Cyber security on Azure : an it professional's guide to Microsoft Azure security / Marshall Copeland, Matthew Jacobs.
Copeland, Marshall.; Jacobs, