Site security

Microsoft Defender for IoT in the Microsoft Defender portal includes the Site security page, which offers an overview of the security state of your entire operational environment. The operational environment monitors all types of devices - operational technology (OT) devices and others.

In this article, you learn about the benefits and key scenarios of site security.

Sites represent a specific physical location in your organization. For example, a site can represent a manufacturing facility. Use a site based view of your organization to:

  • Clearly differentiate security issues by location.
  • Identify points with sufficient protection, or areas that need security improvements.

Important

This article discusses Microsoft Defender for IoT in the Defender portal (Preview).

If you're an existing customer working on the classic Defender for IoT portal (Azure portal), see the Defender for IoT on Azure documentation.

Learn more about the Defender for IoT management portals.

Some information in this article relates to a prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, with respect to the information provided here.

Site security page

The Site security page gives the security team management tools to effectively understand and analyze the state of each site. Site security also provides a unified view of all operational sites across your entire organization. Your security team uses this data to make better informed decisions when dealing with security issues.

Learn more about how to use the Site security page.

Key capabilities

Capability Description
Visualize and manage your physical sites - Create and manage operational sites and devices with ease using automatic suggestions from your inventory.
- Utilize the site creation wizard for seamless setup and to group devices by physical proximity for better organization.
Gain comprehensive insights and analytics - Access a unified view of all operational sites, including security insights to understand their importance and prioritize responses.
- Monitor site-specific discovery, posture, and threat detection to identify and address exposure, risks, and business impact.
Take Action to Reduce Risks - Dive into dedicated site-based views for detailed insights on inventory, vulnerabilities, and incidents.
- Leverage context-driven guidance within the Defender portal to effectively remediate risks and enhance site security.
Group, track, and manage OT devices Associate devices discovered by Microsoft Defender for Endpoint agents already installed on your network for a specific site using automatic site suggestions. This allows you to:
- Proactively track and gain security insights for the site
- Analyze the data for your network
- Explore ways to mitigate and reduce risks

Key scenarios and users

The Site security page is designed to assist the following users:

  • Chief Security Information Officers (CISOs) and Security Decision Makers: develop and improve the organization's overall security strategy giving insights into risk and exposure.
  • OT Security Manager: develop and implement OT security initiatives across multiple sites or the entire organization.
  • Site Manager: oversee daily operations at a specific site, ensuring smooth production and implementation of security measures.
  • OT Security Engineers: design, implement, and maintain security solutions that are aligned with the security program of the site or with the overall organizational security.