Merge pull request #275566 from ElazarK/WI242968-freshness

freshness

Author: v-dirichards

articles/defender-for-cloud/auto-deploy-vulnerability-assessment.md

@@ -2,7 +2,7 @@
 title: Automatically assess machines for vulnerabilities
 description: Use Microsoft Defender for Cloud to automatically ensure your machines have a vulnerability assessment solution
 ms.topic: how-to
-ms.date: 04/24/2023
+ms.date: 05/16/2024
 ---
 
 # Automatically configure vulnerability assessment for your machines

articles/defender-for-cloud/concept-defender-for-cosmos.md

@@ -1,10 +1,10 @@
 ---
 title: Overview of Defender for Azure Cosmos DB
 description: Learn about the benefits and features of Microsoft Defender for Azure Cosmos DB.
-ms.topic: conceptual
+ms.topic: concept-article
 ms.author: dacurwin
 author: dcurwin
-ms.date: 11/27/2022
+ms.date: 05/30/2024
 ---
 
 # Overview of Microsoft Defender for Azure Cosmos DB

articles/defender-for-cloud/concept-easm.md

@@ -1,8 +1,9 @@
 ---
-title: Microsoft Defender for Cloud integration with Defender External Attack Surface Management (EASM)
-description: Learn about Defender for Cloud integration with Defender External attack surface management (EASM)
-ms.topic: conceptual
-ms.date: 03/05/2023
+title: Microsoft Defender for Cloud integration with Defender External attack surface management (EASM)
+description: Learn about Defender for Cloud integration with Defender External attack surface management (EASM) to enhance security and reduce the risk of attacks.
+ms.topic: concept-article
+ms.date: 05/20/2024
+#customer intent: As a reader, I want to learn about the integration between Defender for Cloud and Defender External attack surface management (EASM) so that I can enhance my organization's security.
 ---
 
 # Integration with Defender EASM

articles/defender-for-cloud/create-custom-recommendations.md

@@ -2,7 +2,8 @@
 title: Create custom security standards and recommendations
 description: Learn how to create custom security standards and recommendations for all clouds in Microsoft Defender for Cloud.
 ms.topic: how-to
-ms.date: 03/26/2023
+ms.date: 05/16/2024
+#customer intent: As a user, I want to learn how to create custom security standards and recommendations in Microsoft Defender for Cloud.
 ---
 
 # Create custom security standards and recommendations in Microsoft Defender for Cloud

articles/defender-for-cloud/cross-tenant-management.md

@@ -1,10 +1,10 @@
 ---
 title: Cross-tenant management 
 description: Learn how to set up cross-tenant management to manage the security posture of multiple tenants in Defender for Cloud using Azure Lighthouse.
-ms.topic: conceptual
+ms.topic: concept-article
 ms.author: dacurwin
 author: dcurwin
-ms.date: 11/09/2021
+ms.date: 05/30/2024
 ---
 
 # Cross-tenant management in Defender for Cloud
@@ -25,7 +25,7 @@ You're able to review and manage subscriptions across multiple tenants in the sa
 
 From the top menu bar, select the filter icon, and select the subscriptions, from each tenant's directory, you'd like to view.
 
-  ![Filter tenants.](./media/cross-tenant-management/cross-tenant-filter.png)
+:::image type="content" source="media/cross-tenant-management/cross-tenant-filter.png" alt-text="Screenshot that shows where the cross tenant filter button is located.":::
 
 The views and actions are basically the same. Here are some examples:
 

articles/defender-for-cloud/defender-for-cloud-planning-and-operations-guide.md

@@ -1,8 +1,9 @@
 ---
 title: Defender for Cloud Planning and Operations Guide
 description: This document helps you to plan before adopting Defender for Cloud and considerations regarding daily operations.
-ms.topic: conceptual
-ms.date: 02/06/2023
+ms.topic: concept-article
+ms.date: 05/16/2024
+#customer intent: As a reader, I want to understand the planning and operations considerations for adopting Defender for Cloud and how it fits into my organization's security requirements and cloud management model. I also want to learn about the security roles, access controls, security policies, data collection, and storage in Defender for Cloud.
 ---
 
