Merge pull request #223321 from ElazarK/WI58488-freshness-batch5

prmerger-automator[bot] · web-flow · commit 42cb42580c53 · 2023-01-10T09:29:36.000Z
Wi58488 freshness batch5
diff --git a/articles/defender-for-cloud/concept-easm.md b/articles/defender-for-cloud/concept-easm.md
@@ -4,12 +4,12 @@ description: Learn how to gain comprehensive visibility and insights over extern
 titleSuffix: Defender EASM and External Attack Surface Management (EASM) and Defender for Cloud
 ms.topic: conceptual
 ms.custom: ignite-2022
-ms.date: 09/21/2022
+ms.date: 01/10/2023
 ---
 
 # What is an external attack surface?
 
-An external attack surface is the entire area of an organization or system that is susceptible to an attack from an external source. An organization's attack surface is made up of all the points of access that an unauthorized person could use to enter their system. The larger your attack surface is, the harder it is to protect.
+An external attack surface is the entire area of an organization or system that is susceptible to an attack from an external source. An organization's attack surface is made up of all the points of access that an unauthorized person could use to enter their system. The larger your attack surface is, the harder it's to protect.
 
 You can use Defender for Cloud's new integration with Microsoft Defender External Attack Surface Management (Defender EASM), to improve your organization's security posture and reduce the potential risk of being attacked. Defender EASM continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure. This visibility enables security and IT teams to identify unknowns, prioritize risk, eliminate threats, and extend vulnerability and exposure control beyond the firewall.
 
@@ -20,7 +20,7 @@ Defender EASM applies Microsoft’s crawling technology to discover assets that
 - Pinpoint attacker-exposed weaknesses, anywhere and on-demand 
 - Gain visibility into third-party attack surfaces
 
-EASM collects data for publicly exposed assets (“outside-in”) which can be used by MDC CSPM (“inside-out”) to assist with internet-exposure validation and discovery capabilities to provide better visibility to customers.
+EASM collects data for publicly exposed assets (“outside-in”). That data can be used by MDC CSPM (“inside-out”) to assist with internet-exposure validation and discovery capabilities to provide better visibility to customers.
 
 ## Learn more
 
diff --git a/articles/defender-for-cloud/github-action.md b/articles/defender-for-cloud/github-action.md
@@ -1,7 +1,7 @@
 ---
 title: Configure the Microsoft Security DevOps GitHub action
 description: Learn how to configure the Microsoft Security DevOps GitHub action.
-ms.date: 09/11/2022
+ms.date: 01/09/2023
 ms.topic: how-to
 ms.custom: ignite-2022
 ---
@@ -23,6 +23,8 @@ Security DevOps uses the following Open Source tools:
 
 ## Prerequisites
 
+- An Azure subscription If you don’t have an Azure subscription, create a [free account](https://azure.microsoft.com/free/) before you begin.
+
 - [Connect your GitHub repositories](quickstart-onboard-github.md).
 
 - Follow the guidance to set up [GitHub Advanced Security](https://docs.github.com/en/organizations/keeping-your-organization-secure/managing-security-settings-for-your-organization/managing-security-and-analysis-settings-for-your-organization).
@@ -35,7 +37,7 @@ Security DevOps uses the following Open Source tools:
 
 1. Sign in to [GitHub](https://www.github.com).
 
-1. Select a repository on which you want to configure the GitHub action.
+1. Select a repository you want to configure the GitHub action to.
 
 1. Select **Actions**.
 
diff --git a/articles/defender-for-cloud/quickstart-automation-alert.md b/articles/defender-for-cloud/quickstart-automation-alert.md
@@ -3,11 +3,12 @@ title: Create a security automation for specific security alerts by using an Azu
 description: Learn how to create a Microsoft Defender for Cloud automation to trigger a logic app, which will be triggered by specific Defender for Cloud alerts by using an Azure Resource Manager template (ARM template) or Bicep.
 ms.topic: quickstart
 ms.custom: subject-armqs, mode-arm
-ms.date: 08/31/2022
+ms.date: 01/09/2023
 ---
+
 # Quickstart: Create an automatic response to a specific security alert using an ARM template or Bicep
 
-This quickstart describes how to use an Azure Resource Manager template (ARM template) or a Bicep file to create a workflow automation that triggers a logic app when specific security alerts are received by Microsoft Defender for Cloud.
+In this quickstart, you'll learn how to use an Azure Resource Manager template (ARM template) or a Bicep file to create a workflow automation. The workflow automation will trigger a logic app when specific security alerts are received by Microsoft Defender for Cloud.
 
 ## Prerequisites
 
@@ -64,9 +65,13 @@ For other Defender for Cloud quickstart templates, see these [community contribu
 
 Use the Azure portal to check the workflow automation has been deployed.
 
-1. From the [Azure portal](https://portal.azure.com), open **Microsoft Defender for Cloud**.
+1. Sign in to the [Azure portal](https://portal.azure.com).
+
+1. Search for and select **Microsoft Defender for Cloud**.
+
+1. Select **filter**.
 
-1. From the top menu bar, select the filter icon, and select the specific subscription on which you deployed the new workflow automation.
+1. Select the specific subscription on which you deployed the new workflow automation.
 
 1. From Microsoft Defender for Cloud's menu, open **workflow automation** and check for your new automation.
     :::image type="content" source="./media/quickstart-automation-alert/validating-template-run.png" alt-text="List of configured automations." lightbox="./media/quickstart-automation-alert/validating-template-run.png":::
@@ -78,9 +83,13 @@ Use the Azure portal to check the workflow automation has been deployed.
 
 When no longer needed, delete the workflow automation using the Azure portal.
 
-1. From the [Azure portal](https://portal.azure.com), open **Microsoft Defender for Cloud**.
+1. Sign in to the [Azure portal](https://portal.azure.com).
+
+1. Search for and select **Microsoft Defender for Cloud**.
+
+1. Select **filter**.
 
-1. From the top menu bar, select the filter icon, and select the specific subscription on which you deployed the new workflow automation.
+1. Select the specific subscription on which you deployed the new workflow automation.
 
 1. From Microsoft Defender for Cloud's menu, open **workflow automation** and find the automation to be deleted.
     :::image type="content" source="./media/quickstart-automation-alert/deleting-workflow-automation.png" alt-text="Steps for removing a workflow automation." lightbox="./media/quickstart-automation-alert/deleting-workflow-automation.png":::
@@ -130,9 +139,9 @@ For other Defender for Cloud quickstart templates, see these [community contribu
 
     You're required to enter the following parameters:
 
-    - **automationName**: Replace **\<automation-name\>** with the name of the automation. It has a minimum length of 3 characters and a maximum length of 24 characters.
-    - **logicAppName**: Replace **\<logic-name\>** with the name of the logic app. It has a minimum length of 3 characters.
-    - **logicAppResourceGroupName**: Replace **\<group-name\>** with the name of the resource group in which the resources are located. It has a minimum length of 3 characters.
+    - **automationName**: Replace **\<automation-name\>** with the name of the automation. It has a minimum length of three characters and a maximum length of 24 characters.
+    - **logicAppName**: Replace **\<logic-name\>** with the name of the logic app. It has a minimum length of three characters.
+    - **logicAppResourceGroupName**: Replace **\<group-name\>** with the name of the resource group in which the resources are located. It has a minimum length of three characters.
     - **alertSettings**: Replace **\{alert-settings\}** with the alert settings object used for deploying the automation.
 
     > [!NOTE]
diff --git a/articles/defender-for-cloud/resource-graph-samples.md b/articles/defender-for-cloud/resource-graph-samples.md
@@ -1,10 +1,11 @@
 ---
 title: Azure Resource Graph sample queries for Microsoft Defender for Cloud
 description: Sample Azure Resource Graph queries for Microsoft Defender for Cloud showing use of resource types and tables to access Microsoft Defender for Cloud related resources and properties.
-ms.date: 07/07/2022
+ms.date: 01/09/2023
 ms.topic: sample
 ms.custom: subject-resourcegraph-sample
 ---
+
 # Azure Resource Graph sample queries for Microsoft Defender for Cloud
 
 This page is a collection of [Azure Resource Graph](../governance/resource-graph/overview.md) sample
diff --git a/articles/defender-for-cloud/review-security-recommendations.md b/articles/defender-for-cloud/review-security-recommendations.md
@@ -2,15 +2,17 @@
 title: Improving your security posture with recommendations in Microsoft Defender for Cloud
 description: This document walks you through how to identify security recommendations that will help you improve your security posture.
 ms.topic: how-to
-ms.date: 06/29/2022
+ms.date: 01/10/2023
 ---
+
 # Find recommendations that can improve your security posture
 
 To improve your [secure score](secure-score-security-controls.md), you have to implement the security recommendations for your environment. From the list of recommendations, you can use filters to find the recommendations that have the most impact on your score, or the ones that you were assigned to implement.
 
