Microsoft Defender Plan 2 GCC Annual includes everything in Plan 1, plus features for Automation, Investigation, Remediation and Education that include Threat Trackers, Explorer advanced threat investigation, automated investigation and response, and Attack Simulator.
Office 365 Threat Intelligence can be used for analyzing the organization’s Office 365 environment to proactively find and eliminate threats. Threat Intelligence appears as a set of tools and dashboards in the Security & Compliance Center to the organization understand and respond to threats.
Administrators can use the Threat dashboard to see threats that have already been handled, and as a handy tool for reporting out to business decision makers on what Threat Intelligence has already done to secure the business.
Businesses investigating or experiencing an attack against their Office 365 environment can use the Threat explorer to analyze threats. Threat explorer shows the volume of attacks over time, and enables the analysis of this data by threat families, attacker infrastructure, and more. You can also mark any suspicious email for the Incidents list.
You must add Microsoft Defender Plan 2 GCC Annual to the following Exchange and Office 365 subscription plans:
Eligibility and Validation: Office 365 Government plans are available to (1) qualified government entities, including US federal, state, local, tribal, and territorial government entities, and (2) other entities (subject to validation of eligibility) who handle data subject to government regulations and requirements, where use of Office 365 Government is appropriate to meet these regulations and requirements. The approval and provisioning of net-new GCC tenants may take up to five (5) business days to complete.