 # Planning and operations guide
@@ -29,7 +30,7 @@ In the next section, you'll learn how to plan for each one of those areas and ap
 
 Depending on the size and structure of your organization, multiple individuals and teams might use Defender for Cloud to perform different security-related tasks. In the following diagram, you have an example of fictitious personas and their respective roles and security responsibilities:
 
-:::image type="content" source="./media/defender-for-cloud-planning-and-operations-guide/defender-for-cloud-planning-and-operations-guide-fig01-new.png" alt-text="Roles.":::
+:::image type="content" source="./media/defender-for-cloud-planning-and-operations-guide/defender-for-cloud-planning-and-operations-guide-fig01-new.png" alt-text="Conceptual image that shows various people and the roles that they fill in an organization.":::
 
 Defender for Cloud enables these individuals to meet these various responsibilities. For example:
 
@@ -228,7 +229,7 @@ Each Security Alert provides information that can be used to better understand t
 
 The following example shows a suspicious RDP activity taking place:
 
-:::image type="content" source="./media/defender-for-cloud-planning-and-operations-guide/defender-for-cloud-planning-and-operations-guide-fig5-ga.png" alt-text="Suspicious activity.":::
+:::image type="content" source="./media/defender-for-cloud-planning-and-operations-guide/defender-for-cloud-planning-and-operations-guide-fig5-ga.png" alt-text="Screenshot of a suspicious activity report while it is taking place..":::
 
 This page shows the details regarding the time that the attack took place, the source hostname, the target VM and also gives recommendation steps. In some circumstances, the source information of the attack might be empty. Read [Missing Source Information in Defender for Cloud alerts](/archive/blogs/azuresecurity/missing-source-information-in-azure-security-center-alerts) for more information about this type of behavior.
 

articles/defender-for-cloud/defender-for-kubernetes-introduction.md

@@ -1,10 +1,11 @@
 ---
 title: Microsoft Defender for Kubernetes - the benefits and features
-description: Learn about the benefits and features of Microsoft Defender for Kubernetes.
-ms.date: 07/11/2022
+description: Learn about the benefits and features of Microsoft Defender for Kubernetes and how it provides real-time threat protection for your Azure Kubernetes Service (AKS) containerized environments.
+ms.date: 05/16/2024
 author: dcurwin
 ms.author: dacurwin
 ms.topic: overview
+#customer intent: As a reader, I want to learn about the benefits and features of Microsoft Defender for Kubernetes so that I can understand its capabilities.
 ---
 
 # Introduction to Microsoft Defender for Kubernetes (deprecated)

articles/defender-for-cloud/defender-for-resource-manager-introduction.md

@@ -1,8 +1,9 @@
 ---
-title: Microsoft Defender for Resource Manager - the benefits and features
-description: Learn about the benefits and features of Microsoft Defender for Resource Manager
-ms.date: 05/01/2023
+title: Microsoft Defender for Resource Manager - Benefits and Features
+description: Learn about the benefits and features of Microsoft Defender for Resource Manager to protect your Azure resources from potential threats.
+ms.date: 05/16/2024
 ms.topic: overview
+#customer intent: As a security operations team, I want to learn about the benefits and features of Microsoft Defender for Resource Manager so that I can protect the resource management layer of my Azure resources.
 ---
 
 # Overview of Microsoft Defender for Resource Manager

articles/defender-for-cloud/defender-for-resource-manager-usage.md

@@ -1,7 +1,7 @@
 ---
 title: How to respond to Microsoft Defender for Resource Manager alerts
 description: Learn about the steps necessary for responding to alerts from Microsoft Defender for Resource Manager
-ms.date: 11/09/2021
+ms.date: 05/30/2024
 ms.topic: how-to
 ms.author: dacurwin
 author: dcurwin
@@ -11,13 +11,13 @@ author: dcurwin
 
 When you receive an alert from Microsoft Defender for Resource Manager, we recommend you investigate and respond to the alert as described below. Defender for Resource Manager protects all connected resources, so even if you're familiar with the application or user that triggered the alert, it's important to verify the situation surrounding every alert.  
 
