Security News > 2023 > March > You just gonna take that AWS? Let Microsoft school your users on cloud security?
Given how many organizations now use two or more public clouds - 87 percent of respondents in Flexera's 2023 State of the Cloud report said they have a multicloud strategy - it was important that Microsoft also look outward when talking about security baselines, according to Jim Cheng, senior software engineer at Microsoft.
"Today we see that our customers often have to aggregate and reconcile their security management across multiple cloud platforms to meet security and compliance requirements," Cheng wrote in October 2022, when MCSB v1 entered public preview.
To help evolve the Azure Security Benchmark to MCSB, Microsoft created a single control framework to address security controls across clouds, starting with AWS, and providing a consistent user experience for monitoring and enforcing the MCSB in Defender for Cloud.
Once that is done, Microsoft's cloud security benchmark will have covered the three largest public cloud providers, which account for 66 percent of the market, according to Synergy Research Group.
Adding Google Cloud will allow users "To use a single integrated dashboard to monitor your cloud security posture across all three major clouds," he wrote.
Along with adding Google Cloud to the lists of cloud environment covered by the benchmark, Microsoft will continue adding monitoring checks to Defender for Cloud that will cover Azure and other clouds and more compliance management and evidence-gathering capabilities in the Defender for Cloud portal, according to Cheng.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/03/21/microsoft_aws_cloud_benchmarks/
Related news
- AWS unveils cloud security IR service for a mere $7K a month (source)
- How AI Is Changing the Cloud Security and Risk Equation (source)
- Strategies for CISOs navigating hybrid and multi-cloud security (source)
- Microsoft Fixes AI, Cloud, and ERP Security Flaws; One Exploited in Active Attacks (source)
- Are Long-Lived Credentials the New Achilles’ Heel for Cloud Security? (source)
- Best CSPM Tools 2025: Top Cloud Security Solutions Compared (source)
- CrowdStrike vs Wiz: Which Offers Better Cloud Security and Value? (source)
- CISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01 (source)
- AWS security essentials for managing compliance, data protection, and threat detection (source)
- Microsoft pulls Exchange security updates over mail delivery issues (source)