Merge pull request #217703 from ElazarK/gcp-reccoms

gcp recommendations page

Author: v-dirichards

articles/defender-for-cloud/TOC.yml

@@ -132,6 +132,8 @@
         href: recommendations-reference.md
       - name: Reference list of AWS recommendations
         href: recommendations-reference-aws.md
+      - name: Reference list of GCP recommendations
+        href: recommendations-reference-gcp.md
       - name: Reference list of attack paths and cloud security graph components
         href: attack-path-reference.md
   - name: Protect cloud workloads

articles/defender-for-cloud/recommendations-reference-gcp.md

@@ -0,0 +1,47 @@
+---
+title: Reference table for all Microsoft Defender for Cloud recommendations for GCP resources
+description: This article lists Microsoft Defender for Cloud's security recommendations that help you harden and protect your GCP resources.
+ms.topic: reference
+ms.date: 11/09/2022
+ms.custom: generated
+---
+# Security recommendations for GCP resources - a reference guide
+
+This article lists the recommendations you might see in Microsoft Defender for Cloud if you've connected a  
+GCP project from the **Environment settings** page. The recommendations shown in your environment depend 
+on the resources you're protecting and your customized configuration.
+
+To learn about how to respond to these recommendations, see
+[Remediate recommendations in Defender for Cloud](implement-security-recommendations.md).
+
+Your secure score is based on the number of security recommendations you've completed. To
+decide which recommendations to resolve first, look at the severity of each one and its potential
+impact on your secure score.
+
+## <a name='recs-gcp-compute'></a> GCP Compute recommendations
+
+[!INCLUDE [asc-recs-gcp-compute](../../includes/mdfc/mdfc-recs-gcp-compute.md)]
+
+## <a name='recs-gcp-container'></a> GCP Container recommendations
+
+[!INCLUDE [asc-recs-gcp-container](../../includes/mdfc/mdfc-recs-gcp-container.md)]
+
+## <a name='recs-gcp-data'></a> GCP Data recommendations
+
+[!INCLUDE [asc-recs-gcp-data](../../includes/mdfc/mdfc-recs-gcp-data.md)]
+
+## <a name='recs-gcp-identityandaccess'></a> GCP IdentityAndAccess recommendations
+
+[!INCLUDE [asc-recs-gcp-identityandaccess](../../includes/mdfc/mdfc-recs-gcp-identityandaccess.md)]
+
+## <a name='recs-gcp-networking'></a> GCP Networking recommendations
+
+[!INCLUDE [asc-recs-gcp-networking](../../includes/mdfc/mdfc-recs-gcp-networking.md)]
+
+## Next steps
+
+For related information, see the following:
+
+- [Connect your GCP projects to Microsoft Defender for Cloud](quickstart-onboard-gcp.md)
+- [What are security policies, initiatives, and recommendations?](security-policy-concept.md)
+- [Review your security recommendations](review-security-recommendations.md)

includes/mdfc/mdfc-recs-gcp-compute.md

@@ -0,0 +1,18 @@
+---
+author: elazark
+ms.service: defender-for-cloud
+ms.topic: include
+ms.date: 11/09/2022
+ms.author: elkrieger
+ms.custom: generated
+---
+
+There are **4** GCP recommendations in this category.
+
+|Recommendation |Description |Severity |
+|---|---|---|
+|[Advanced configuration of Defender for Containers should be enabled on GCP connectors](https://portal.azure.com/#blade/Microsoft_Azure_Security/RecommendationsBlade/assessmentKey/b7683ca3-3a11-49b6-b9d4-a112713edfa3) |Microsoft Defender for Containers provides cloud-native Kubernetes security capabilities including environment hardening, workload protection, and run-time protection. To ensure you the solution is provisioned properly, and the full set of capabilities are available, enable all advanced configuration settings. |High |
+|[GKE clusters should have Microsoft Defender's extension for Azure Arc installed](https://portal.azure.com/#blade/Microsoft_Azure_Security/RecommendationsBlade/assessmentKey/0faf27b6-f1d5-4f50-b22a-5d129cba0113) |Microsoft Defender's [cluster extension](/azure/azure-arc/kubernetes/extensions) provides security capabilities for your GKE clusters. The extension collects data from a cluster and its nodes to identify security vulnerabilities and threats. <br> The extension works with [Azure Arc-enabled Kubernetes](/azure/azure-arc/kubernetes/overview). <br>Learn more about [Microsoft Defender for Cloud's security features for containerized environments](/azure/defender-for-cloud/defender-for-containers-introduction?tabs=defender-for-container-arch-aks). |High |
+|[GKE clusters should have the Azure Policy extension installed](https://portal.azure.com/#blade/Microsoft_Azure_Security/RecommendationsBlade/assessmentKey/6273e20b-8814-4fda-a297-42a70b16fcbf) |Azure Policy extension for Kubernetes extends [Gatekeeper](https://github.com/open-policy-agent/gatekeeper) v3, an admission controller webhook for <a target="_blank" href="https://www.openpolicyagent.org/">Open Policy Agent</a> (OPA), to apply at-scale enforcements and safeguards on your clusters in a centralized, consistent manner. <br> The extension works with [Azure Arc-enabled Kubernetes](/azure/azure-arc/kubernetes/overview). |High |
+|[Microsoft Defender for Containers should be enabled on GCP connectors](https://portal.azure.com/#blade/Microsoft_Azure_Security/RecommendationsBlade/assessmentKey/d42ac63d-0592-43b2-8bfa-ff9199da595e) |Microsoft Defender for Containers provides cloud-native Kubernetes security capabilities including environment hardening, workload protection, and run-time protection. Enable Containers plan on your GCP connector, to harden the security of Kubernetes clusters and remediate security issues. Learn more about Microsoft Defender for Containers. |High |
+|||