Security

Official Documentation

Homepage

Homepage

Getting Started

Pluralsight: Microsoft Azure Security - Getting Started

10/19/2017, Mva

Security in the Microsoft Azure cloud can be complex, and the stakes are high. This course, Microsoft Azure Security - Getting Started, will provide you with the skills you...
Microsoft Azure Network Security

2/1/2015, Whitepaper

This document is a guide to enhancing network communications security to better protect virtual infrastructure and data and applications deployed in Microsoft Azure

Latest Content

Date	Title
8/21/2018	8/21/2018 Modern Security- & Load-Testing with VSTS when bound to on-premises In many enterprises Azure is the strategic public cloud. But it still can have technical or organizational blockers which prevent you from fully profiting from the public cloud. Embracing modern...
8/20/2018	8/20/2018 Exploring Microsoft Antimalware Alert in Azure Security Center Azure Security Center leverages Microsoft Antimalware engine to trigger antimalware related alerts such as the one shown below: While this alert brings awareness about the current threat status,...
8/19/2018	8/19/2018 Design against crime & Microsoft Azure with Shiny Guest blog by Mariam Elgabry Microsoft Student Partner at UCL Crime Science Department uses azure to host a shiny webapp Microsoft student partners IN ACTION! Mariam Elgabry is a Microsoft...
8/18/2018	8/18/2018 Issue with security update for the Remote Code Execution vulnerability in SQL Server 2016 SP2 (CU): August 14, 2018 On Tuesday August 14, we published a Security Update for six different releases of SQL Server 2016 and 2017. For one of those releases, SQL Server 16 SP2 CU (KB4293807), we inadvertently...
8/17/2018	8/17/2018 A Microsoft DevSecOps Static Application Security Testing (SAST) Exercise A Microsoft DevSecOps Static Application Security Testing (SAST) Exercise Static Application Security Testing (SAST) is a critical DevSecOps practice. As engineering organizations accelerate...
8/17/2018	8/17/2018 A Microsoft DevSecOps Static Application Security Testing (SAST) Exercise MS DevOps Blog A Microsoft DevSecOps Static Application Security Testing (SAST) Exercise Static Application Security Testing (SAST) is a critical DevSecOps practice. As engineering organizations accelerate...
8/15/2018	8/15/2018 Security and Compliance technical webinars & consultations – August, September & October Looking to grow your Security & Compliance practice? Get started today by building your technical skillet through one of the many technical webinars and technical consultations listed below,...
8/15/2018	8/15/2018 Security and Compliance technical webinars & consultations – August, September & October Looking to grow your Security & Compliance practice? Get started today by building your technical skillet through one of the many technical webinars and technical consultations listed below,...
8/15/2018	8/15/2018 Security Monitoring–Updating Service Created on DC Rule One piece of feedback that I’ve seen in regards to security monitoring is noise due to services created on a domain controller. In general, this should not be a common event, but occasionally...
8/15/2018	8/15/2018 Security Monitoring–Updating Scheduled Task Creation Rule One piece of feedback I’ve gotten is that monitoring the creation of scheduled tasks as well as service creation on domain controllers can get a bit noisy due to typical business activities....
8/14/2018	8/14/2018 Top 5 Mobile App Security Failures and How To Prevent Them This is a guest post by Brian C Reed, Chief Mobility Officer at NowSecure. In the race to get innovative new mobile apps or cool new features added to existing mobile apps out the door faster,...
8/14/2018	8/14/2018 Support Tip: Requesting FastTrack Assistance We’ve had a few questions recently about FastTrack. You can use the Enterprise Mobility + Security (EMS) FastTrack Center Benefit when you purchase at least 150 licenses for EMS or any of its...

more...

