Cloud Discovery, which is one of the Microsoft Cloud App Security (MCAS) features, helps organizations to identity applications and user activities, traffic volume, and typical usage hours for each cloud application. In a nutshell, it can help to detect “Shadow IT” applications and possible risky applications. By Joanna Harding @Microsoft.
The Cloud Discovery identifies cloud applications that the organization might not have visibility to, provides risk assessments and ongoing analytics and lifecycle management capabilities to control use. Cloud Discovery analyses the traffic logs and runs them against the cloud app catalog; to provide information on the discovered applications and the users accessing them.
You will also find in the article:
- Options for ingesting data
- Cloud App Security and Defender for endpoint integration - How it works?
- Scenarios - policy examples
- Cloud Discovery dashboard
- Cloud Discovery Policies
- App Discovery policies
- Discovery Anomaly detection policies
- Considerations
use cases, Source: https://techcommunity.microsoft.com/t5/microsoft-security-and/deep-dive-into-cloud-app-discovery-guest-blog/ba-p/2090715")
Cloud Discovery analyzes traffic logs against Microsoft Cloud App Security’s cloud app catalog of over 16,000 cloud apps. The apps are ranked and scored based on more than 80 risk factors to provide insights and visibility into applications used in the cloud, and the risk Shadow IT poses to the organization. There are also links to further reading, charts, and screen grabs provided. Good read!
[Read More]