Implementing and Managing Azure Security Center
Lecture
Dwayne Natwick
Intermediate
4 h 21 m
2020-04-13
Lecture Overview
With the continuous adoption of digital transformation and exposure of more and more business-critical workloads to the cloud, getting a clear view on your organization’s security posture is critical.If your organization gets compromised, your business can lose trust, customers, and revenue. Cyber defense is not good enough anymore, and security officers and IT departments need to step up their game. But how do you handle security when using a public cloud environment like Azure, and even more, how can you provide an integration between your Azure workload security and your hybrid-running workloads?That’s exactly what Azure Security Center is built for, providing you a clear view on your real-time, active security posture, for both cloud and hybrid-running workloads. Leveraging the power of Azure Log Analytics, Azure Security Center provides insights on overall Azure subscription governance, as well as specific guidance our compliance standards such as PCI DSS 3.2.1, SOC TSP and ISO 27001.Next, Azure Security Center comes with easy-to-understand dashboards, compelling diagram views, and recommendations on how to optimize the security of your running Azure resources, ordered by criticality and priority in risk. Other features that come with Azure Security Center include threat protection, providing you again a clear view on security threats happening against your environment. From an advanced cloud defense perspective, Azure Security Center provides you Adaptive Application Control, Just-in-Time VM Access, Adaptive Network Hardening, and File Integrity Monitoring.Besides the dashboard views and recommendations, one can take it even further by integrating Azure Security Playbooks, relying on the logic flows in Azure Logic Apps, allowing organizations to not only detect threats and security risks, but also take appropriate action to mitigate risk automatically.

Related Learning Path(s):
Implementing Azure Security with Security Center and Sentinel
Objectives
  • Overview of Azure Security Center
  • Enabling and deploying Azure Security Center
  • Gathering data from Azure Virtual Machines and hybrid Virtual Machines
  • Understanding and customizing Azure Security Policies
  • Optimizing Virtual Machine connectivity security using Just-in-Time VM Access
  • Analyzing data and responding to security recommendations
  • Detecting and responding to security threats by using Azure Security Center
  • Using a proactive approach to security threat detection, by using Security Playbooks
Pre-Requisites
  • Microsoft Account with Azure Subscription
  • Familiarity with Azure and overall network and application security
  • Familiarity with Azure Monitor and Azure Log Analytics
Lecture Modules
In this module We will address the various challenges to security that organizations continue to face. Discuss the foundations of security and building a strong security program. We will get into the key services that are used to address security in Azure. Finally, there will be an overview of how these services are brought together in Azure Security Center
To gain valuable information and insights from Azure Security Center, there are a number of services that need to be configured.  In this module, the following sections will provide an overview of these services and provide a deeper look at two of these services: Azure Monitor and Azure Log Anayltics.
In this module, we will explore how virtual machines are monitored and managed within Azure.  This will include reviewing operating systems within Security Center and creating security baselines for virtual machines.
In this module, we will focus on using policies and initiatives within Azure to enforce and audit for compliance.
In this module, we will review the advanced security features within Azure Security Center.  They include:
Network map ,Azure advanced threat protection , Azure identity protection, Azure Active Directory security, Adaptive application controls, File integrity monitoring, and Just in time VM access.


Note : To take full advantage of these advanced features, a Standard subscription of Security Center must be enabled.
This module will explore how to use the Azure Security Center dashboard to review information and improve the security levels of your environment.  The Security Center dashboard has a number of helpful graphics and tools that we have discussed throughout this course, such as policy and compliance, resource security hygiene, and advanced cloud defense and threat protection.  We will look at how to put these tools into practice.  Finally, we will discuss how to enable and use automation in Security Center and community resources before we wrap up this course.
Try Risk Free

Start a free trial

Skill Me Up subscriptions include unlimited access to on-demand courses with live lab lab environments with our Real Time Labs feature for hands-on lab access.

Subscription Benefits
  • Access to Real Time Lab environments and lab guides
  • Course Completion Certificates when you pass assessments
  • MUCH MORE!