Skip to main content
Microsoft Security

Microsoft Defender Cloud Security Posture Management (CSPM)

Focus on your most critical risk across multicloud environments with contextual cloud security posture management.

A person sitting at their desk using multiple monitors

Defender Cloud Security Posture Management is now Generally Available

Get comprehensive cloud-native security in Defender for Cloud, now with the general availability of Defender CSPM and new antimalware and data security capabilities.

Reduce critical risk with contextual CSPM

Gain full visibility, contextual insights, and built-in workflows to remediate the most critical risks across clouds.

Get comprehensive monitoring of your multicloud security posture

Get continuous security assessment of your resources running across Azure, AWS, Google Cloud, and on-premises.

Prioritize risks with integrated, contextual insights

Identify your most critical risks with integrated insights from SOC, DevOps, Defender External Attack Surface Management, Microsoft Entra Permissions Management, and Azure Purview, all in a single view.

Maximize protection with agentless and agent-based scanning

Get continuous, real-time monitoring with agentless vulnerability scanning and gain deeper protection from built-in agents.

Ensure compliance with built-in multicloud benchmarks

Follow best practices for multicloud security compliance with controls mapped to major regulatory industry benchmarks (such as CIS, PCI, and NIST) in a central dashboard.

Reduce risk by knowing the context

Gain full visibility into your security and compliance posture—and understand the most important risks with Defender CSPM.

A diagram showing the key value proposition of the Cloud Security Posture Management scenario

Key Defender Cloud Security Posture Management capabilities

A security posture breakdown with insights on environments in Microsoft Defender for Cloud.

Measure your security posture with secure score

Gain in-depth and continuous assessment of the security of your cloud resources running in Azure, AWS, and Google Cloud.

A list of secure score recommendations in Defender for Cloud.

Enable comprehensive visibility and contextual insights

Get connected insights generated by the cloud security graph spanning different workloads, such as DevOps, Data sensitivity, External Attack Surface Management (EASM), and Identity.

An outline of an attack path with potential impact, resource types and remediation steps

Proactively mitigate risk with proactive attack path analysis

Use graph-based attack path analysis to explore risk and surface contextual threat data to help prioritize remediation and save mitigation time.

A regulatory compliance breakdown with benchmarks and controls in Defender for Cloud.

Manage security policies and simplify compliance

Centrally manage security policies across your cloud workloads.Follow best practices with benchmarks for multicloud security compliance.

A governance workbook detailing resource status and governance rules in Defender for Cloud.

Implement security governance

Define and manage security governance rules at scale.Assign and track responsibility with a central view to improve organizational efficiency.

Data Security Enhancements in Posture Management

Get contextual insights into data security in posture management.Reduce overall sensitive data exposure by understanding where the blind spots are.

Back to tabs

Forrester XDR Wave

Microsoft Defender is named a Leader in The Forrester New Wave™: Extended Detection and Response (XDR) Providers, Q4 2021. 1,2


See what our customers are saying

Related products

Use best-in-class Microsoft security products to prevent and detect attacks across your organization.

A person sitting at their desk working.

Microsoft Defender for Cloud

Protect multicloud and hybrid environments with comprehensive security across the full lifecycle, from development to runtime.

A person sitting at their desk working across multiple screens.

Microsoft Defender External Attack Surface Management

See your business the way an attacker can.

Documentation and training for Microsoft Defender Cloud Security Posture Management


Stay up to date

Get product news, configuration guidance, product tutorials, and tips.

Interactive guide

Microsoft Defender for Cloud key scenarios

Explore cloud security posture management, cloud workload protection, and development security operation scenarios.


Cloud security posture management concepts

Understand security policies, initiatives, and recommendations in Microsoft Defender for Cloud.


Microsoft Defender for Cloud datasheet

Strengthen and maintain security in your multicloud and hybrid environments.

Protect everything

Make your future more secure.Explore your security options today.

  • [1] Forrester and Forrester Wave are trademarks of Forrester Research, Inc.
  • [2] The Forrester New Wave™: Extended Detection and Response (XDR) Providers, Q4 2021, Allie Mellen. with Joseph Blankenship, Alexis Tatro, Peggy Dostie, October 2021.

Follow Microsoft