placed article in TOC and minor fixes

Author: ElazarK

articles/defender-for-cloud/TOC.yml

@@ -211,7 +211,7 @@
         href: concept-easm.md
       - name: Critical assets protection
         href: critical-assets-protection.md
-      - name: Permissions Management
+      - name: Permissions management
         displayName: permissions, management, role-based access control, RBAC, azure, azure ad, active directory
         href: permissions-management.md
       - name: Agentless machine scanning
@@ -317,6 +317,9 @@
         - name: Integrate security solutions
           displayName: security, solutions, integrate, integrated, data sources
           href: partner-integration.md
+        - name: Enable permissions management
+          displayName: permissions, management, role-based access control, RBAC, azure, azure ad, active directory
+          href: enable-permissions-management.md
     - name: Data-aware security posture
       items:
         - name: Enable data-aware security posture

articles/defender-for-cloud/enable-permissions-management.md

@@ -1,14 +1,14 @@
 ---
-title: Enable Permissions Management
+title: Enable permissions management
 author: Elazark
 ms.author: elkrieger
-description: Learn how to enable Permissions Management for better access control and security in your cloud infrastructure.
+description: Learn how to enable permissions management for better access control and security in your cloud infrastructure.
 ms.topic: how-to
 ms.date: 03/10/2024
-#customer intent: As a cloud administrator, I want to learn how to enable Permissions Management in order to effectively manage user access and entitlements in my cloud infrastructure.
+#customer intent: As a cloud administrator, I want to learn how to enable permissions management in order to effectively manage user access and entitlements in my cloud infrastructure.
 ---
 
-# Enable Permissions Management
+# Enable permissions management
 
 Microsoft Defender for Cloud's integration with Microsoft Entra Permissions Management provides a Cloud Infrastructure Entitlement Management (CIEM) security model that helps organizations manage and control user access and entitlements in their cloud infrastructure. CIEM is a critical component of the Cloud Native Application Protection Platform (CNAPP) solution that provides visibility into who or what has access to specific resources. It ensures that access rights adhere to the principle of least privilege (PoLP), where users or workload identities, such as apps and services, receive only the minimum levels of access necessary to perform their tasks. CIEM also helps organizations to monitor and manage permissions across multiple cloud environments, including Azure, AWS, and GCP.
 
@@ -24,9 +24,10 @@ Microsoft Defender for Cloud's integration with Microsoft Entra Permissions Mana
 
 - **GCP only**: [Connect your GCP project to Defender for Cloud](quickstart-onboard-gcp.md).
 
-## Enable Permissions Management for Azure
+## Enable permissions management for Azure
 
-When you enabled the Defender CSPM plan on your Azure account, the **Azure CSPM** [standard is automatically assigned to your subscription](concept-regulatory-compliance-standards.md). The Azure CSPM standard provides Cloud Infrastructure Entitlement Management (CIEM) recommendations. 
+When you enabled the Defender CSPM plan on your Azure account, the **Azure CSPM** [standard is automatically assigned to your subscription](concept-regulatory-compliance-standards.md). The Azure CSPM standard provides Cloud Infrastructure Entitlement Management (CIEM) recommendations.
+ 
 When Permission Management is disabled, the CIEM recommendations within the Azure CSPM standard won’t be calculated.
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
@@ -41,15 +42,15 @@ When Permission Management is disabled, the CIEM recommendations within the Azur
 
 1. Enable **Permissions Management**.
 
-    :::image type="content" source="media/enable-permissions-management/permissions-management-on.png" alt-text="Screenshot that shows you where the toggle is for the permissions management is located and that it is turned to on." lightbox="media/enable-permissions-management/permissions-management-on.png":::
+    :::image type="content" source="media/enable-permissions-management/permissions-management-on.png" alt-text="Screenshot that shows you where the toggle is for the permissions management is located." lightbox="media/enable-permissions-management/permissions-management-on.png":::
 
 1. Select **Continue**.
 
 1. Select **Save**.
 
-The applicable Permissions Management recommendations appear on your subscription within a few hours.
+The applicable permissions management recommendations appear on your subscription within a few hours.
 