-## Step 1: Contact
+## Contact
 
 1. Contact the resource owner to determine whether the behavior was expected or intentional.
 1. If the activity is expected, dismiss the alert.
 1. If the activity is unexpected, treat the related user accounts, subscriptions, and virtual machines as compromised and mitigate as described in the following step.
 
-## Step 2: Investigate alerts from Microsoft Defender for Resource Manager
+## Investigate alerts from Microsoft Defender for Resource Manager
 
 Security alerts from Defender for Resource Manager are based on threats detected by monitoring Azure Resource Manager operations. Defender for Cloud uses internal log sources of Azure Resource Manager as well as Azure Activity log, a platform log in Azure that provides insight into subscription-level events.
 
@@ -45,7 +45,7 @@ To investigate security alerts from Defender for Resource Manager:
 > [!TIP]
 > For a better, richer investigation experience, stream your Azure activity logs to Microsoft Sentinel as described in [Connect data from Azure Activity log](../sentinel/data-connectors/azure-activity.md).
 
-## Step 3: Immediate mitigation
+## Mitigate immediately
 
 1. Remediate compromised user accounts:
     - If they’re unfamiliar, delete them as they might have been created by a threat actor

articles/defender-for-cloud/defender-for-sql-on-machines-vulnerability-assessment.md

@@ -1,10 +1,11 @@
 ---
-title: Scan for vulnerabilities on on-premises and Azure Arc-enabled SQL servers
+title: Scan for vulnerabilities on SQL servers
 description: Learn about Microsoft Defender for SQL servers on machines' integrated vulnerability assessment scanner
 ms.topic: how-to
 ms.author: dacurwin
 author: dcurwin
-ms.date: 11/09/2021
+ms.date: 05/20/2024
+#customer intent: As a user, I want to scan for vulnerabilities on SQL servers using Microsoft Defender for SQL servers on machines' integrated vulnerability assessment scanner.
 ---
 
 # Scan your SQL servers for vulnerabilities
@@ -37,7 +38,7 @@ You can view the vulnerability assessment results directly from Defender for Clo
 
     The detailed view for this recommendation appears.
 
-    :::image type="content" source="./media/defender-for-sql-on-machines-vulnerability-assessment/sql-vulnerability-findings.png" alt-text="Recommendation details page.":::
+    :::image type="content" source="./media/defender-for-sql-on-machines-vulnerability-assessment/sql-vulnerability-findings.png" alt-text="Screenshot of the recommendation details page.":::
 
 1. For more details, drill down:
 
@@ -106,7 +107,7 @@ To create a rule:
 
     1. From the scope list, subscriptions with active rules show as **Rule applied**.
 
-        :::image type="content" source="./media/remediate-vulnerability-findings-vm/modify-rule.png" alt-text="Modify or delete an existing rule.":::
+        :::image type="content" source="./media/remediate-vulnerability-findings-vm/modify-rule.png" alt-text="Screenshot showing how to modify or delete an existing rule in the Defender for Cloud portal.":::
 
     1. To view or delete the rule, select the ellipsis menu ("...").
 
@@ -140,6 +141,7 @@ Metadata information about the connected machine is also collected. Specifically
 
 You can specify the region where your SQL Vulnerability Assessment data will be stored by choosing the Log Analytics workspace location. Microsoft might replicate to other regions for data resiliency, but Microsoft does not replicate data outside the geography.
 
-## Next steps
+## Next step
 
-Learn more about Defender for Cloud's protections for SQL resources in [Overview of Microsoft Defender for SQL](defender-for-sql-introduction.md).
+> [!div class="nextstepaction"]
+> [Overview of Microsoft Defender for SQL](defender-for-sql-introduction.md).