Microsoft Defender Vulnerability Management dropping shortly for customers as an add-on for Microsoft Defender for Endpoint P2 or a standalone license.
Vulnerability assessments and Management of these vulnerabilities has been missing from the Microsoft stable and this is a great addition for customers as it brings the element of protection to what was previously only detection capability.
In addition to all the existing vulnerability management capabilities currently available, Defender Vulnerability Management will provide consolidated asset inventories, expanded coverage, and critical new capabilities including:
- Security baselines assessment
- Browser extensions assessment
- Digital certificates assessment
- Network shares assessment
- Blocking vulnerable applications
- Vulnerability assessment for unmanaged endpoints
Microsoft Defender Vulnerability Management Summary
Vulnerability Management is critical in assessing corporate risk and then protecting those assets, there are other solutions that can provide vulnerability assessments and management some of the main contenders are Rapid7 and Qualys, there is are also some innovative and new vendors in this space such as Harmony Purple.
The Australian Cyber Security Centre in its list of 38 Mitigations also recommends utilising Vulnerability assessments to protect businesses. I have created a spreadsheet here to help with the ACSC 38 controls.
You can access Microsoft Defender Vulnerability Management here. As with all things Microsoft expect the product name to change to something else in the next 6 months.
Please leave a comment or contact us here if we can assist in any way.