-## Enable Permissions Management for AWS
+## Enable permissions management for AWS
 
 When you enabled the Defender CSPM plan on your AWS account, the **AWS CSPM** [standard is automatically assigned to your subscription](concept-regulatory-compliance-standards.md). The AWS CSPM standard provides Cloud Infrastructure Entitlement Management (CIEM) recommendations. 
 When Permission Management is disabled, the CIEM recommendations within the AWS CSPM standard won’t be calculated.
@@ -84,14 +85,15 @@ When Permission Management is disabled, the CIEM recommendations within the AWS
 
 1. Select **Update**.
 
-The applicable Permissions Management recommendations appear on your subscription within a few hours.
+The applicable permissions management recommendations appear on your subscription within a few hours.
 
-## Enable Permissions Management for GCP
+## Enable permissions management for GCP
 
 When you enabled the Defender CSPM plan on your GCP project, the **GCP CSPM** [standard is automatically assigned to your subscription](concept-regulatory-compliance-standards.md). The GCP CSPM standard provides Cloud Infrastructure Entitlement Management (CIEM) recommendations. 
+
 When Permission Management is disabled, the CIEM recommendations within the GCP CSPM standard won’t be calculated.
 
-**To enable Permissions Management for GCP**:
+**To enable permissions management for GCP**:
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
 
@@ -105,7 +107,7 @@ When Permission Management is disabled, the CIEM recommendations within the GCP
 
     :::image type="content" source="media/enable-permissions-management/settings-google.png" alt-text="Screenshot that shows where to select settings for the Defender CSPM plan for your GCP project." lightbox="media/enable-permissions-management/settings-google.png":::
 
-1. Toggle Permissions Management to **On**.
+1. Toggle permissions management to **On**.
 
 1. Select **Save**.
 
@@ -125,7 +127,7 @@ When Permission Management is disabled, the CIEM recommendations within the GCP
 
 1. Select **Update**.
 
-The applicable Permissions Management recommendations appear on your subscription within a few hours.
+The applicable permissions management recommendations appear on your subscription within a few hours.
 
 ## Next step
 

articles/defender-for-cloud/permissions-management.md

@@ -1,18 +1,18 @@
 ---
-title: Permissions Management
-description: Learn about Permissions Management in Microsoft Defender for Cloud and enhance the security of your cloud infrastructure.
+title: Permissions management
+description: Learn about permissions management in Microsoft Defender for Cloud and enhance the security of your cloud infrastructure.
 ms.topic: concept-article
 author: Elazark
 ms.author: elkrieger
 ms.date: 03/07/2024
 #customer intent: As a user, I want to understand how to manage permissions effectively so that I can enhance the security of my cloud infrastructure.
 ---
 
-# Permissions Management
+# Permissions management
 
 Microsoft Defender for Cloud's integration with Microsoft [Microsoft Entra Permissions Management (CIEM)](/entra/permissions-management/overview) provides a Cloud Infrastructure Entitlement Management (CIEM) security model that helps organizations manage and control user access and entitlements in their cloud infrastructure. CIEM is a critical component of the Cloud Native Application Protection Platform (CNAPP) solution that provides visibility into who or what has access to specific resources. It ensures that access rights adhere to the principle of least privilege (PoLP), where users or workload identities, such as apps and services, receive only the minimum levels of access necessary to perform their tasks. CIEM also helps organizations to monitor and manage permissions across multiple cloud environments, including Azure, AWS, and GCP.
 
-Integrating Entra Permissions Management (CIEM) with Defender for Cloud (CNAPP) strengthens cloud security by preventing security breaches caused by excessive permissions or misconfigurations. Permissions Management continuously monitors and manages cloud entitlements, helping to discover attack surfaces, detect threats, right-size access permissions, and maintain compliance. This integration enhances the capabilities of Defender for Cloud in securing cloud-native applications and protecting sensitive data.
+Integrating Entra Permissions Management (CIEM) with Defender for Cloud (CNAPP) strengthens cloud security by preventing security breaches caused by excessive permissions or misconfigurations. Permissions management continuously monitors and manages cloud entitlements, helping to discover attack surfaces, detect threats, right-size access permissions, and maintain compliance. This integration enhances the capabilities of Defender for Cloud in securing cloud-native applications and protecting sensitive data.
 
 This integration brings the following insights derived from the Microsoft Entra Permissions Management suite into the Microsoft Defender for Cloud portal. For more information, see the [feature matrix](#feature-matrix).
 
