Merge pull request #108324 from memildin/asc-melvyn-vmva

Changes as requested by PM

Author: PRMerger9

articles/security-center/built-in-vulnerability-assessment.md

@@ -10,14 +10,16 @@ ms.devlang: na
 ms.topic: conceptual
 ms.tgt_pltfrm: na
 ms.workload: na
-ms.date: 12/13/2019
+ms.date: 03/22/2020
 ms.author: memildin
 
 ---
 
 # Integrated vulnerability scanner for virtual machines (Standard tier only)
 
-The vulnerability scanner included with Azure Security Center is powered by Qualys and widely recognized as the leading tool for identifying vulnerabilities in real time across your Azure Virtual Machines. It's only available to users on the standard pricing tier. This feature is currently in preview.  
+The vulnerability scanner included with Azure Security Center is powered by Qualys. Qualys's scanner is the leading tool for real-time identification of vulnerabilities in your Azure Virtual Machines. It's only available to users on the standard pricing tier. You don't need a Qualys license or even a Qualys account - everything's handled seamlessly inside Security Center.
+
+This feature is currently in preview.  
 
 > [!NOTE]
 > Security Center supports the integration of tools from other vendors, but you'll need to handle the licensing costs, deployment, and configuration. For more information, see [Deploying a partner vulnerability scanning solution](partner-vulnerability-assessment.md).
@@ -38,7 +40,7 @@ To deploy the vulnerability scanner extension:
 
     * **Healthy resources** – the vulnerability scanner extension has been deployed to these VMs.
     * **Unhealthy resources** – the vulnerability scanner extension can be deployed to these VMs. 
-    * **Not applicable resources** – these VMs can’t have the vulnerability scanner extension deployed. Your VM might be in this tab because it's on the free pricing tier, it's missing the ImageReference class (relevant to custom images and VMs restored from backup, as explained in the Azure for .NET documentation](https://docs.microsoft.com/dotnet/api/microsoft.azure.batch.imagereference?view=azure-dotnet), or it's not running one of the supported OSes:
+    * **Not applicable resources** – these VMs can't have the vulnerability scanner extension deployed. Your VM might be in this tab because it's on the free pricing tier, it's missing the ImageReference class (relevant to custom images and VMs restored from backup, as explained in the Azure for .NET documentation](https://docs.microsoft.com/dotnet/api/microsoft.azure.batch.imagereference?view=azure-dotnet), or it's not running one of the supported OSes:
 
         - All versions of Windows    
         - Red Hat Enterprise Linux 6.7, 7.6
@@ -54,11 +56,11 @@ To deploy the vulnerability scanner extension:
 
     The scanner extension will be installed on all of the selected VMs.
 
-    Scanning begins automatically as soon as the extension is successfully deployed.
+    Scanning begins automatically as soon as the extension is successfully deployed. Scans will then run at four-hour intervals. This interval is hard-coded and not configurable. 
 
 ## Viewing and remediating discovered vulnerabilities
 
-When Security Center identifies vulnerabilities, it presents findings and related information (remediation steps, related CVEs, CVSS scores, and more) as recommendations. You can view the identified vulnerabilities for one or more subscriptions, or for a specific virtual machine.
+When Security Center identifies vulnerabilities, it presents findings and related information as recommendations. The related information includes remediation steps, related CVEs, CVSS scores, and more. You can view the identified vulnerabilities for one or more subscriptions, or for a specific virtual machine.
 
 To see the findings and remediate the identified vulnerability:
 
@@ -108,9 +110,9 @@ You'll need the following details:
 * On Windows, the extension is called "WindowsAgent.AzureSecurityCenter" and provider name is "Qualys"
 
 ### How does the extension get updated?
-Like the Azure Security Center agent as well as all Azure extensions, minor versions of the Qualys scanner may be automatically updated in the background. All agents and extensions are tested extensively before being automatically deployed.
+Like the Azure Security Center agent itself and all other Azure extensions, minor updates of the Qualys scanner may automatically happen in the background. All agents and extensions are tested extensively before being automatically deployed.
 
-Some updates to the vulnerability scanner extension may require manual deployment. For example, **if you are running v1.0.0.4, you must take the following steps**:
+Some updates to the vulnerability scanner extension may require manual deployment. For example, **if you're running v1.0.0.4, you must take the following steps**:
 
 1. Verify the version of the Qualys vulnerability scanner extension running on your VM:
 
@@ -135,7 +137,7 @@ When you open the recommendation, you'll see your VMs in one or more of the foll
 
 - **Healthy resources** – the vulnerability scanner extension has been deployed to these VMs.
 - **Unhealthy resources** – the vulnerability scanner extension can be deployed to these VMs. 
-- **Not applicable resources** – These VMs can’t have the vulnerability scanner extension deployed. Your VM might be in this tab because it's on the free pricing tier, it's missing the ImageReference class (relevant to custom images and VMs restored from backup, as explained in the Azure for .NET documentation](https://docs.microsoft.com/dotnet/api/microsoft.azure.batch.imagereference?view=azure-dotnet), or it's not running one of the supported OSes:
+- **Not applicable resources** – These VMs can't have the vulnerability scanner extension deployed. Your VM might be in this tab because it's on the free pricing tier, it's missing the ImageReference class (relevant to custom images and VMs restored from backup, as explained in the Azure for .NET documentation](https://docs.microsoft.com/dotnet/api/microsoft.azure.batch.imagereference?view=azure-dotnet), or it's not running one of the supported OSes:
 
     - All versions of Windows
     - Red Hat Enterprise Linux 6.7, 7.6
@@ -146,15 +148,15 @@ When you open the recommendation, you'll see your VMs in one or more of the foll
     - Debian 7, 8
 
 ### What is scanned by the built-in vulnerability scanner?
-The scanner is running on your virtual machine and looking for vulnerabilities of the VM itself. From the virtual machine, it cannot scan your network.
+The scanner is running on your virtual machine and looking for vulnerabilities of the VM itself. From the virtual machine, it can't scan your network.
 
 ### Does the scanner integrate with my existing Qualys console?
 The Security Center extension is a separate tool from your existing Qualys scanner and, because of licensing restrictions, can only be used within Azure Security Center.
 
 ### Microsoft Defender Advanced Threat Protection also includes Threat & Vulnerability Management (TVM). How is the Security Center Vulnerability Assessment extension different?
-Microsoft is actively developing world-class vulnerability management with Microsoft Defender ATP’s Threat & Vulnerability Management solution, built into Windows.
+Microsoft is actively developing world-class vulnerability management with Microsoft Defender ATP's Threat & Vulnerability Management solution, built into Windows.
 
-Today, Azure Security Center’s Vulnerability Assessment extension is powered by Qualys. This ensures support for both Windows and Linux virtual machines. The extension also benefits from Qualys's own knowledge of vulnerabilities that don't yet have CVEs.
+Today, Azure Security Center's Vulnerability Assessment extension is powered by Qualys. This ensures support for both Windows and Linux virtual machines. The extension also benefits from Qualys's own knowledge of vulnerabilities that don't yet have CVEs.
 
 ## Next steps
 This article described the Azure Security Center Vulnerability Assessment extension (powered by Qualys) for scanning your VMs. For related material, see the following articles: