Azure Security Center update – November

**The Security Center network map is GA** The interactive network map in Azure Security Center provides a graphical view with security overlays, giving you recommendations and insights for hardening your network resources. Using the map, you can see the network topology of your Azure workloads, along with connections between your virtual machines and subnets. You can drill down from the map into specific resources and the recommendations for those resources. For more information, see [Protect your network resources in Azure Security Center](https://docs.microsoft.com/azure/security-center/security-center-network-recommendations). **Updated security policy** The security policy page was updated to reflect that the built-in Azure Security Center policies are created in Azure policies. You can see the parameters for each of the policies that are assessed by Azure Security Center and configure existing security policies that apply to selected scopes (subscriptions or management groups). **Change to the pricing model** The Security Center pricing model has been modified. Security Center Standard supports Azure resources such as VMs, apps and SQL servers. For more information, see [Upgrade to Security Center’s Standard tier for enhanced security](https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fsecurity-center%2Fsecurity-center-pricing&data=02%7C01%7Crkarlin%40microsoft.com%7Ce13b1ff04cb847f5f48508d65073a242%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636784854902784628&sdata=L%2BHZnkX8PO3AO9YlunwNio3Ldk9PHaqOGSAueMPg7aU%3D&reserved=0). **Permission update for JIT VM access** JIT VM access has a new permission model. To enable customers to deploy a “least privileged” RBAC model, Security Center now requires read permission for users to access VMs. To learn more about the updated permission mode, see [Manage virtual machine access using just in time](https://emea01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.microsoft.com%2Fazure%2Fsecurity-center%2Fsecurity-center-just-in-time&data=02%7C01%7Crkarlin%40microsoft.com%7Ce13b1ff04cb847f5f48508d65073a242%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636784854902774620&sdata=zkBFjKq%2B1rHqHYzQD4TNFgUEK5LGEuos3s%2B%2BQZPPwtA%3D&reserved=0). **Temporary change for adaptive application controls** For adaptive application controls, enforce protection mode is temporarily disabled while a fix is being investigated for a policy enforcement mechanism issue. * Security Center * Features * Services * [ Security Center](https://azure.microsoft.com/en-gb/services/security-center/)