Web Content

Security Documentation

1. Architecture and design
     1.1. Advanced threat detection
     1.2. Azure logging and auditing
     1.3. Azure network security
     1.4. Azure serverless platform security
     1.5. Enabling operational security
     1.6. Governance in Azure
     1.7. Isolation in the Azure cloud
     1.8. Secure hybrid network architecture
     1.9. Security technical capabilities
2. Data security and encryption
     2.1. Database security
          2.1.1. Best practices
          2.1.2. Security checklist
     2.2. Disk encryption
          2.2.1. Best practices
          2.2.2. Data encryption-at-rest
          2.2.3. Disk encryption for IaaS VMs
               2.2.3.1. Disk encryption prerequisites
               2.2.3.2. Disk encryption for Windows VMs
               2.2.3.3. Disk encryption for Linux VMs
               2.2.3.4. Appendix for disk encryption
               2.2.3.5. Disk encryption FAQ
               2.2.3.6. Troubleshooting
          2.2.4. Encrypt an Azure VM
     2.3. Azure Storage security
     2.4. Storage security guide
3. Platform and infrastructure
     3.1. Infrastructure security
          3.1.1. Physical security
          3.1.2. Availability
          3.1.3. Components and boundaries
          3.1.4. Network architecture
          3.1.5. Production network
          3.1.6. SQL Database
          3.1.7. Operations
          3.1.8. Monitoring
          3.1.9. Integrity
          3.1.10. Data protection
     3.2. Microsoft Antimalware
     3.3. IaaS security
          3.3.1. Best practices - IaaS workloads
          3.3.2. Azure marketplace images
     3.4. Identity management
          3.4.1. Choose Azure AD authentication
          3.4.2. Security checklist
          3.4.3. Best practices
          3.4.4. Enforce MFA on subscription administrators
     3.5. Network security
          3.5.1. Best practices
          3.5.2. DDoS Protection
          3.5.3. Boundary security
4. Application
     4.1. PaaS
          4.1.1. Azure App Service for PaaS
          4.1.2. Azure Storage for PaaS
          4.1.3. DB best practices for PaaS
     4.2. IoT
          4.2.1. IoT security best practices
          4.2.2. IoT security
          4.2.3. Secure your IoT deployment
     4.3. Azure Service Fabric security
          4.3.1. Best practices
          4.3.2. Security checklist
5. Monitoring, auditing, and operations
     5.1. Auditing and logging
          5.1.1. Security management
          5.1.2. Remote management security
          5.1.3. Azure log integration
               5.1.3.1. Introduction
               5.1.3.2. Get started
               5.1.3.3. Integrate Azure AD audit logs
               5.1.3.4. Integrate Security Center alerts
               5.1.3.5. Integrate logs from Key Vault
               5.1.3.6. FAQ
     5.2. Operational security
          5.2.1. Best practices
          5.2.2. Security checklist
6. Governance and compliance
     6.1. AU PROTECTED
          6.1.1. IaaS web application
          6.1.2. PaaS web application
     6.2. FedRAMP
          6.2.1. Data analytics
          6.2.2. Data warehouse
          6.2.3. IaaS web application
          6.2.4. PaaS web application
     6.3. FFIEC
          6.3.1. Data analytics
          6.3.2. Data warehouse
          6.3.3. IaaS web application
          6.3.4. PaaS web application
     6.4. GDPR
          6.4.1. Data analytics
          6.4.2. Data warehouse
          6.4.3. IaaS web application
          6.4.4. PaaS web application
     6.5. HIPAA/HITRUST
          6.5.1. Health Data and AI
     6.6. NIST SP 800-171
          6.6.1. Data analytics
          6.6.2. Data warehouse
          6.6.3. IaaS web application
          6.6.4. PaaS web application
     6.7. PCI DSS
          6.7.1. Data analytics
          6.7.2. Data warehouse
          6.7.3. IaaS web application
          6.7.4. PaaS web application
     6.8. TIC
          6.8.1. Trusted Internet Connection with Azure
     6.9. UK NHS
          6.9.1. Data analytics
          6.9.2. Data warehouse
          6.9.3. IaaS web application
          6.9.4. PaaS web application
     6.10. UK OFFICIAL
          6.10.1. IaaS web application
          6.10.2. PaaS web application
7. White papers
8. Azure security services
9. Technical overviews
10. Best practices
11. Resources
     11.1. Azure security MVP program
     11.2. Cybersecurity consulting
     11.3. Log a security event support ticket
     11.4. Pen testing
     11.5. Microsoft Threat Modeling tool
          11.5.1. Getting started
          11.5.2. Feature overview
          11.5.3. Threats
          11.5.4. Mitigations
               11.5.4.1. Auditing and logging
               11.5.4.2. Authentication
               11.5.4.3. Authorization
               11.5.4.4. Communication security
               11.5.4.5. Configuration management
               11.5.4.6. Cryptography
               11.5.4.7. Exception management
               11.5.4.8. Input validation
               11.5.4.9. Sensitive data
               11.5.4.10. Session management

Web Pages

Content	Type
Overview of Microsoft Azure compliance	Whitepaper
Microsoft Cloud Red Teaming	Whitepaper
Receive an email on Azure Network Security Group Rule changes	Sample
Modern Service Management For Azure	Whitepaper
Microsoft Azure HIPAA/HITECH Act Implementation Guidance	Whitepaper
Security and Azure SQL Database	Whitepaper
Microsoft Azure Security Response in the Cloud	Whitepaper
Shared Responsibilities for Cloud Computing	Whitepaper
Securing Your Internet of Things from the Ground Up	Whitepaper
Microsoft Azure Network Security	Whitepaper

