Configure email notifications for security alerts

Security alerts need to reach the right people in your organization. By default, Security Center emails subscription owners whenever a high-severity alert is triggered for their subscription. This page explains how to customize these notifications.

To define your own preferences for notification emails, Azure Security Center's Email notifications settings page lets you choose:

  • who should be notified - Emails can be sent to select individuals or to anyone with a specified Azure role for a subscription.
  • what they should be notified about - Modify the severity levels for which Security Center should send out notifications.

To avoid alert fatigue, Security Center limits the volume of outgoing mails. For each subscription, Security Center sends:

  • a maximum of four emails per day for high-severity alerts
  • a maximum of two emails per day for medium-severity alerts
  • a maximum of one email per day for low-severity alerts

Configuring the details of the contact who will receive emails about security alerts.

Availability

Aspect Details
Release state: Generally available (GA)
Pricing: Free
Required roles and permissions: Security Admin
Subscription Owner
Clouds: Yes Commercial clouds
Yes National/Sovereign (US Gov, China Gov, Other Gov)

Customize the security alerts email notifications

You can send email notifications to individuals or to all users with specific Azure roles.

  1. From Security Center's Pricing & settings area, select the relevant subscription, and select Email notifications.

  2. Define the recipients for your notifications with one or both of these options:

    • From the dropdown list, select from the available roles.
    • Enter specific email addresses separated by commas. There's no limit to the number of email addresses that you can enter.
  3. To apply the security contact information to your subscription, select Save.

Next steps

To learn more about security alerts, see the following pages: