Defender for cloud - Regulatory compliance SOC2

Bon Macalindong 65 Reputation points
2023-05-17T10:35:21.72+00:00

I'm getting a compliance item that says "There should be more than one owner assigned to subscriptions". However, when I checked RBAC, I can see that there are multiple owners in the subscription. Note that before I enabled defender for cloud, there are already multiple owners to begin with. Furthermore, the current owners of the subscriptions are actually inherited from the management group. Are inherited role assignments counted?

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,262 questions
{count} votes

Accepted answer
  1. Andrew Blumhardt 9,841 Reputation points Microsoft Employee
    2023-05-17T12:41:11.43+00:00

    This does appear to be subscription specific. You might consider adding an additional break glass owner account. You can also use the exclusion or built-in feedback mechanism if it appears that the assessment is incorrect.


0 additional answers

Sort by: Most helpful