Online Training Content

Date	Title
1/18/2018	Hybrid Cloud Workload Protection with Azure Security Center Looking to enhance your organization’s security posture, especially these days, when threats seem to increase in volume and sophistication all the time? Azure Security Center can help, and Yuri Diogenes and Ty Balascio show you how. Join them for a look at workload protection, learn how the threat landscape differs for a cloud or hybrid environment...
10/19/2017	Pluralsight: Microsoft Azure Security - Getting Started Security in the Microsoft Azure cloud can be complex, and the stakes are high. This course, Microsoft Azure Security - Getting Started, will provide you with the skills you need to deploy Azure solutions competently and confidently according to Microsoft security best practices and patterns. First, you'll cover security terminology and develop a...
6/23/2016	Securing Your Data in Microsoft Azure SQL Database If you’re interested in the security and data management features found in Microsoft Azure SQL Database, be sure to take this course. First, get a look at the foundation for data security in the cloud provided by Azure. Then, explore the techniques and features used to manage data access in SQL Database and to log and monitor database activity. Plus,...
1/23/2016	Secure the Cloud Are you tasked with addressing global compliance standards? Be sure to check out this course. In today’s landscape of dynamic Internet threats and business risks, you need security technologies and services that are designed and operated according to the broadest available array of security standard
7/16/2015	Getting Started with Azure Security for the IT Professional Do IT security concerns keep you up at night? You're not alone! Many IT Pros want to extend their organization's infrastructure but need reassurance about security. Whether you are researching a hybrid or a public cloud model with Microsoft Azure, the question remains the same: Does the solution me
12/16/2014	Customizing ASP.NET Authentication with Identity Want to know how to use the new ASP.NET Identity system to manage access to your web apps and services? Explore the evolution of membership and identity in ASP.NET, and get real-world guidance and best practices on how to implement the newly architected system so you can easily define and manage use

Tools

Tool	Description	Author
Secure DevOps Kit for Azure (AzSK)	The "Secure DevOps Kit for Azure" ('AzSK') is a collection of scripts, tools, extensions, automations, etc. that caters to the end to end Azure subscription and resource security needs for dev ops teams using extensive automation and smoothly integrating security into native dev ops workflows helping accomplish secure dev ops with 6 focus areas.	Microsoft
Free Tier Solution Based Billing Tracker	This OMS Tracker Dashboard helps detect Security & Audit Solution related activities happening in the Azure Activity Log in an OMS workspace post 2017-06-19, and verifies if Solution Based Billing has been enabled for the Security & Audit Solution in that Free Tier OMS Workspace.	Wei H Lim

Videos

Date	Title	Length
7/17/2018	A Perspective on Industrial IoT Security by TrendMicro Security is critical in IoT applications, but how different is it from (or similar to) traditional IT security? Richard Ku, expert in Industrial IoT Security for Enterprise OT environment at TrendMicro visited the IoT Show to share his...	0:14:55
5/9/2018	Find Security Flaws with AI using Microsoft Security Risk Detection, VSTS, and Azure You will learn how to find “million dollar bugs” in your code, report those bugs, and prioritize them right from inside Visual Studio Team Services. Microsoft Security Risk Detection brings 15 years of innovation in fuzz testing from...	0:20:55
5/7/2018	Security APIs in Microsoft Graph Learn about the new Security APIs in Microsoft Graph.	0:13:39
5/6/2018	Building secure cloud apps – lessons learned from Microsoft’s internal security and software engineering teams Learn from Core Services Engineering & Operations (formerly Microsoft IT) software engineering leads and our Digital Security & Risk Engineering (DSRE) engineers how our Line of Business application development teams work hand in hand...	1:33:22
5/6/2018	Removing Security Roadblocks to IoT Deployment Success Learn all the possibilities Microsoft is availing to help secure IoT deployments worldwide from technological innovations to ecosystems enablement. Many companies report security as their biggest stumbling block to realizing their...	1:33:22
5/6/2018	Modernizing Mission-Critical Apps with SQL Server Learn about the features that can help you modernize your mission critical applications, where security and performance can go hand in hand. From the wide range of SQL Server features available, we will take a closer look at In-Memory...	1:33:22
5/6/2018	Secure and manage your Azure resources In Azure, Security & Management are a joint responsibility between Microsoft and our customers. Microsoft recommends that every production virtual machine and application is secure and well managed with security, backup and monitoring...	1:33:22
5/2/2018	On the Road to Build: IoT Security Build 2018 is just around the corner and we have plenty Internet of Things content ready for you.Here is a sneak peak at one of our sessions about Azure IoT Security.Check out all the IoT sessions at Build this year	0:04:35
4/18/2018	How to configure VPN integration in Microsoft Advanced Threat Analytics YT: Microsoft Azure Microsoft Advanced Threat Analytics (ATA) helps members of Security Operation Centers gain a valuable insight into the security of their Active Directory environment. In this video we will discuss how to integrate VPN (virtual private...	0:07:37
4/10/2018	Azure Security Center \| Azure Friday YT: Microsoft Azure Kelly Anderson joins Scott Hanselman to discuss Azure Security Center, which offers built-in security management and threat protection for your cloud workloads. Azure Security Center helps you find & fix vulnerabilities, aids in...	0:13:24

Page 1 of 25