@@ -30,7 +30,7 @@ AWS and GCP accounts that were onboarded to Microsoft Entra Permissions Manageme
 
 The integration feature comes as part of Defender CSPM plan and doesn't require a Microsoft Entra Permissions Management (MEPM) license. To learn more about other capabilities that you can receive from MEPM, refer to the feature matrix:
 
-| Category  | Capabilities                                                 | Defender for Cloud | Permissions Management |
+| Category  | Capabilities                                                 | Defender for Cloud | Permissions management |
 | --------- | ------------------------------------------------------------ | ------------------ | ---------------------- |
 | Discover  | Permissions  discovery for risky identities (including unused identities, overprovisioned  active identities, super identities) in Azure, AWS, GCP | ✓                  | ✓                      |
 | Discover  | Permissions  Creep Index (PCI) for multicloud environments (Azure, AWS, GCP) and all  identities | ✓                  | ✓                      |
@@ -47,4 +47,4 @@ The integration feature comes as part of Defender CSPM plan and doesn't require
 
 ## Related content
 
-Learn how to [enable Permissions Management](enable-permissions-management.md) in Microsoft Defender for Cloud.
+Learn how to [enable permissions management](enable-permissions-management.md) in Microsoft Defender for Cloud.

articles/defender-for-cloud/release-notes.md

@@ -24,14 +24,14 @@ If you're looking for items older than six months, you can find them in the [Arc
 
 |Date | Update |
 |--|--|
-| May 7 | [General availability of Permissions Management in Defender for Cloud](#general-availability-of-permissions-management-in-defender-for-cloud) |
+| May 7 | [General availability of permissions management in Defender for Cloud](#general-availability-of-permissions-management-in-defender-for-cloud) |
 | May  1 | [Defender for open-source databases is now available on AWS for Amazon instances (Preview)](#defender-for-open-source-databases-is-now-available-on-aws-for-amazon-instances-preview) |
 
-### General availability of Permissions Management in Defender for Cloud
+### General availability of permissions management in Defender for Cloud
 
 May 7, 2024
 
-We're announcing the general availability (GA) of [Permissions Management](permissions-management.md) in Defender for Cloud.
+We're announcing the general availability (GA) of [permissions management](permissions-management.md) in Defender for Cloud.
 
 ### Defender for open-source databases is now available on AWS for Amazon instances (Preview)
 
@@ -673,13 +673,13 @@ Learn how to [manage secrets with agentless secrets scanning](secret-scanning.md
 
 November 22, 2023
 
-Microsoft now offers both Cloud-Native Application Protection Platforms (CNAPP) and Cloud Infrastructure Entitlement Management (CIEM) solutions with [Microsoft Defender for Cloud (CNAPP)](defender-for-cloud-introduction.md) and [Microsoft Entra Permissions Management](/entra/permissions-management/) (CIEM).
+Microsoft now offers both Cloud-Native Application Protection Platforms (CNAPP) and Cloud Infrastructure Entitlement Management (CIEM) solutions with [Microsoft Defender for Cloud (CNAPP)](defender-for-cloud-introduction.md) and [Microsoft Entra permissions management](/entra/permissions-management/) (CIEM).
 
 Security administrators can get a centralized view of their unused or excessive access permissions within Defender for Cloud.
 
 Security teams can drive the least privilege access controls for cloud resources and receive actionable recommendations for resolving permissions risks across Azure, AWS, and GCP cloud environments as part of their Defender Cloud Security Posture Management (CSPM), without any extra licensing requirements.
 
-Learn how to [Enable Permissions Management in Microsoft Defender for Cloud (Preview)](enable-permissions-management.md).
+Learn how to [Enable permissions management in Microsoft Defender for Cloud (Preview)](enable-permissions-management.md).
 
 ### Defender for Cloud integration with ServiceNow
 

articles/defender-for-cloud/tutorial-enable-cspm-plan.md

@@ -64,7 +64,7 @@ Once the Defender CSPM plan is enabled on your subscription, you have the abilit
 
 - **Sensitive data discovery**: Sensitive data discovery automatically discovers managed cloud data resources containing sensitive data at scale. This feature accesses your data, it is agentless, uses smart sampling scanning, and integrates with Microsoft Purview sensitive information types and labels.
 
-- **Permissions Management** - Insights into Cloud Infrastructure Entitlement Management (CIEM). CIEM ensures appropriate and secure identities and access rights in cloud environments. It helps understand access permissions to cloud resources and associated risks. Setup and data collection may take up to 24 hours.
+- **Permissions management** - Insights into Cloud Infrastructure Entitlement Management (CIEM). CIEM ensures appropriate and secure identities and access rights in cloud environments. It helps understand access permissions to cloud resources and associated risks. Setup and data collection may take up to 24 hours.
 
 **To enable the components of the Defender CSPM plan**: