Virtualization-based security (VBS) exploits the hypervisor included in Windows to secure the OS by creating a Virtual Secure Mode (VSM) to help protect the device and user credentials.
Illustration shows how the Windows Hyper-V hypervisor is used to create different Virtual Trust Levels to improve the security of the OS.
Roadmap for Azure Blueprints.
Roadmap for Microsoft Sentinel.
Roadmap for Azure Advisor
Roadmap for Microsoft Defender for Endpoint, a Microsoft-hosted service that integrates with the Microsoft Defender Antivirus software built into Windows 10, and adds endpoint detection and response (EDR) capabilities to discover and defend against evolving attacks against Windows.
Roadmap for Microsoft Defender for Identity, a Microsoft-hosted service that captures, parses, and analyzes traffic of key unencrypted network protocols. It examines authentication, authorization, and other activities for indicators of potentially suspicious behavior by a user or on a device within an organization.
Roadmap for Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security [MCAS]), which is a Microsoft-hosted service that is part of the Enterprise Mobility + Security (EMS) suite of hosted services. It is designed to help customers discover how third-party cloud applications are being used within their business and potentially control cloud application usage. A reduced functionality edition of the service, Office 365 CAS, is available with premium-tier subscriptions to Office 365.
Security and performance changes to Windows 11 may increase the testing organizations will need to perform to spot all application compatibility issues.