Merge pull request #267459 from danielledennis/main

Add landing page

Author: v-dirichards

articles/defender-for-cloud/concept-easm.md

@@ -26,5 +26,5 @@ EASM collects data for publicly exposed assets (“outside-in”). Defender for
 ## Next steps
 
 - Learn about [cloud security explorer and attack paths](concept-attack-path.md) in Defender for Cloud.
-- Learn about [Defender EASM](../external-attack-surface-management/index.md).
+- Learn about [Defender EASM](../external-attack-surface-management/overview.md).
 - Learn how to [deploy Defender for EASM](../external-attack-surface-management/deploying-the-defender-easm-azure-resource.md).

articles/external-attack-surface-management/TOC.yml

@@ -1,8 +1,10 @@
 - name: Concepts
   expanded: true
   items:
+  - name: Defender EASM documentation
+    href: index.yml 
   - name: Overview
-    href: index.md
+    href: overview.md
   - name: Understanding inventory assets
     href: understanding-inventory-assets.md
   - name: What is Discovery?

articles/external-attack-surface-management/deploying-the-defender-easm-azure-resource.md

@@ -20,7 +20,7 @@ Creating the Defender EASM Azure resource involves two steps:
 
 ## Prerequisites
 
-Before you create a Defender EASM resource group, become familiar with how to access and use the [Azure portal](https://portal.azure.com/). Also read the [Defender EASM Overview article](index.md) for key context on the product. You need:
+Before you create a Defender EASM resource group, become familiar with how to access and use the [Azure portal](https://portal.azure.com/). Also read the [Defender EASM Overview article](overview.md) for key context on the product. You need:
 
 - A valid Azure subscription or free Defender EASM trial account. If you don’t have an [Azure subscription](../guides/developer/azure-developer-guide.md#understanding-accounts-subscriptions-and-billing), create a free Azure account before you begin.
 - A Contributor role assigned for you to create a resource. To get this role assigned to your account, follow the steps in the [Assign roles](../role-based-access-control/role-assignments-steps.md) documentation. Or you can contact your administrator.

articles/external-attack-surface-management/index.yml

@@ -0,0 +1,109 @@
+### YamlMime:Landing
+
+title: Defender External Attack Surface Management
+summary: Microsoft Defender External Attack Surface Management (Defender EASM) continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure. This visibility enables security and IT teams to identify unknowns, prioritize risk, eliminate threats, and extend vulnerability and exposure control beyond the firewall. 
+
+metadata:
+  title: Defender External Attack Surface Management 
+  description: Microsoft Defender External Attack Surface Management (Defender EASM) continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure. This visibility enables security and IT teams to identify unknowns, prioritize risk, eliminate threats, and extend vulnerability and exposure control beyond the firewall. 
+
+  ms.service: defender-easm
+  ms.topic: landing-page
+  author: danielledennis
+  ms.author: dandennis
+  ms.date: 02/27/2024
+  keywords: external-attack-surface-management 
+
+# linkListType: architecture | concept | deploy | download | get-started | how-to-guide | learn | overview | quickstart | reference | tutorial | whats-new
+
+landingContent:
+# Cards and links should be based on top customer tasks or top subjects
+# Start card title with a verb
+  # Card
+  - title: About Defender EASM
+    linkLists:
+      - linkListType: overview
+        links:
+          - text: Overview
+            url: overview.md
+          - text: Understanding inventory assets
+            url: understanding-inventory-assets.md
+          - text: What is discovery?
+            url: what-is-discovery.md
+ 
+  # Card
+  - title: Get started
+    linkLists:
+      - linkListType: quickstart
+        links:
+          - text: Create a Defender EASM Azure resource
+            url: deploying-the-defender-easm-azure-resource.md
+      - linkListType: how-to-guide
+        links:
+          - text: Use and manage discovery
+            url: using-and-managing-discovery.md 
+      - linkListType: tutorial
+        links:
+          - text: Discovering your attack surface
+            url: discovering-your-attack-surface.md  
+
+  # Card
+  - title: Understand concepts 
+    linkLists:
+      - linkListType: concept
+        links:
+          - text: Understanding asset details
+            url: understanding-asset-details.md
+          - text: Understanding dashboards
+            url: understanding-dashboards.md
+          - text:  Understand billable assets 
+            url: understanding-billable-assets.md
+
+  # Card
+  - title: How-to guide
+    linkLists:
+      - linkListType: how-to-guide
+        links:
+          - text: Using and managing discovery
+            url: using-and-managing-discovery.md 
+          - text: Modifying inventory assets
+            url: modifying-inventory-assets.md
+          - text: Leveraging data connections
+            url: data-connections.md
+
+  # Card
+  - title: Inventory filters 
+    linkLists:
+      - linkListType: learn
+        links:
+          - text: Inventory filters overview
+
+            url: inventory-filters.md
+          - text: Domain asset filters
+            url: domain-asset-filters.md
+          - text: Host asset filters
+            url: host-asset-filters.md
+          - text: Page asset filters
+            url: page-asset-filters.md
+          - text: Contact asset filters
+            url: contact-asset-filters.md
+          - text: SSL certificate asset filters
+            url: ssl-certificate-asset-filters.md
+          - text: IP address asset filters
+            url: ip-address-asset-filters.md
+          - text: IP block asset filters
+            url: ip-block-asset-filters.md
+          - text: ASN asset filters
+            url: asn-asset-filters.md
+
+
+
+  # Card
+  - title: Integrations
+    linkLists:
+      - linkListType: learn
+        links:
+          - text: Leveraging data connections
+            url: data-connections.md
+          - text: Microsoft Security Copilot (preview) and Defender EASM
+            url: easm-copilot.md 

