ASD - Australian Signals Directorate

ASD's Blueprint for Secure Cloud

Microsoft Defender suite

This section describes the design decisions associated with Microsoft Defender for system(s) built using ASD's Blueprint for Secure Cloud.

Estimated reading time: 1 minute

Microsoft Defender for Office 365 extends the native security features in Office 365. The protections provided by Microsoft Defender for Office 365 are designed to defend against attacks from multiple threat vectors including email, websites and documents stored in online libraries, such as SharePoint Online. Each of the Microsoft Defender for Office 365 capabilities is enabled and managed via policies configured from the Office 365 Security and Compliance Center.

Microsoft Defender for Office 365 provides the following capabilities:

  • Safe Links - Microsoft Defender for Office 365 Safe Links provides inspection of links included in emails and Office 365 documents to determine if it is malicious, redirecting the user if it is.
  • Safe Attachments - Microsoft Defender for Office 365 Safe Attachments provides sandbox execution of attachments to detect and delete malicious content.
  • Anti-Phishing - Microsoft Defender for Office 365 Anti-Phishing provides machine learning capabilities to detect advanced phishing campaigns.
Alerts

This section describes the design decisions associated with Alerts Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Anti-malware

This section describes the design decisions associated with Anti-malware Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Anti-Phishing

This section describes the design decisions associated with Anti-Phishing Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Audit and Logging

This section describes the design decisions associated with Audit and Logging Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Connection Filtering

This section describes the design decisions associated with Connection Filtering Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Content Filtering

This section describes the design decisions associated with Content Filtering Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Policy Filtering

This section describes the design decisions associated with Policy Filtering Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Safe Attachments

This section describes the design decisions associated with Safe Attachments Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Safe Links

This section describes the design decisions associated with Safe Links Microsoft 365 security features for system(s) built using ASD's Blueprint for Secure Cloud.

Do you have a suggestion on how the above page could be improved? Get in touch! ASD's Blueprint for Secure Cloud is an open source project, and we would love to get your input. Submit an issue on our GitHub, or send us an email at blueprint@asd.gov.au

Acknowledgement of Country icon

Acknowledgement of Country
We acknowledge the Traditional Owners and Custodians of Country throughout Australia and their continuing connections to land, sea and communities. We pay our respects to them, their cultures and their Elders; past, present and emerging. We also recognise Australia's First Peoples' enduring contribution to Australia's national security.

Authorised by the Australian Government, Canberra