Ensure that appropriate contact information is set for the administrator who should be notified when Azure Security Center detects compromised resources within your Microsoft Azure cloud account. The contact information, in this case one or more email addresses, is used by the Azure security team to contact your account administrator if the Microsoft Security Response Center (MSRC) discovers that your cloud resources and/or data has been accessed by an unauthorized actor or system.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
Enabling security alert emails to subscription owners ensures that they receive important alert notifications from Microsoft Security Response Center, in order to become aware of the security issues identified, and take actions to mitigate the risks in a timely fashion.
Audit
To determine if Azure Security Center is configured to send alert email notifications to Azure subscription owners, perform the following actions:
Remediation / Resolution
To enable high severity alert email notifications in the Azure Security Center settings, perform the following actions:
References
- Azure Official Documentation
- Provide security contact details in Azure Security Center
- CIS Microsoft Azure Foundations
- Azure Command Line Interface (CLI) Documentation
- az
- az account get-access-token
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.

You are auditing:
Enable Alert Notifications for Subscription Owners
Risk level: Medium