Skip Navigation

Azure Defender

Protect your multicloud and hybrid workloads against threats

Protect your multicloud and hybrid workloads against threats

Use Azure Defender, part of Azure Security Center, for multicloud and hybrid cloud workload protection and security. Using extended detection and response (XDR) capabilities, stand up against threats like remote desktop protocol (RDP) brute-force attacks and SQL injections. Streamline security using AI and automation.

Protect hybrid data that’s hosted in Azure, on premises, or in other clouds. Detect unusual attempts to access Azure Storage.

Scan container images for vulnerabilities and protect Azure Kubernetes Service (AKS) and Amazon Elastic Kubernetes Service instances.

Safeguard Windows servers and clients and Linux servers. Assess application vulnerabilities in virtual machines.

Monitor the security state of your hybrid cloud workloads via one console and seamlessly connect workloads outside of Azure.

Ensure your cloud resources are protected

Protect your workloads across Azure and other clouds. Detect unusual attempts to access storage accounts and malware uploads to Azure Storage. Scan container images in Azure Container Registry for vulnerabilities. Protect Azure Kubernetes Service (AKS) and Amazon Elastic Kubernetes Service instances.

Help safeguard Windows servers and clients using Microsoft Defender for Endpoint (servers) and protect Linux servers using behavioral analytics. Assess application vulnerabilities in virtual machines using built-in vulnerability assessment.

Multicloud workload protection

Manage the security of your server workloads across your multicloud environment in a single console, with a seamless onboarding experience for Azure and other cloud platforms. Protect your entire SQL estate and secure unmanaged Internet of Things (IoT) and OT/ICS devices using agentless monitoring deployed on premises or in the cloud.

Hybrid cloud workload protection

Manage security across all your server workloads, running on premises or on Azure or other cloud platforms, in one console. Use Azure Security Center to gain instant insights about security issues affecting your hybrid workloads. Enable security teams to better prioritize across multicloud and hybrid cloud environments with a holistic view of your company’s security state.

Why Azure for security?

Try Azure Defender free

Try Azure Defender free for 30 days. After that, pay as you go for the type of workload protection you choose.

Documentation, training, and resources

Get started

Go to Azure Defender to turn on protection for your hybrid cloud workloads.

Frequently asked questions about Azure Defender

  • Azure Defender is a built-in tool that provides threat protection for workloads running in Azure, on premises, and in other clouds. Integrated with Azure Security Center, Azure Defender protects your hybrid data, cloud-native services, and servers and integrates with your existing security workflows, such as SIEM solutions and vast Microsoft threat intelligence, to streamline threat mitigation.
  • Access Azure Defender through the Azure Security Center dashboard.
  • No. Azure Security Center continues to provide cloud security posture management (Secure Score) as well as threat protection via the integration of Azure Defender.
  • Microsoft Defender is the leading Microsoft extended detection and response (XDR) solution for threat protection, composed of two products: Microsoft 365 Defender and Azure Defender. Azure Defender provides XDR for Azure and hybrid environments. Microsoft 365 Defender helps stop attacks across Microsoft 365 services and auto-heals affected assets.

Turn on Azure Defender