articles/external-attack-surface-management/index.md renamed to articles/external-attack-surface-management/overview.md

@@ -1,69 +1,68 @@
----
-title: Overview
-description: Microsoft Defender External Attack Surface Management (Defender EASM) continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure.
-author: danielledennis
-ms.author: dandennis
-ms.service: defender-easm
-ms.date: 07/14/2022
-ms.topic: conceptual
----
-
-# Defender EASM Overview
-
-*Microsoft Defender External Attack Surface Management (Defender EASM)* continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure. This visibility enables security and IT teams to identify unknowns, prioritize risk, eliminate threats, and extend vulnerability and exposure control beyond the firewall. Attack Surface Insights are generated by leveraging vulnerability and infrastructure data to showcase the key areas of concern for your organization.
-
-![Screenshot of Overview Dashboard](media/Overview-1.png)
-
-## Discovery and inventory
-
-Microsoft's proprietary discovery technology recursively searches for infrastructure with observed connections to known legitimate assets to make inferences about that infrastructure's relationship to the organization and uncover previously unknown and unmonitored properties. These known legitimate assets are called discovery “seeds”; Defender EASM first discovers strong connections to these selected entities, recursing to unveil more connections and ultimately compile your Attack Surface.
-
-Defender EASM includes the discovery of the following kinds of assets:
-
-- Domains
-- Hostnames
-- Web Pages
-- IP Blocks
-- IP Addresses
-- ASNs
-- SSL Certificates
-- WHOIS Contacts
-
-![Screenshot of Discovery View](media/Overview-2.png)
-
-Discovered assets are indexed and classified in your Defender EASM Inventory, providing a dynamic record of all web infrastructure under the organization's management. Assets are categorized as recent (currently active) or historic, and can include web applications, third party dependencies, and other asset connections.
-
-## Dashboards
-
-Defender EASM provides a series of dashboards that help users quickly understand their online infrastructure and any key risks to their organization. These dashboards are designed to provide insight on specific areas of risk, including vulnerabilities, compliance, and security hygiene. These insights help customers quickly address the components of their attack surface that pose the greatest risk to their organization.
-
-![Screenshot of Dashboard View](media/Overview-3.png)
-
-## Managing assets
-
-Customers can filter their inventory to surface the specific insights they care about most. Filtering offers a level of flexibility and customization that enables users to access a specific subset of assets. This allows you to leverage Defender EASM data according to your specific use case, whether searching for assets that connect to deprecating infrastructure or identifying new cloud resources.
-
-![Screenshot of Inventory View](media/Overview-4.png)
-
-## User permissions 
-
-Users that have been assigned either Owner or Contributor roles can create, delete, and edit Defender EASM resources and the inventory assets within it. These roles can utilize all capabilities offered in the platform. Users that have been assigned the Reader role are able to view Defender EASM data, but are unable to create, delete or edit inventory assets or the resource itself.  
-
-
-## Data residency, availability and privacy
-
-Microsoft Defender External Attack Surface Management contains both global data and customer-specific data. The underlying internet data is global Microsoft data; labels applied by customers are considered customer data. All customer data is stored in the region of the customer’s choosing.
-
-For security purposes, Microsoft collects users' IP addresses when they log in. This data is stored for up to 30 days but may be stored longer if needed to investigate potential fraudulent or malicious use of the product.
-
-In the case of a region down scenario, only the customers in the affected region will experience downtime.
-
-The Microsoft compliance framework requires that all customer data be deleted within 180 days of that organization no longer being a customer of Microsoft.  This also includes storage of customer data in offline locations, such as database backups. Once a resource is deleted, it cannot be restored by our teams.  The customer data will be retained in our data stores for 75 days, however the actual resource cannot be restored.  After the 75 day period, customer data will be permanently deleted.  
-
-
-## Next Steps
-
-- [Deploying the EASM Azure resource](deploying-the-defender-easm-azure-resource.md)
-- [Understanding inventory assets](understanding-inventory-assets.md)
-- [What is discovery?](what-is-discovery.md)
-
+---
+title: Overview
+description: Microsoft Defender External Attack Surface Management (Defender EASM) continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure.
+author: danielledennis
+ms.author: dandennis
+ms.service: defender-easm
+ms.date: 02/27/2024
+ms.topic: conceptual
+---
+
+# Defender EASM Overview
+
