Defender & Internal Network Vulnerability scanning requirement

michal 191 Reputation points
2023-06-05T12:26:48.2933333+00:00

Hello,

wondering whether anyone has experience with this... and could advise... as I am quite new into this...

we have just recently got a requirement to perform regular "Internal Network Vulnerability scanning" in our environment.... As we are using M365 + E5 Security for endpoints + Defender for cloud for resources in Azure + Intune (linked to MS Defender) + Defender for Identity, I am trying to find out whether all these can be used/accepted as for that purpose, ...or we need some additional MS products (or 3rd party ones)?

I've done some research on internet and found many products that can be used for this, ... but not able to find out whether MS Defender can be used for it.

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,261 questions
Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
373 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Pavel yannara Mirochnitchenko 12,411 Reputation points MVP
    2023-06-05T13:50:56.0866667+00:00

    Simple answer to that question is - YES (because you are in Microsoft's forum and you have all licenses you need).

    Taking it deeper - Thing is, that lot of has changed past few years and Internal Network has lost its meaning of importance. With M365 Defender for Endpoint, you analyze your workstations against Microsoft's recommendation and data which has been gathered around the world using telemetry. You get your start score of Apps, Devices, Data and Identity and start to improving that by applying Security Baselines, ASR and other single modern security solutions. M365 defender is very comparable solutiuon against other security vendors (see what happened to Symantec and F-Secure).

    I believe that Internal network scanning is outdated thinking.

    0 comments No comments