Merge pull request #481 from Azure/beckyhope-lzchecklistupdate2

Update alz_checklist.en.json
Azure · Sep 12, 2023 · 0acffee · 0acffee
2 parents 0d67e7c + f465f0f
commit 0acffee
Showing 1 changed file with 30 additions and 3 deletions.
diff --git a/checklists/alz_checklist.en.json b/checklists/alz_checklist.en.json
@@ -2189,11 +2189,38 @@
         {
             "category": "Security",
             "subcategory": "Operations",
-            "text": "Enable Defender for Cloud Standard for all subscriptions.",
+            "text": "Enable Defender Cloud Security Posture Management for all subscriptions.",
             "waf": "Security",
             "guid": "09945bda-4333-44f2-9911-634182ba5275",
-            "severity": "Medium",
-            "link": "https://learn.microsoft.com/azure/security-center/"
+            "severity": "High",
+            "link": "https://learn.microsoft.com/en-us/azure/defender-for-cloud/concept-cloud-security-posture-management"
+        },
+        {
+            "category": "Security",
+            "subcategory": "Operations",
+            "text": "Enable a Defender Cloud Workload Protection Plan for Servers on all subscriptions.",
+            "waf": "Security",
+            "guid": "36A72A48-FFFE-4C40-9747-0AB5064355BA",
+            "severity": "High",
+            "link": "https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-select-plan"
+        },
+        {
+            "category": "Security",
+            "subcategory": "Operations",
+            "text": "Enable Defender Cloud Workload Protection Plans for Azure Resources on all subscriptions.",
+            "waf": "Security",
+            "guid": "77425F48-ECBA-43A0-AEAC-A3AC733CCC6A",
+            "severity": "High",
+            "link": "https://www.microsoft.com/en-gb/security/business/solutions/cloud-workload-protection"
+        },
+        {
+            "category": "Security",
+            "subcategory": "Operations",
+            "text": "Enable Endpoint Protection on IaaS Servers.",
+            "waf": "Security",
+            "guid": "24D96B30-61EE-4436-A1CC-D6EF08BC574B",
+            "severity": "High",
+            "link": "https://learn.microsoft.com/en-us/mem/configmgr/protect/deploy-use/endpoint-protection"
         },
         {
             "category": "Security",