Policy & Compliance

Prasenna Kannan 436 Reputation points
2020-11-05T12:53:22.98+00:00

Hello,

We have setup security centre for 4 of our subscriptions. For industry & regulatory standards, by default we have PCI and etc enabled.

I wanted to enable PI (Personally Identifiable) data, AML data policy as part of the regulatory standards. Is it possible to add those policies in the industry & regulatory standards?

Thanks,
Prasenna

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,373 questions
Accepted answer
  1. JamesTran-MSFT 36,621 Reputation points Microsoft Employee
    2020-11-09T21:33:36.633+00:00

    @Prasenna Kannan
    Thank you for the follow up! I received an update and will post the response below.

    Update:
    Unfortunately, adding these policies in the industry and regulatory standards isn't possible. From the available packages, you can add standards such as NIST SP 800-53 R4, SWIFT CSP CSCF-v2020, UK Official and UK NHS, Canada Federal PBMM, and Azure CIS 1.1.0 (new) - a more complete representation of Azure CIS 1.1.0.

    For more information, you can review the Customizing the set of standards in your regulatory compliance dashboard documentation.

    If you'd like to create a feature request for our Azure Security Center team, please feel free to leverage our User Voice forum. Additionally, if you're interested in protecting PII and sensitive information, you might be interested in leverage Azure Information Protection (AIP).

    If you have any other questions, please let me know.
    Thank you for your time and patience throughout this issue.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.