fixes to article with Tal

ElazarK · ElazarK · commit d99683e5d47d · 2024-07-04T15:38:56.000+03:00
diff --git a/articles/defender-for-cloud/TOC.yml b/articles/defender-for-cloud/TOC.yml
@@ -207,7 +207,7 @@
       - name: Investigating risks with security explorer/attack paths
         displayName: cloud security graph, attack path analysis, cloud security explorer, attack, path, graph, security, explorer
         href: concept-attack-path.md
-      - name: Integration with Defender EASM
+      - name: External attack surface management in Defender for Cloud
         displayName: EASM, attack surface management, integration
         href: concept-easm.md
       - name: Critical assets protection
diff --git a/articles/defender-for-cloud/concept-easm.md b/articles/defender-for-cloud/concept-easm.md
@@ -1,14 +1,14 @@
 ---
-title: Integration with Defender EASM
+title: External attack surface management in Defender for Cloud
 description: Learn about Defender for Cloud integration with Defender External attack surface management (EASM) to enhance security and reduce the risk of attacks.
 ms.topic: concept-article
 ms.date: 07/03/2024
 #customer intent: As a reader, I want to learn about the integration between Defender for Cloud and Defender External attack surface management (EASM) so that I can enhance my organization's security.
 ---
 
-# Integration with Defender EASM
+# Integration with Defender External Attack Surface Management (EASM)
 
-Microsoft Defender for Cloud's integration with Microsoft Defender External Attack Surface Management (DEASM), allows organizations to improve their security posture while reducing the potential risk of being attacked by exploring their external attack surface. The integration is included with the Defender for Cloud Cloud Security Posture Management (CSPM) plan by default and doesn't require a license from Defender EASM or any special configurations.
+Microsoft Defender for Cloud has the capability to perform external attack surface management (EASM), (outside-in) scans on multicloud environments. Defender for Cloud accomplishes this through its integration with Microsoft Defender EASM. The integration allows organizations to improve their security posture while reducing the potential risk of being attacked by exploring their external attack surface. The integration is included with the Defender Cloud Security Posture Management (CSPM) plan by default and doesn't require a license from Defender EASM or any special configurations.
 
 Defender EASM applies Microsoft’s crawling technology to discover assets that are related to your known online infrastructure, and actively scans these assets to discover new connections over time. Attack Surface Insights are generated by applying vulnerability and infrastructure data to showcase the key areas of concern for your organization, such as:
 
@@ -17,25 +17,23 @@ Defender EASM applies Microsoft’s crawling technology to discover assets that
 - Pinpoint attacker-exposed weaknesses, anywhere and on-demand.
 - Gain visibility into third-party attack surfaces.
 
-:::image type="content" source="media/concept-easm/cloud-security-explorer.png" alt-text="Screenshot of the cloud security explorer page in the Defender for Cloud portal." lightbox="media/concept-easm/cloud-security-explorer.png":::
-
 With this information, security and IT teams are able to identify unknowns, prioritize risks, eliminate threats, and extend vulnerability and exposure control beyond the firewall. The attack surface is made up of all the points of access that an unauthorized person could use to enter their system. The larger your attack surface is, the harder it's to protect.
 
 EASM collects data on publicly exposed assets (“outside-in”) which Defender for Cloud's  Cloud Security Posture Management (CSPM) (“inside-out”) plan uses to assist with internet-exposure validation and discovery capabilities.
 
 Learn more about [Defender EASM](../external-attack-surface-management/overview.md).
 
-## Defender CSPM integration
+## EASM capabilities in Defender CSPM
 
-[Defender CSPM](concept-cloud-security-posture-management.md) includes the capabilities from Defender EASM such as:
+The [Defender CSPM](concept-cloud-security-posture-management.md) plan utilizes the data collected through the Defender EASM integration to provide the following capabilities within the Defender for Cloud portal:
 
 - Discover of all the internet facing cloud resources through the use of an outside-in scan.
 - Attack path analysis which finds all exploitable paths starting from internet exposed IPs.
 - Custom queries that correlate all internet exposed IPs with the rest of Defender for Cloud data in the cloud security explorer.
 
- Instead, it provides detection of internet accessible assets via Defender for Cloud recommendations and attack paths.
+:::image type="content" source="media/concept-easm/cloud-security-explorer.png" alt-text="Screenshot of the cloud security explorer page in the Defender for Cloud portal." lightbox="media/concept-easm/cloud-security-explorer.png":::
 
 ## Related content
-- [Detect exposed IP addresses](detect-exposed-ip-addresses.md)
+- [Detect internet exposed IP addresses](detect-exposed-ip-addresses.md)
 - [Cloud security explorer and attack paths](concept-attack-path.md) in Defender for Cloud.
 - [Deploy Defender for EASM](../external-attack-surface-management/deploying-the-defender-easm-azure-resource.md).
diff --git a/articles/defender-for-cloud/detect-exposed-ip-addresses.md b/articles/defender-for-cloud/detect-exposed-ip-addresses.md
@@ -11,17 +11,15 @@ ai-usage: ai-assisted
 
 # Detect internet exposed IP addresses
 
-Microsoft Defender for Cloud's integration with Defender External Attack Surface Management (EASM) allows organizations to improve their security posture and reduce the potential risk of attacks by exploring their external attack surface through an outside-in scan of the resources in their environment.
+Microsoft Defender for Cloud's provides organizations the capability to perform External Attack Surface Management (EASM) (outside-in) scans to improve their security posture through its integration with Defender EASM. Defender for Cloud's EASM scans uses the information provided by the Defender EASM integration to provide actionable recommendations and visualizations of attack paths to reduce the risk of bad actors exploiting internet exposed IP addresses. 
 
-Security teams can use the cloud security explorer to build queries and proactively hunt for security risks in their environments. Additionally, they can use the attack path analysis to visualize the potential attack paths that an attacker could use to reach their critical assets. 
-
-The cloud security explorer allows you to build queries that can proactively hunt for security risks in your environments. While the attack path analysis provides a visual representation of the attack paths that an attacker could use to reach your critical assets.
+Through the use Defender for Cloud's cloud security explorer, security teams can build queries and proactively hunt for security risks. Security teams can also use the attack path analysis to visualize the potential attack paths that an attacker could use to reach their critical assets. 
 
 ## Prerequisites
 
 - You need a Microsoft Azure subscription. If you don't have an Azure subscription, you can [sign up for a free subscription](https://azure.microsoft.com/pricing/free-trial/).
 
-- You must [enable the Defender CSPM plan](tutorial-enable-cspm-plan.md).
+- You must [enable the Defender Cloud Security Posture Management (CSPM) plan](tutorial-enable-cspm-plan.md).
 
 ## Detect internet exposed IP addresses with the cloud security explorer
 
diff --git a/articles/defender-for-cloud/media/concept-easm/cloud-security-explorer.png b/articles/defender-for-cloud/media/concept-easm/cloud-security-explorer.png
