Microsoft adds Secure Score for Devices to its defender Advanced Threat Protection that rates your security configurations
A couple of weeks ago we saw Microsoft launched its defender ATP application for Android Smartphones, and now you can also check the capabilities of your security. If we look at the threat protection provided by Microsoft, it deserves a good to go title. The defender detects all kinds of malware and threats that can affect your device and also offers protection against phishing and unsafe network connections from apps, websites, and malicious apps.
Windows Defender System Guard helps defend against firmware attacks by providing guarantees for secure boot through hardware-backed security features like hypervisor-level attestation and Secure Launch, also known as Dynamic Root of Trust (DRTM), which are enabled by default in Secured-core PCs.
Your score for devices is visible in the Threat & Vulnerability Management dashboard of the Microsoft Defender Security Center. A higher Microsoft Secure Score for Devices means your endpoints are more resilient from cybersecurity threat attacks. It reflects the collective security configuration state of your devices across the following categories:
- Operating system
- Security controls
Select a category to go to the Security recommendations page and view the relevant recommendations.
How does it work?
Microsoft Secure Score for Devices currently supports configurations set via Group Policy. Due to the current partial Intune support, configurations that might have been set through Intune might show up as misconfigured. Contact your IT Administrator to verify the actual configuration status in case your organization is using Intune for secure configuration management.
The data in the Microsoft Secure Score for Devices card is the product of meticulous and ongoing vulnerability discovery process aggregated with configuration discovery assessments that continuously:
- Compare collected configurations to the collected benchmarks to discover misconfigured assets
- Map configurations to vulnerabilities that can be remediated or partially remediated (risk reduction)
- Collect and maintain best-practice configuration benchmarks (vendors, security feeds, internal research teams)
- Collect and monitor changes of security control configuration state from all assets
Microsoft warns that there could be some false alarms related to only partial support for its Intune mobile device management platform.
“Microsoft Secure Score for Devices currently supports configurations set via Group Policy. Due to the current partial Intune support, configurations that might have been set through Intune might show up as misconfigured. Contact your IT administrator to verify the actual configuration status in case your organization is using Intune for secure configuration management.” the note reads.
What are your views on Microsoft Secure Score? Do mention your views in the comment section below. For more news on tech and cybersecurity stay tuned on Android Rookies by subscribing to our newsletter from here.