search

Azure / CanadaPubSecALZ

This reference implementation is based on Cloud Adoption Framework for Azure and provides an opinionated implementation that enables ITSG-33 regulatory compliance by using NIST SP 800-53 Rev. 4 and Canada Federal PBMM Regulatory Compliance Policy Sets.
MIT License
124 stars 86 forks source link

Enable and configure the compliance over time workbook in Defender for Cloud #370

Closed Vallentyne closed 11 months ago

Vallentyne commented 1 year ago

For at least the Canadian PBMM regulatory compliance policy, enable continuous export to the log analytics workspace so the "compliance over time" workbook is functional from the start.

The environment should deploy this setting from the code directly, without forcing manual configuration.

docs here: https://learn.microsoft.com/en-us/azure/defender-for-cloud/continuous-export?WT.mc_id=Portal-fx&tabs=azure-portal#information-about-exporting-to-a-log-analytics-workspace

Other options that might be enabled could be the secure score.

All of these help support depts with "automated ATO" efforts.

Vallentyne commented 1 year ago

this might be best implemented using the "Deploy export to Log Analytics workspace for Microsoft Defender for Cloud data" policy set.

github-actions[bot] commented 11 months ago

This issue is stale because it has been open 90 days with no activity. Remove stale label or comment or this will be closed in 7 days.