Share via

Manage vulnerabilities within Azure environment

Dakota Sherman 45 Reputation points
2023-12-13T15:33:22.26+00:00

Hello,

I am trying to do some vulnerability management within my Azure environment. When I log into Azure and/or Microsoft Defender, I can see the vulnerabilities, the recommendations, and remediations. It allows me to open a ticket within ServiceNow, although I cannot find it. Is there a way to see these tickets? Is there a way to manage these vulnerabilities? It would not make sense that our IT department or the user would have to download an update from a vendor everytime. There must be some way to manage all this remotely. Please help.

Clarification, when I click on a security recommendation, sometimes it tells me remediation options like an ASR rule. For others, it does not. I have also tried using Azure Update Manager but for some reason, it does not have any of my organizations devices so that will need to be fixed as well.

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,771 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
3,044 questions
Microsoft Configuration Manager Updates
Microsoft Configuration Manager Updates
Microsoft Configuration Manager: An integrated solution for for managing large groups of personal computers and servers.Updates: Broadly released fixes addressing specific issue(s) or related bug(s). Updates may also include new or modified features (i.e. changing default behavior).
1,118 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Bommareddy Dhanush 0 Reputation points
    2023-12-15T03:31:38.0733333+00:00

    Hello Dakota Sherman,
    Managing vulnerabilities within your Azure environment is a crucial aspect of maintaining a secure infrastructure.
    Viewing ServiceNow Tickets:
    Ensure that the integration between Azure and ServiceNow is set up correctly. This might involve checking the configuration and credentials for the integration.
    Verify that the tickets generated within Azure are correctly logged in ServiceNow. You may need to consult with your IT department or administrators who handle the ServiceNow integration.

    Managing Vulnerabilities:
    Utilize Azure Security Center for managing vulnerabilities. It provides a centralized view of the security state of all your Azure resources.
    Review and prioritize the recommendations provided by Azure Security Center. This will help you focus on addressing the most critical vulnerabilities first.
    Remote Management:
    Azure provides various tools and services for remote management, including Azure Security Center and Azure Update Manager. Ensure that your security and update policies are configured to align with your organization's needs.
    5. ASR Rules:
    For recommendations with ASR rules, ensure that you have the necessary permissions to apply these rules. If the remediation options are not clear, refer to Microsoft documentation or seek assistance from Azure support.
    I hope this helps.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.