Merge pull request #271874 from ElazarK/WI241105-241104-and-241103

episode 45-47

Author: v-ccolin

articles/defender-for-cloud/TOC.yml

@@ -1004,7 +1004,13 @@
         - name: Unified insights from Microsoft Entra permissions management
           href: episode-forty-three.md
         - name: Agentless malware detection
-          href: episode-forty-four.md   
+          href: episode-forty-four.md
+        - name: Risk prioritization
+          href: episode-forty-five.md
+        - name: DevOps Security Capabilities in Defender CSPM
+          href: episode-forty-six.md
+        - name: Vulnerability management in Defender CSPM
+          href: episode-forty-seven.md
     - name: Manage user data
       href: privacy.md
     - name: Microsoft Defender for IoT documentation

articles/defender-for-cloud/episode-forty-five.md

@@ -0,0 +1,36 @@
+---
+title: Risk prioritization | Defender for Cloud in the field
+description: Learn about risk prioritization in Defender for Cloud.
+ms.topic: reference
+ms.date: 04/11/2024
+---
+
+# Risk prioritization in Defender for Cloud
+
+**Episode description**: In this episode of Defender for Cloud in the Field, Aviram Yitzhak joins Yuri Diogenes to talk about recommendation prioritization in Microsoft Defender for Cloud. Aviram explains the correlation between recommendation prioritization and attack path, and when to use each dashboard. Aviram also demonstrates the user experience when using recommendation prioritization dashboard to triage recommendations based on risk factors.
+
+> [!VIDEO https://aka.ms/docs/player?id=a6d91bc3-2b57-4365-8fc9-35214d6ffb15]
+
+- [01:54](/shows/mdc-in-the-field/risk-prioritization#time=01m54s) - What is recommendation prioritization
+- [03:51](/shows/mdc-in-the-field/risk-prioritization#time=04m25s) - How recommendations are listed in this new format
+- [04:38](/shows/mdc-in-the-field/risk-prioritization#time=06m25s) - When to use recommendation prioritization
+- [07:58](/shows/mdc-in-the-field/risk-prioritization#time=09m45s) - Correlation with secure score
+- [08:17](/shows/mdc-in-the-field/risk-prioritization#time=11m15s) - Demonstration
+
+## Recommended resources
+
+- Learn more about [Risk prioritization](risk-prioritization.md).
+- Learn more about [Microsoft Security](https://msft.it/6002T9HQY).
+- Subscribe to [Microsoft Security on YouTube](https://www.youtube.com/playlist?list=PL3ZTgFEc7LysiX4PfHhdJPR7S8mGO14YS).
+
+- Follow us on social media:
+
+  - [LinkedIn](https://www.linkedin.com/showcase/microsoft-security/)
+  - [Twitter](https://twitter.com/msftsecurity)
+
+- Join our [Tech Community](https://aka.ms/SecurityTechCommunity).
+
+## Next steps
+
+> [!div class="nextstepaction"]
+> [DevOps security capabilities in Defender CSPM](episode-forty-six.md)

articles/defender-for-cloud/episode-forty-four.md

@@ -33,4 +33,4 @@ ms.date: 01/28/2024
 ## Next steps
 
 > [!div class="nextstepaction"]
-> [New AWS Connector in Microsoft Defender for Cloud](episode-one.md)
+> [Risk prioritization](episode-forty-five.md)

