarded as Defender for Cloud Champion and as Community Advocate 2024

The Microsoft Security Community programm continues to grow and there are many exiting new features and additional previews coming to live. I´m working on some of the new previews to gain insights and provide feedback and there are really great new offerings coming.

I`m happy to share that I was awarded as Defender for Cloud Champion and as Community Advocate 2024.

Continue reading Awarded as Defender for Cloud Champion and as Community Advocate 2024

Enable granular pricing for Defender for Servers P1 or P2 on specific resources within your subscription via API/Powershell

Microsoft model for a scalable Cloud Adtoption is based on the Enterprise Scale Architecture and I think this is a scalable and useful modell for every customer that uses Azure ressources. It´s based on the definition to granulary devide the workloads in different subscriptions and gives via Management Groups the possibility to group this differnent subscription into workload groups like Development, Core, etc. I know many customers struggle with this model and mistakenly think that Enterprise Scale is a reference to Enterprise customers, but this is not the case.

Based on the Enterprise Scale Architecture some services and security features can only be activated on subscription level to guarante that each resource inside the subscription is secured. This basis makes it even more important for customers to consider the Enterprise Scale Architecture or to orient themselves towards it.

The Microsoft Defender for Cloud and especially the Defender for Server P1 and P2 plans can only be activated on subscription level in the past. Microsoft has decided to change this and now allow plans to be activated at resource level (per server). It is important to understand that the principled approach activating on Subscription Level and the Enterprise Scale architecture are still valid and needed and this possibility is only a concession to cover certain requirements:

  • manage security configurations at a lower hierarchy level
  • flexibility for excluding specific resources (VMs) inside the subscription
  • enable different plans on subscription because for implementation of Enterprise Scale approach
Continue reading Enable granular pricing for Defender for Servers P1 or P2 on specific resources within your subscription via API/Powershell

Microsoft Defender for CSPM is GA – Information about activation, billing and new pricing information

Microsoft announced with Defender for Cloud Security Posture Management a new plan in the Defender for Cloud product family which focuses on a central view on the security posture of the customer.

In this article I will give a overview about which topics Defender for CSPM covers, how it will be enabled and how the pricing is actual working which holds some suprises if Defender for Servers is already in use.

Continue reading Microsoft Defender for CSPM is GA – Information about activation, billing and new pricing information