Minor tweaks

Author: memildin

articles/security-center/asset-inventory.md

@@ -68,7 +68,7 @@ As soon as you've applied filters, the summary values are updated to relate to t
 > [!TIP]
 > The KQL documentation provides a database with some sample data together with some simple queries to get the "feel" for the language. [Learn more in this KQL tutorial](/azure/data-explorer/kusto/query/tutorial?pivots=azuredataexplorer).
 
-**Asset management options** - Inventory lets you perform complex discovery queries. When you've found the resources that match your queries, inventory provides shortcuts for operations such as:
+**Asset management options** - When you've found the resources that match your queries, inventory provides shortcuts for operations such as:
 
 - Assign tags to the filtered resources - select the checkboxes alongside the resources you want to tag.
 - Onboard new servers to Defender for Cloud - use the **Add non-Azure servers** toolbar button.

articles/security-center/configure-email-notifications.md

@@ -5,17 +5,17 @@ author: memildin
 manager: rkarlin
 ms.service: security-center
 ms.topic: quickstart
-ms.date: 10/20/2021
+ms.date: 11/09/2021
 ms.author: memildin
 
 ---
 # Configure email notifications for security alerts 
 
 [!INCLUDE [Banner for top of topics](./includes/banner.md)]
 
-Security alerts need to reach the right people in your organization. By default, Defender for Cloud emails subscription owners whenever a high-severity alert is triggered for their subscription. This page explains how to customize these notifications.
+Security alerts need to reach the right people in your organization. By default, Microsoft Defender for Cloud emails subscription owners whenever a high-severity alert is triggered for their subscription. This page explains how to customize these notifications.
 
-To define your own preferences for notification emails, Microsoft Defender for Cloud's **Email notifications** settings page lets you choose:
+Use Defender for Cloud's **Email notifications** settings page to define preferences for notification emails including:
 
 - ***who* should be notified** - Emails can be sent to select individuals or to anyone with a specified Azure role for a subscription. 
 - ***what* they should be notified about** - Modify the severity levels for which Defender for Cloud should send out notifications.
@@ -81,4 +81,4 @@ To learn more about security alerts, see the following pages:
 
 - [Security alerts - a reference guide](alerts-reference.md)--Learn about the security alerts you might see in Microsoft Defender for Cloud's Threat Protection module
 - [Manage and respond to security alerts in Microsoft Defender for Cloud](managing-and-responding-alerts.md)--Learn how to manage and respond to security alerts
-- [Workflow automation](workflow-automation.md)--Automate responses to alerts with custom notification logic
+- [Workflow automation](workflow-automation.md)--Automate responses to alerts with custom notification logic

articles/security-center/continuous-export.md

@@ -15,7 +15,7 @@ ms.author: memildin
 
 Microsoft Defender for Cloud generates detailed security alerts and recommendations. You can view them in the portal or through programmatic tools. You might also need to export some or all of this information for tracking with other monitoring tools in your environment. 
 
-**Continuous export** lets you fully customize *what* will be exported, and *where* it will go. For example, you can configure it so that:
+You fully customize *what* will be exported, and *where* it will go with **continuous export**. For example, you can configure it so that:
 
 - All high severity alerts are sent to an Azure Event Hub
 - All medium or higher severity findings from vulnerability assessment scans of your SQL servers are sent to a specific Log Analytics workspace

articles/security-center/custom-dashboards-azure-workbooks.md

@@ -114,7 +114,7 @@ This workbook gathers these findings and organizes them by severity, resource ty
 
 Microsoft Defender for Cloud continually compares the configuration of your resources with requirements in industry standards, regulations, and benchmarks. Built-in standards include NIST SP 800-53, SWIFT CSP CSCF v2020, Canada Federal PBMM, HIPAA HITRUST, and more. You can select the specific standards relevant to your organization using the regulatory compliance dashboard. Learn more in [Customize the set of standards in your regulatory compliance dashboard](update-regulatory-compliance-packages.md).
 
-This workbook lets you track your compliance status over time with the various standards you've added to your dashboard.
+This workbook tracks your compliance status over time with the various standards you've added to your dashboard.
 
