MC941863 – (Updated) Microsoft Secure Score: Changing Microsoft Defender for Endpoint recommendation

cloudscout.one Icon

check before: 2025-01-01

Product:

Defender, Defender for Endpoint, Defender XDR

Platform:

Online, US Instances, World tenant

Status:

Change type:

Admin impact, Updated message

Links:

Details:

Summary:
Microsoft is updating the Secure Score action for Defender for Endpoint to better reflect security posture, retiring the SCID-2020 recommendation. Rollout starts January 2025, with no admin action needed. The related recommendation will be removed from the UI, and scores will be adjusted accordingly.

Details:
Updated December 31, 2024: We have updated the rollout timeline below. Thank you for your patience.
We're updating the Microsoft Secure Score improvement action of Microsoft Defender for Endpoint (MDE) to ensure a more accurate representation of security posture.
As part of this change, we will gradually retire the MDE recommendation on SCID-2020, Turn on all system-level Exploit protection settings.
We are working to refine the recommendation, ensuring it aligns more accurately with recommended policies and enhances the overall security value.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out early January 2025 (previously early December) and expect to complete by early February 2025 (previously early January).

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:

Created:
2024-11-26

updated:
2025-01-01

Task Type

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS How does it affect me

XXXXXXX ... free basic plan only

MS Preperations

XXXXXXX ... free basic plan only

MS Urgency

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

summary for non-techies**

Microsoft is retiring the SCID-2020 recommendation from its Secure Score system in Microsoft Defender for Endpoint, which advised enabling all system-level Exploit protection settings, with the change occurring automatically between January and February 2025.

Direct effects for Operations**

Removal of SCID-2020 Recommendation
The removal of the SCID-2020 recommendation may lead to confusion among users who rely on this guidance for security settings, potentially resulting in misconfigurations or security gaps.
   - roles: IT Administrators, Security Analysts
   - references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-secure-score-changing-microsoft-defender-for-endpoint/ba-p/3851230

Adjustment of Secure Score
Changes in the Secure Score may impact user perception of security posture, leading to decreased trust in the security measures in place if not communicated effectively.
   - roles: IT Administrators, End Users
   - references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-secure-score-changing-microsoft-defender-for-endpoint/ba-p/3851230

User Documentation Updates
Failure to update user documentation regarding the changes may result in users not understanding the new security posture, leading to potential non-compliance with security policies.
   - roles: IT Administrators, Compliance Officers
   - references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-secure-score-changing-microsoft-defender-for-endpoint/ba-p/3851230

Configutation Options**

XXXXXXX ... paid membership only

Opportunities**

XXXXXXX ... free basic plan only

Potentional Risks**

XXXXXXX ... paid membership only

IT Security**

XXXXXXX ... paid membership only

explanation for non-techies**

XXXXXXX ... free basic plan only

** AI generated content. This information must be reviewed before use.

a free basic plan is required to see more details. Sign up here


A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.



change history

DatePropertyoldnew
2025-01-01MC MessageTagNamesAdmin impactUpdated message, Admin impact
2025-01-01MC SummaryMicrosoft is updating the Secure Score action for Defender for Endpoint to better reflect security posture, retiring the SCID-2020 recommendation. Rollout starts January 2025, with no admin action needed. The related recommendation will be removed from the UI, and scores will be adjusted accordingly.
2025-01-01MC Last Updated11/26/2024 01:44:192024-12-31T20:23:11Z
2025-01-01MC MessagesWe're updating the Microsoft Secure Score improvement action of Microsoft Defender for Endpoint (MDE) to ensure a more accurate representation of security posture.
As part of this change, we will gradually retire the MDE recommendation on SCID-2020, Turn on all system-level Exploit protection settings.
We are working to refine the recommendation, ensuring it aligns more accurately with recommended policies and enhances the overall security value.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out early December 2024 and expect to complete by early January 2025.
Updated December 31, 2024: We have updated the rollout timeline below. Thank you for your patience.
We're updating the Microsoft Secure Score improvement action of Microsoft Defender for Endpoint (MDE) to ensure a more accurate representation of security posture.
As part of this change, we will gradually retire the MDE recommendation on SCID-2020, Turn on all system-level Exploit protection settings.
We are working to refine the recommendation, ensuring it aligns more accurately with recommended policies and enhances the overall security value.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out early January 2025 (previously early December) and expect to complete by early February 2025 (previously early January).
2025-01-01MC TitleMicrosoft Secure Score: Changing Microsoft Defender for Endpoint recommendation(Updated) Microsoft Secure Score: Changing Microsoft Defender for Endpoint recommendation
2025-01-01MC End Time02/03/2025 09:00:002025-03-10T09:00:00Z

Last updated 3 weeks ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!