articles/defender-for-cloud/episode-forty-seven.md

@@ -0,0 +1,37 @@
+---
+title: Vulnerability management in Defender CSPM | Defender for Cloud in the field
+description: Learn about vulnerability management in Defender CSPM in Defender for Cloud.
+ms.topic: reference
+ms.date: 04/11/2024
+---
+
+# Vulnerability management in Defender CSPM
+
+**Episode description**: In this episode of Defender for Cloud in the Field, Shahar Bahat joins Yuri Diogenes to talk about some updates in vulnerability management in Defender for Cloud. Shahar talks about the different aspects of vulnerability management in Defender for Cloud, how to use attack path to identify the effect of a vulnerability and how to use Cloud Security Explorer to gain visualization of CVEs at scale across all your subscriptions. Shahar also demonstrates how to utilize these capabilities in Defender for Cloud.
+  
+
+> [!VIDEO https://aka.ms/docs/player?id=1827b0e1-dd27-4e83-a2b5-6adfea3f8ed5]
+
+- [01:15](/shows/mdc-in-the-field/vulnerability-management#time=01m15s) - Overview of Vulnerability Management solution in Defender for Cloud
+- [02:31](/shows/mdc-in-the-field/vulnerability-management#time=02m31s) - Insights available as a result of the vulnerability scanning
+- [03:41](/shows/mdc-in-the-field/vulnerability-management#time=03m41s) - Integration with Microsoft Threat Vulnerability Management
+- [04:52](/shows/mdc-in-the-field/vulnerability-management#time=04m52s) - Querying vulnerability scan results at scale
+- [06:53](/shows/mdc-in-the-field/vulnerability-management#time=06m53s) - Demonstration
+
+## Recommended resources
+
+- Learn more about [vulnerability management](https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/defender-for-cloud-unified-vulnerability-assessment-powered-by/ba-p/3990112).
+- Learn more about [Microsoft Security](https://msft.it/6002T9HQY).
+- Subscribe to [Microsoft Security on YouTube](https://www.youtube.com/playlist?list=PL3ZTgFEc7LysiX4PfHhdJPR7S8mGO14YS).
+
+- Follow us on social media:
+
+  - [LinkedIn](https://www.linkedin.com/showcase/microsoft-security/)
+  - [Twitter](https://twitter.com/msftsecurity)
+
+- Join our [Tech Community](https://aka.ms/SecurityTechCommunity).
+
+## Next steps
+
+> [!div class="nextstepaction"]
+> [New AWS Connector in Microsoft Defender for Cloud](episode-one.md)

articles/defender-for-cloud/episode-forty-six.md

@@ -0,0 +1,36 @@
+---
+title: DevOps Security Capabilities in Defender CSPM | Defender for Cloud in the field
+description: Learn about DevOps security capabilities in Defender for Cloud.
+ms.topic: reference
+ms.date: 04/11/2024
+---
+
+# DevOps security capabilities in Defender CSPM
+
+**Episode description**: In this episode of Defender for Cloud in the Field, Charles Oxyer joins Yuri Diogenes to talk about DevOps security capabilities in Defender CSPM. Charles explains the importance of DevOps security in Microsoft CNAPP solution, what are the free capabilities available as part of Foundational CSPM, and what are the advanced DevOps security features included in Defender CSPM. Charles demonstrates how to improve the DevOps security posture by remediating recommendations, and how to use code to cloud contextualization with Cloud Security Explorer.
+
+> [!VIDEO https://aka.ms/docs/player?id=386a8435-8154-4c1d-90cc-324e8d41b95f]
+
+- [01:47](/shows/mdc-in-the-field/devops-security#time=01m54s) - What role does DevOps Security plays in a CNAPP solution?
+- [04:40](/shows/mdc-in-the-field/devops-security#time=04m40s) - What's new in Defender for Cloud DevOps Security GA?
+- [07:08](/shows/mdc-in-the-field/devops-security#time=07m08s) - How Defenders for Cloud DevOps Security capabilities help customers to identify risk across devops state?
+- [09:38](/shows/mdc-in-the-field/devops-security#time=09m38s) - Code to cloud contextualization
+- [13:44](/shows/mdc-in-the-field/devops-security#time=13m44s) - Demonstration
+
+## Recommended resources
+
+- Learn more about [Overview of Microsoft Defender for Cloud DevOps security](defender-for-devops-introduction.md).
+- Learn more about [Microsoft Security](https://msft.it/6002T9HQY).
+- Subscribe to [Microsoft Security on YouTube](https://www.youtube.com/playlist?list=PL3ZTgFEc7LysiX4PfHhdJPR7S8mGO14YS).
+
+- Follow us on social media:
+
+  - [LinkedIn](https://www.linkedin.com/showcase/microsoft-security/)
+  - [Twitter](https://twitter.com/msftsecurity)
+
+- Join our [Tech Community](https://aka.ms/SecurityTechCommunity).
+
+## Next steps
+
+> [!div class="nextstepaction"]
+> [Vulnerability anagement in Defender CSPM](episode-forty-seven.md)