Jack Bloke
asked on
Azure security recommendations.
I wanted to learn more about Azure and more specifically, Azure security and wanted to know what tools are available for this? More in the CBT area...
I also wanted to know the best practices as far as creating or bringing in playbooks with regards to security. Looking at the recommendations section, within Azure, we seem to need a lot of help. The recommendations are as follows...
Enable MFA for accounts with owner permissions on your...
Install monitoring agent on your VM.
apply a just-in-time network access control
provision an azure AD administrator for SQL server
and so and so forth. I has thinking that I could possible take care of most of these alerts/suggestions by having a playbook. I'm not very familiar with Azure so any recommendations would help.
Thanks
I also wanted to know the best practices as far as creating or bringing in playbooks with regards to security. Looking at the recommendations section, within Azure, we seem to need a lot of help. The recommendations are as follows...
Enable MFA for accounts with owner permissions on your...
Install monitoring agent on your VM.
apply a just-in-time network access control
provision an azure AD administrator for SQL server
and so and so forth. I has thinking that I could possible take care of most of these alerts/suggestions by having a playbook. I'm not very familiar with Azure so any recommendations would help.
Thanks
Check https://www.microsoft.com/en-us/trustcenter/compliance/assess
Azure Cloud Security Diagnostic Tool
Azure data classification for cloud readiness
Azure security overview
Getting started with Azure security
https://www.peerlyst.com/posts/mapping-of-on-premises-security-controls-vs-major-cloud-providers-version-3-2-feb-2019-adrian-grigorof
Azure Cloud Security Diagnostic Tool
Azure data classification for cloud readiness
Azure security overview
Getting started with Azure security
https://www.peerlyst.com/posts/mapping-of-on-premises-security-controls-vs-major-cloud-providers-version-3-2-feb-2019-adrian-grigorof
Look through the CIS Security benchmarks for Microsoft Azure
https://www.cisecurity.org/benchmark/azure
https://www.cisecurity.org/benchmark/azure
One way to learn is being part of the tech community and learn from others. Here are some starters.
Azure Security basic
https://techcommunity.microsoft.com/t5/Microsoft-Ignite-The-Tour/Azure-security-basics/m-p/284184
Differences between ATA, Azure ATP, Windows Defender ATP and what you can get deploying Azure Security Center.
https://techcommunity.microsoft.com/t5/Azure-Advanced-Threat-Protection/Product-Comparison-table-ATA-Azure-ATP-Defender-ATP-Azure/m-p/169182
Secure your hybrid-cloud environments with Azure AD Identity Protection and Azure ATP
https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/Secure-your-hybrid-cloud-environments-with-Azure-AD-Identity/ba-p/262400
Evaluate the security of their Azure implementation.
https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Pentesting-Azure-Thoughts-on-Security-in-Cloud-Computing/ba-p/329748
Recommendations in Azure Security Center with theassociated Log Analytics query syntax
https://techcommunity.microsoft.com/t5/Azure-Log-Analytics/Azure-Security-Center-Recommendations-Log-Analytics-Query-syntax/m-p/210731
Latest Azure AD Identity Protection now revolves around risky users and risky sign-ins
https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Four-major-Azure-AD-Identity-Protection-enhancements-are-now-in/ba-p/326935
Azure Security basic
https://techcommunity.microsoft.com/t5/Microsoft-Ignite-The-Tour/Azure-security-basics/m-p/284184
Differences between ATA, Azure ATP, Windows Defender ATP and what you can get deploying Azure Security Center.
https://techcommunity.microsoft.com/t5/Azure-Advanced-Threat-Protection/Product-Comparison-table-ATA-Azure-ATP-Defender-ATP-Azure/m-p/169182
Secure your hybrid-cloud environments with Azure AD Identity Protection and Azure ATP
https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/Secure-your-hybrid-cloud-environments-with-Azure-AD-Identity/ba-p/262400
Evaluate the security of their Azure implementation.
https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Pentesting-Azure-Thoughts-on-Security-in-Cloud-Computing/ba-p/329748
Recommendations in Azure Security Center with theassociated Log Analytics query syntax
https://techcommunity.microsoft.com/t5/Azure-Log-Analytics/Azure-Security-Center-Recommendations-Log-Analytics-Query-syntax/m-p/210731
Latest Azure AD Identity Protection now revolves around risky users and risky sign-ins
https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Four-major-Azure-AD-Identity-Protection-enhancements-are-now-in/ba-p/326935
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Azure has something call security center and it has TONS of things need to do.
some recommendation are good but some of them never practical
you can see how it looks like any ask any specific question you want.