Security News > 2023 > March > You just gonna take that AWS? Let Microsoft school your users on cloud security?

Given how many organizations now use two or more public clouds - 87 percent of respondents in Flexera's 2023 State of the Cloud report said they have a multicloud strategy - it was important that Microsoft also look outward when talking about security baselines, according to Jim Cheng, senior software engineer at Microsoft.

"Today we see that our customers often have to aggregate and reconcile their security management across multiple cloud platforms to meet security and compliance requirements," Cheng wrote in October 2022, when MCSB v1 entered public preview.

To help evolve the Azure Security Benchmark to MCSB, Microsoft created a single control framework to address security controls across clouds, starting with AWS, and providing a consistent user experience for monitoring and enforcing the MCSB in Defender for Cloud.

Once that is done, Microsoft's cloud security benchmark will have covered the three largest public cloud providers, which account for 66 percent of the market, according to Synergy Research Group.

Adding Google Cloud will allow users "To use a single integrated dashboard to monitor your cloud security posture across all three major clouds," he wrote.

Along with adding Google Cloud to the lists of cloud environment covered by the benchmark, Microsoft will continue adding monitoring checks to Defender for Cloud that will cover Azure and other clouds and more compliance management and evidence-gathering capabilities in the Defender for Cloud portal, according to Cheng.

News URL

https://go.theregister.com/feed/www.theregister.com/2023/03/21/microsoft_aws_cloud_benchmarks/