What Defender EASM does
Defender EASM identifies your organisation’s assets exposed to the internet, including domains, subdomains, IP addresses, certificates, and cloud services. It goes beyond your internal network perimeter, mapping these assets and providing insights into their vulnerabilities and associated risks. The service continuously monitors these assets, providing ongoing visibility and alerting you to changes or new exposures. CVE mapping helps correlate discovered assets with known vulnerabilities.
Defender EASM in Australian tenants today
For AU mid-market organisations, EASM is particularly valuable for uncovering shadow IT and assets acquired through mergers or acquisitions, which often bypass standard IT controls. It complements Microsoft Defender Vulnerability Management by providing context around externally facing assets. Consider EASM as a crucial component of a layered defence strategy, aligning with the ACSC Essential Eight, specifically controls 2 and 3. Pricing is typically bundled with Defender XDR, so evaluate your XDR licensing to optimise cost and coverage. The Notifiable Data Breach scheme requires organisations to notify if a breach occurs due to a failure to properly manage external assets.