To help organizations protect all their assets against evolving digital security threats, Microsoft is unifying all Extended Detection and Response (XDR) technologies under the Microsoft Defender brand.
Microsoft Defender prevents, detects, and responds to threats across identities, endpoints, applications, email, IoT, infrastructure, and cloud platforms.
With Microsoft Defender, Microsoft is rebranding the existing threat protection portfolio and adding new capabilities, including additional multi-cloud (Google Cloud and AWS) and multi-platform (Windows, Mac, Linux, Android, and iOS) support.
Microsoft Defender is delivered in two tailored experiences:
Microsoft 365 Defender
- Microsoft 365 Defender delivers XDR capabilities for identities, endpoints, cloud apps, email, and documents.
- It uses artificial intelligence to reduce the SOC’s work items.
- Built-in self-healing technology fully automates remediation more than 70% of the time, ensuring defenders can focus on other tasks that better leverage their knowledge and expertise.
The branding changes to unify the Microsoft 365 Defender technologies:
- Microsoft 365 Defender (previously Microsoft Threat Protection)
- Microsoft Defender for Endpoint (previously Microsoft Defender Advanced Threat Protection)
- Microsoft Defender for Office 365 (previously Office 365 Advanced Threat Protection)
- Microsoft Defender for Identity (previously Azure Advanced Threat Protection)
New features available within Microsoft 365 Defender:
- Extending mobile threat defense capabilities in Microsoft Defender for Endpoint to iOS, Android and macOS.
- Priority account protection in Microsoft Defender for Office 365 will help security teams focus on protection from phishing attacks for users who have access to the most critical and privileged information.
Customers can customize prioritized account workflows to offer these users an added layer of protection.
Microsoft 365 Defender
Azure Defender delivers XDR capabilities to protect multi-cloud and hybrid workloads, including virtual machines, databases, containers, IoT, and more.
Azure Defender is an evolution of the Azure Security Center threat protection capabilities and is accessed from within Azure Security Center.
Microsoft has announced brand changes for these capabilities under Azure Defender as well:
- Azure Defender for Servers (previously Azure Security Center Standard Edition)
- Azure Defender for IoT (previously Azure Security Center for IoT)
- Azure Defender for SQL (previously Advanced Threat Protection for SQL)
New features now available within Azure Defender:
- To help defenders identify and mitigate unprotected resources, Microsoft is delivering a new unified experience for Azure Defender that makes it easy to see which resources are protected and which need further protection.
- Added protection for SQL servers on-premises and in multi-cloud environments as well as virtual machines in other clouds, and improved protections for containers, including Kubernetes-level policy management and continuous scanning of container images in container registries.
- Support for operational technology networks with the integration of Cyber X into Azure Defender for IoT.
Azure adds new constrained vCPUs, capable virtual machines to reduce software licensing costs without impacting performance
Azure offers various VM sizes for which you can constrain the VM vCPU count to reduce the cost of software licensing, while maintaining the same memory, storage, and I/O bandwidth.
This may be crucial for some database workloads like SQL Server or Oracle that require high memory, storage, and I/O bandwidth, but not a high core count since many database workloads are not CPU-intensive.
So, by deploying the latest Azure Virtual Machines, you can further increase the efficiency of your cloud infrastructure.
The vCPU count can be constrained to one half or one quarter of the original VM size. These new VM sizes have a suffix that specifies the number of active vCPUs to make them easier for you to identify.
The Esv4, Edsv4, and Easv4 memory optimized Azure VM series now offer new constrained vCPU VM sizes.
For example, the current VM size ‘’E8s_v4’’ comes with 8 vCPUs, 64 GB RAM, 16 disks and 12,800 IOPs. The new VM sizes ‘’E8-4s_v4’’ and ‘’E8-2s_v4’’ comes with 4 and 2 active vCPUs respectively, while maintaining the rest of the specs of the ‘’E8s_v4’’ for memory, storage, and I/O bandwidth.
The licensing fees charged for SQL Server or Oracle are constrained to the new vCPU count, and other products should be charged based on the new vCPU count. This results in a 50% to 75% increase in the ratio of the VM specs to active (billable) vCPUs. These new VM sizes allow customer workloads to use the same memory, storage, and I/O bandwidth while optimizing their software licensing cost. Currently, the compute cost, which includes OS licensing, remains the same one as the original size.
Microsoft Azure is delivering a broad and extensive range of services, advancing organizations across a variety of areas from 60+ Azure Regions. These services are often considered as a go-to option for applications, running businesses and freeing up time and capabilities, enhancing work, and providing scalability.
There are benefits too with data residency provided from Azure UAE Regions, as data can be kept in the two UAE datacenter regions, in Dubai and Abu Dhabi.
From the day that Microsoft has announced global availability of Azure UAE Regions, Microsoft strived to make this more useful for customers and partners such as the recent availability of M and Mv2 Series Virtual Machines to provide SAP S4/HANA high performance, scalability and security along with the addition of new Azure Services to the UAE Regions recently.
Whatever your Application Modernization strategy, Azure is the platform that you need. You can now run App Services, Functions, Azure Red Hat OpenShift, Azure Files Premium tier and Azure DevTest Labs in UAE regions.
- Azure App Service: Azure App Service is a fully managed platform for building, deploying, and scaling web apps to enable productivity and innovation. App Service helps for building, deploying, and scaling web apps quickly and easily by supporting APIs .NET, .NET Core, Node.js, Java, Python or PHP, in containers or running on Windows or Linux.
- Azure Functions: Azure Functions allows developers to act by connecting to data sources or messaging solutions thus making it easy to process and react to events. Developers can leverage Azure Functions to build HTTP-based API endpoints accessible by a wide range of applications, mobile and IoT devices.
- Azure Red Hat OpenShift: Azure Red Hat OpenShift provides a flexible, self-service deployment of fully managed OpenShift clusters. You can maintain regulatory compliance and focus on your application development, while your master, infrastructure, and application nodes are patched, updated, and monitored by both Microsoft and Red Hat. You have the option to choose your own registry, networking, storage, or CI/CD solutions. Or you can get going immediately using built-in solutions with automated source code management, container and application builds, deployments, scaling, health management, and more.
- Azure Files Premium Tier: Azure Files premium tier storage offers high-performance, easily accessible file services, built on solid-state drives (SSD). Premium tier is optimized to deliver consistent performance for IO-intensive workloads that require high-throughput and low latency.
- Azure DevTest Labs: Azure DevTest Labs make it possible to quickly provision development and test environments, which minimizes waste with quotas and policies. The service allows automated shutdowns to be set to minimize costs. Additionally, Windows and Linux environments can be built.