Closed Vallentyne closed 11 months ago
this might be best implemented using the "Deploy export to Log Analytics workspace for Microsoft Defender for Cloud data" policy set.
This issue is stale because it has been open 90 days with no activity. Remove stale label or comment or this will be closed in 7 days.
For at least the Canadian PBMM regulatory compliance policy, enable continuous export to the log analytics workspace so the "compliance over time" workbook is functional from the start.
The environment should deploy this setting from the code directly, without forcing manual configuration.
docs here: https://learn.microsoft.com/en-us/azure/defender-for-cloud/continuous-export?WT.mc_id=Portal-fx&tabs=azure-portal#information-about-exporting-to-a-log-analytics-workspace
Other options that might be enabled could be the secure score.
All of these help support depts with "automated ATO" efforts.