Microsoft extends multi-cloud support for Defender

Security Published 8th September 2023

Microsoft has added more capabilities for customers that want to make use of Microsoft Defender for Cloud on Google Cloud Platform (GCP), giving them access to new and advanced functions of Microsoft Defender Cloud Security Posture Management (Defender CSPM), such as agentless scanning. It has also announced a series of visibility improvements for all multi-cloud customers.


► Customers can now get a single view across AWS, Azure and Google Cloud Platform

► Cloud storage discovery and benchmarking now available

► Use Intune to manage security settings of endpoints and assess risk levels with Secure Score


As well as agentless scanning, GCP customers will be able to access the data-aware security posture, cloud security graph, and attack path analysis features. This means they will now be able to use Defender to get a single contextual view of cloud risks across AWS, Azure and GCP.

Microsoft extends multi-cloud support for Defender

Microsoft has also extended its sensitive data discovery capabilities to GCP Cloud Storage, giving customers the ability to discover all GCP Cloud Storage buckets, identify sensitive information types, and assess their data security posture through cloud security graph queries and attack path analysis.

Defender CSPM is recognised as Overall Leader and Innovation Leader in the KuppingerCole 2023 CSPM Leadership Compass and the new features will help customers to identify potentially sensitive data exposure risks across Azure, AWS, and GCP storage resources and harden their multicloud data security posture.

In addition, the Microsoft cloud security benchmark (MCSB) for security control guidance and compliance checks is now also available for GCP. Microsoft has also announced that September will see general availability of Malware Scanning in Microsoft Defender for Storage. This will provide an added layer of protection against storage accounts being used as a point of malware entry and distribution for malware.

Microsoft has also announced that Intune can now be used to manage the security settings of any device with Microsoft Defender for Endpoint, including Windows, macOS, and Linux devices. Integration with Secure Score means that the risk levels associated with devices can be easily assessed by partners.

For more information about these updates and everything you need to keep tabs on as a Microsoft CSP partner, please click below to send us an email.

Contact The Team