 To get to the list of recommendations:
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
+
 1. Either:
     - In the Defender for Cloud overview, select **Security posture** and then select **View recommendations** for the environment that you want to improve.
     - Go to **Recommendations** in the Defender for Cloud menu.
@@ -22,7 +24,7 @@ You can learn more by watching this video from the Defender for Cloud in the Fie
 
 ## Finding recommendations with high impact on your secure score<a name="monitor-recommendations"></a>
 
-Your [secure score is calculated](secure-score-security-controls.md?branch=main#how-your-secure-score-is-calculated) based on the security recommendations that you have implemented. In order to increase your score and improve your security posture, you have to find recommendations with unhealthy resources and [remediate those recommendations](implement-security-recommendations.md).
+Your [secure score is calculated](secure-score-security-controls.md?branch=main#how-your-secure-score-is-calculated) based on the security recommendations that you've implemented. In order to increase your score and improve your security posture, you have to find recommendations with unhealthy resources and [remediate those recommendations](implement-security-recommendations.md).
 
 The list of recommendations shows the **Potential score increase** that you can achieve when you remediate all of the recommendations in the security control.
 
@@ -32,13 +34,13 @@ To find recommendations that can improve your secure score:
     - You can also use the search box and filters above the list of recommendations to find specific recommendations.
 1. Open a security control to see the recommendations that have unhealthy resources.
 
-When you [remediate](implement-security-recommendations.md) all of the recommendations in the security control, your secure score increases by the percentage points listed for the control.
+When you [remediate](implement-security-recommendations.md) all of the recommendations in the security control, your secure score increases by the percentage point listed for the control.
 
 ## Manage the owner and ETA of recommendations that are assigned to you
 
-[Security teams can assign a recommendation](governance-rules.md) to a specific person and assign a due date to drive your organization towards increased security. If you have recommendations assigned to you, you are accountable to remediate the resources affected by the recommendations to help your organization be compliant with the security policy.
+[Security teams can assign a recommendation](governance-rules.md) to a specific person and assign a due date to drive your organization towards increased security. If you have recommendations assigned to you, you're accountable to remediate the resources affected by the recommendations to help your organization be compliant with the security policy.
 
-Recommendations are listed as **On time** until their due date is passed, when they are changed to **Overdue**. Before the recommendation is overdue, the recommendation does not impact the secure score. The security team can also apply a grace period during which overdue recommendations continue to not impact the secure score.
+Recommendations are listed as **On time** until their due date is passed, when they're changed to **Overdue**. Before the recommendation is overdue, the recommendation doesn't impact the secure score. The security team can also apply a grace period during which overdue recommendations continue to not impact the secure score.
 
 To help you plan your work and report on progress, you can set an ETA for the specific resources to show when you plan to have the recommendation resolved by for those resources. You can also change the owner of the recommendation for specific resources so that the person responsible for remediation is assigned to the resource.
 
@@ -49,19 +51,19 @@ To change the owner of resources and set the ETA for remediation of recommendati
 1. In the filters for list of recommendations, select **Show my items only**.
 
     - The status column indicates the recommendations that are on time, overdue, or completed.
-    - The insights column indicates the recommendations that are in a grace period, so they currently do not impact your secure score until they become overdue.
+    - The insights column indicates the recommendations that are in a grace period, so they currently don't impact your secure score until they become overdue.
 
 1. Select an on time or overdue recommendation.
 1. For the resources that are assigned to you, set the owner of the resource:
     1. Select the resources that are owned by another person, and select **Change owner and set ETA**.
     1. Select **Change owner**, enter the email address of the owner of the resource, and select **Save**.
-    The owner of the resource gets a weekly email listing the recommendations that they are assigned to.
+    The owner of the resource gets a weekly email listing the recommendations that they're assigned to.
 1. For resources that you own, set an ETA for remediation:
     1. Select resources that you plan to remediate by the same date, and select **Change owner and set ETA**.
     1. Select **Change ETA** and set the date by which you plan to remediate the recommendation for those resources.
     1. Enter a justification for the remediation by that date, and select **Save**.
 
-The due date for the recommendation does not change, but the security team can see that you plan to update the resources by the specified ETA date.
+The due date for the recommendation doesn't change, but the security team can see that you plan to update the resources by the specified ETA date.
 
 ## Review recommendation data in Azure Resource Graph Explorer (ARG)
 
