Cloud IT Office 365

Microsoft Defender ATP Training Series Part 2: Threat & Vulnerability Management (TVM)

Written by Ambi

In this session we will discuss about Microsoft Defender ATP Threat & Vulnerability Management (TVM). TVM is a built-in capability of Microsoft Defender ATP that uses a risk-based approach to discover, prioritize, and remediate endpoint vulnerabilities and misconfigurations.

Features of TVM

  • Continuous discovery of vulnerabilities and misconfigurations
  • Prioritization based on business context and dynamic threat landscape
  • Correlation of vulnerabilities with endpoint detection and response (EDR) alerts to expose breach insights
  • Machine-level vulnerability context during incident investigations
  • Built-in remediation processes through unique integration with Microsoft Intune and Microsoft System Center Configuration Manager

Key timestamps:

0:50 MDATP TVM Intro

1:35 Security recommendations

3:26 Discovered vulnerabilities

9:35 Microsoft Secure Score

12:45 TVM 90 days plan

Official Docs:

About the author