Merge pull request #49301 from KenMAG/main

Updated unit to include exposure management

Author: denrea

learn-pr/wwl-sci/mitigate-incidents-microsoft-365-defender/10-understand-microsoft-secure-score.yml

@@ -4,7 +4,7 @@ title: Understand Microsoft Secure Score
 metadata:
   title: Understand Microsoft Secure Score
   description: "Understand Microsoft Secure Score"
-  ms.date: 01/24/2024
+  ms.date: 02/25/2025
   author: wwlpublish
   ms.author: kelawson
   ms.topic: unit

learn-pr/wwl-sci/mitigate-incidents-microsoft-365-defender/includes/10-understand-microsoft-secure-score.md

@@ -1,4 +1,4 @@
-Microsoft Secure Score is a measurement of an organization's security posture, with a higher number indicating more improvement actions taken. It can be found in the Microsoft Defender portal.
+The *Secure Score* is a holistic view of the *Microsoft Secure Score (365)*, which is a measurement of an organization's security posture, with a higher number indicating more recommended actions taken, and the *Cloud Secure score (Risk based)*, that is a representation of your organizations cloud security posture. They're part of the *Exposure Management* tools in the Microsoft Defender portal.
 
 Following the Secure Score recommendations can protect your organization from threats. From a centralized dashboard in the Microsoft Defender portal, organizations can monitor and work on the security of their Microsoft 365 identities, apps, and devices.
 
@@ -8,15 +8,27 @@ Organizations gain access to robust visualizations of metrics and trends, integr
 
 Currently there are recommendations for the following products:
 
-- Microsoft 365 (including Exchange Online)
+- Microsoft Defender for Office
+- Exchange Online
 - Microsoft Entra ID
 - Microsoft Defender for Endpoint
 - Microsoft Defender for Identity
+- Microsoft Defender for Cloud Apps
+- Microsoft Purview Information Protection
 - Defender for Cloud Apps
 - Microsoft Teams
+- App governance
+- Citrix ShareFile
+- Docusign
+- GitHub
+- Okta
+- Salesforce
+- ServiceNow
+- SharePoint Online
+- Zoom
 
 You can also mark the improvement actions as covered by a third party or alternate mitigation.
 
 ### Take action to improve your score
 
-The **Improvement actions** tab lists the security recommendations that address possible attack surfaces. It also includes their status (to address, planned, risk accepted, resolved through third party, resolved through alternate mitigation, and completed). You can search, filter, and group all the improvement actions.
+The **Recommended actions** tab lists the security recommendations that address possible attack surfaces. It also includes their status (to address, planned, risk accepted, resolved through third party, resolved through alternate mitigation, and completed). You can search, filter, and group all the improvement actions.

learn-pr/wwl-sci/mitigate-incidents-microsoft-365-defender/index.yml

@@ -3,7 +3,7 @@ uid: learn.wwl.mitigate-incidents-microsoft-365-defender
 metadata:
   title: Mitigate incidents using Microsoft Defender
   description: "Mitigate incidents using Microsoft Defender"
-  ms.date: 10/02/2024
+  ms.date: 02/25/2025
   author: wwlpublish
   ms.author: kelawson
   ms.topic: module