Microsoft Defender Advanced Threat Protection (ATP) Design

by Adrian Grigorof, CISSP, CISM, CRISC, CCSK , Marius Mocanu, CISSP, CISM, CEH, SCF

Last update: May 24th, 2020

Defender ATP is one of the stars of Microsoft’s security stack, with a meteoric rise in Gartner’s Magic Quadrant for endpoint protection. With 6 layers of protection geared towards specific requirements of the modern EDR, it takes advantage of the complementary Microsoft security services, such as Microsoft Cloud App Security, Azure ATP, Azure Information Protection, Azure Security Center and Azure Sentinel, receiving and feeding information into Microsoft’s Intelligent Security Graph.

The diagram below is a one-page view of the core Microsoft Defender ATP components and how other security controls interact with it.

Contact us for full walk-through of this diagram and a review of its integration with the overall Microsoft security stack.

MDATP – High-Definition PDFMDATP Design – High-Definition SVG

Microsoft Defender ATP