+*Microsoft Defender External Attack Surface Management (Defender EASM)* continuously discovers and maps your digital attack surface to provide an external view of your online infrastructure. This visibility enables security and IT teams to identify unknowns, prioritize risk, eliminate threats, and extend vulnerability and exposure control beyond the firewall. Attack Surface Insights are generated by leveraging vulnerability and infrastructure data to showcase the key areas of concern for your organization.
+
+![Screenshot of Overview Dashboard](media/Overview-1.png)
+
+## Discovery and inventory
+
+Microsoft's proprietary discovery technology recursively searches for infrastructure with observed connections to known legitimate assets to make inferences about that infrastructure's relationship to the organization and uncover previously unknown and unmonitored properties. These known legitimate assets are called discovery 'seeds'; Defender EASM first discovers strong connections to these selected entities, recursing to unveil more connections and ultimately compile your Attack Surface.
+
+Defender EASM includes the discovery of the following kinds of assets:
+
+- Domains
+- Hostnames
+- Web Pages
+- IP Blocks
+- IP Addresses
+- ASNs
+- SSL Certificates
+- WHOIS Contacts
+
+![Screenshot of Discovery View](media/Overview-2.png)
+
+Discovered assets are indexed and classified in your Defender EASM Inventory, providing a dynamic record of all web infrastructure under the organization's management. Assets are categorized as recent (currently active) or historic, and can include web applications, third party dependencies, and other asset connections.
+
+## Dashboards
+
+Defender EASM provides a series of dashboards that help users quickly understand their online infrastructure and any key risks to their organization. These dashboards are designed to provide insight on specific areas of risk, including vulnerabilities, compliance, and security hygiene. These insights help customers quickly address the components of their attack surface that pose the greatest risk to their organization.
+
+![Screenshot of Dashboard View](media/Overview-3.png)
+
+## Managing assets
+
+Customers can filter their inventory to surface the specific insights they care about most. Filtering offers a level of flexibility and customization that enables users to access a specific subset of assets. This allows you to leverage Defender EASM data according to your specific use case, whether searching for assets that connect to deprecating infrastructure or identifying new cloud resources.
+
+![Screenshot of Inventory View](media/Overview-4.png)
+
+## User permissions 
+
+Users that are assigned either Owner or Contributor roles can create, delete, and edit Defender EASM resources and the inventory assets within it. These roles can utilize all capabilities offered in the platform. Users that are assigned the Reader role are able to view Defender EASM data, but are unable to create, delete or edit inventory assets or the resource itself.  
+
+
+## Data residency, availability and privacy
+
+Microsoft Defender External Attack Surface Management contains both global data and customer-specific data. The underlying internet data is global Microsoft data; labels applied by customers are considered customer data. All customer data is stored in the region of the customer’s choosing.
+
+For security purposes, Microsoft collects users' IP addresses when they log in. This data is stored for up to 30 days but may be stored longer if needed to investigate potential fraudulent or malicious use of the product.
+
+In the case of a region down scenario, only the customers in the affected region experience downtime.
+
+The Microsoft compliance framework requires that all customer data be deleted within 180 days of that organization no longer being a customer of Microsoft. This also includes storage of customer data in offline locations, such as database backups. Once a resource is deleted, it can't be restored by our teams. The customer data is retained in our data stores for 75 days, however the actual resource can't be restored.  After the 75 day period, customer data will be permanently deleted.  
+
+
+## Next Steps
+
+- [Deploying the EASM Azure resource](deploying-the-defender-easm-azure-resource.md)
+- [Understanding inventory assets](understanding-inventory-assets.md)
+- [What is discovery?](what-is-discovery.md)

articles/external-attack-surface-management/understanding-billable-assets.md

@@ -93,4 +93,4 @@ Prospective customers accessing Defender EASM with a 30-day trial can also see t
 
 ## Next steps 
 
-- [Microsoft Defender External Attack Surface Management (Defender EASM) overview](index.md)   
+- [Microsoft Defender External Attack Surface Management (Defender EASM) overview](overview.md)   

articles/index.yml

@@ -1423,7 +1423,7 @@ productDirectory:
       azureCategories:
         - security
         - management-and-governance
-      url: external-attack-surface-management/index.md
+      url: external-attack-surface-management/overview.md
     # Card
     - title: Key Vault
       summary: Safeguard and maintain control of keys and other secrets