 :::image type="content" source="media/custom-dashboards-azure-workbooks/compliance-over-time-select-standards.png" alt-text="Select the standards for your compliance over time report.":::
 

articles/security-center/defender-for-sql-introduction.md

@@ -23,7 +23,7 @@ Microsoft Defender for SQL includes two Microsoft Defender plans that extend Mic
 |----|:----|
 |Release state:|**Microsoft Defender for Azure SQL database servers** - Generally available (GA)<br>**Microsoft Defender for SQL servers on machines** - Generally available (GA) |
 |Pricing:|The two plans that form **Microsoft Defender for SQL** are billed as shown on the [pricing page](https://azure.microsoft.com/pricing/details/security-center/)|
-|Protected SQL versions:|[SQL on Azure virtual machines](../azure-sql/virtual-machines/windows/sql-server-on-azure-vm-iaas-what-is-overview.md)<br>[Azure Arc-enabled SQL servers](/sql/sql-server/azure-arc/overview)<br>On-premises SQL servers on Windows machines without Azure Arc<br>Azure SQL [single databases](../azure-sql/database/single-database-overview.md) and [elastic pools](../azure-sql/database/elastic-pool-overview.md)<br>[Azure SQL Managed Instance](../azure-sql/managed-instance/sql-managed-instance-paas-overview.md)<br>[Azure Synapse Analytics (formerly SQL DW) dedicated SQL pool](../synapse-analytics/sql-data-warehouse/sql-data-warehouse-overview-what-is.md)|
+|Protected SQL versions:|[SQL on Azure virtual machines](../azure-sql/virtual-machines/windows/sql-server-on-azure-vm-iaas-what-is-overview.md)<br>[SQL Server on Azure Arc-enabled servers](/sql/sql-server/azure-arc/overview)<br>On-premises SQL servers on Windows machines without Azure Arc<br>Azure SQL [single databases](../azure-sql/database/single-database-overview.md) and [elastic pools](../azure-sql/database/elastic-pool-overview.md)<br>[Azure SQL Managed Instance](../azure-sql/managed-instance/sql-managed-instance-paas-overview.md)<br>[Azure Synapse Analytics (formerly SQL DW) dedicated SQL pool](../synapse-analytics/sql-data-warehouse/sql-data-warehouse-overview-what-is.md)|
 |Clouds:|:::image type="icon" source="./media/icons/yes-icon.png"::: Commercial clouds<br>:::image type="icon" source="./media/icons/yes-icon.png"::: Azure Government<br>:::image type="icon" source="./media/icons/yes-icon.png"::: Azure China 21Vianet (**Partial**: Subset of alerts and vulnerability assessment for SQL servers. Behavioral threat protections aren't available.)|
 |||
 

articles/security-center/defender-for-sql-on-machines-vulnerability-assessment.md

@@ -17,7 +17,7 @@ ms.date: 09/14/2021
 
 - [SQL Server on Virtual Machines](https://azure.microsoft.com/services/virtual-machines/sql-server/)
 - On-premises SQL servers:
-  - [Azure Arc-enabled SQL Server (preview)](/sql/sql-server/azure-arc/overview)
+  - [SQL Server on Azure Arc-enabled servers](/sql/sql-server/azure-arc/overview)
   - [SQL Server running on Windows machines without Azure Arc](../azure-monitor/agents/agent-windows.md)
 
 The integrated [vulnerability assessment scanner](../azure-sql/database/sql-vulnerability-assessment.md) discovers, tracks, and helps you remediate potential database vulnerabilities. Assessment scans findings provide an overview of your SQL machines' security state, and details of any security findings.

articles/security-center/file-integrity-monitoring-overview.md

@@ -192,7 +192,7 @@ The **Changes** tab (shown below) lists all changes for the workspace during the
       - File content
       - Windows services
 
-      Each tab lists the entities that you can edit in that category. For each entity listed, Defender for Cloud identifies whether FIM is enabled (true) or not enabled (false).  Editing the entity lets you enable or disable FIM.
+      Each tab lists the entities that you can edit in that category. For each entity listed, Defender for Cloud identifies whether FIM is enabled (true) or not enabled (false). Edit the entity to enable or disable FIM.
 
     :::image type="content" source="./media/file-integrity-monitoring-overview/file-integrity-monitoring-workspace-configuration.png" alt-text="Workspace configuration for file integrity monitoring in Microsoft Defender for Cloud.":::
 

articles/security-center/update-regulatory-compliance-packages.md

@@ -96,7 +96,7 @@ To add standards to your dashboard:
 
 ## Remove a standard from your dashboard
 
-If any of the supplied regulatory standards isn't relevant to your organization, it's a simple process to remove them from the UI. This lets you further customize the regulatory compliance dashboard, and focus only on the standards that are applicable to you.
+You can continue to customize the regulatory compliance dashboard, to focus only on the standards that are applicable to you, by removing any of the supplied regulatory standards that aren't relevant to your organization.
 
 To remove a standard: