Ensure that the Azure Defender security feature is enabled for your Microsoft Azure Storage accounts. Azure Defender for Storage accounts is an Azure-native layer of security intelligence that detects unusual and potentially harmful attempts to access or exploit your cloud storage accounts.
By default, the security feature is disabled for your storage accounts. Enabling Azure Defender for Microsoft Azure Storage accounts allows for advanced security defense using threat detection capabilities provided by the Microsoft Security Response Center (MSRC). MSRC investigates all reports of security vulnerabilities affecting Microsoft products and services, including Azure cloud services.
To determine if the Azure Defender feature is enabled for your Azure cloud storage accounts, perform the following operations:
Remediation / Resolution
To enable Azure Defender for your Microsoft Azure Storage accounts, perform the following operations:Note: Turning on Azure Defender in Azure Security Center (ASC) incurs an additional cost per resource.
- Azure Official Documentation
- Security alerts and incidents in Azure Security Center
- Pricings - List
- Pricings - Update
- ES-1: Use Endpoint Detection and Response (EDR)
- Introduction to Azure Defender for Storage
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Enable Azure Defender for Azure Storage Accounts
Risk level: High