https://store-images.s-microsoft.com/image/apps.31228.15058f3c-5aa8-4ba4-8f01-31a4ed2a9a5d.993916a5-3709-44ed-88ac-e29811113e8f.3d699d64-3c92-4668-8c99-f585df565742

Platform Security

New Signature

Platform Security

New Signature

New Signature’s Platform Security managed service complements and integrates with your existing IT services, enabling your team to focus on providing great user support and working on initiatives that deliver significant business value.

Platform Security provides a comprehensive and cost-effective security management service for your infrastructure platforms. It is designed to be used by customers looking for an accredited Microsoft service partner to help manage the security of their Microsoft investment. New Signature’s Platform Security managed service complements and integrates with your existing IT services, enabling your team to focus on providing great user support and working on initiatives that deliver significant business value, while New Signature efficiently handles the operational activities normally associated with managing security concerns for platform infrastructure.

1. Core Services for included technologies:
a. Escalate potential major security incidents for further investigation with Customer & other security providers
b. Participate in major incident investigations that involve Platform Security
c. Maintain Detection/Risk level runbook to define customer expectations for detection investigation
d. Review, advise on and assist with implementing recommendations provided by “Microsoft Secure Score”
e. Maintain high-risk entity list – entities that may be targeted due to their role or position, including employee typical location, travel locations, executive assistants, or infrastructure components with increased sensitivity
f. Recommend new security capabilities and add to a Platform Security roadmap (when the ‘Service Management and Governance’ service is purchased)
g. Monthly Platform Security Summary Report (when the ‘Service Management and Governance’ service is purchased)

2. Microsoft Defender Advanced Threat Protection:
a. Investigate and remediate endpoint security alerts
b. Network Isolation or Live Response of endpoints as required
c. Review and approve remediations for Automated Investigations
d. Review and maintain Attack Surface Reduction configuration
e. Review and maintain Next-Generation Protection configuration
f. Review and maintain Hardware-based Isolation configuration
g. Review and report on discovered vulnerabilities
h. Review and hunt for indicators of the latest threats

3. Azure Security Center:
a. Investigate and remediate Azure Security Center alerts
b. Maintain and monitor compliance to Azure Security policies
c. Monitor and advise on action for Azure Security Center recommendations
d. Configure advanced cloud defense services such as Just-In-Time VM access

4. Azure Sentinel:
a. Investigate and remediate alerts
b. Configure and maintain data sources and connectors
c. Configure and maintain Analytics (detection) rules
d. Configure and maintain Workbooks (dashboards)
e. Configure and maintain Playbook automations
f. Review and hunt for indicators of the latest threats
https://store-images.s-microsoft.com/image/apps.64240.15058f3c-5aa8-4ba4-8f01-31a4ed2a9a5d.f327fc2e-d6fc-461c-9cef-06521ba11b53.89869be2-fd27-49c1-ba33-39d6d3e93435
https://store-images.s-microsoft.com/image/apps.64240.15058f3c-5aa8-4ba4-8f01-31a4ed2a9a5d.f327fc2e-d6fc-461c-9cef-06521ba11b53.89869be2-fd27-49c1-ba33-39d6d3e93435
https://store-images.s-microsoft.com/image/apps.45408.15058f3c-5aa8-4ba4-8f01-31a4ed2a9a5d.f327fc2e-d6fc-461c-9cef-06521ba11b53.6c8490cb-350a-4995-981c-b47d5c5275d8