Security Center contact emails should be set

Description

Microsoft reaches out to the designated security contact in case its security team finds that the organization’s resources are compromised. This ensures that the proper people are aware of any potential compromise in order to mitigate the risk in a timely fashion.

Portal Remediation Steps

  • Navigate to Security Center.

  • In the left navigation under select Pricing & settings.

  • Select the subscription.

  • In the left navigation, select Email notifications.

  • In the Additional email addresses (separated by commas) field, enter the contact emails that should receive the alerts.

  • Click Save.

CLI Remediation Steps

  • To create a security contact, use the following command with your desired contact information, including email:

az security contact create -n "default1" --email 'email@email.com' --phone '(555)555-5555' --alert-notifications 'on' --alerts-admins 'on'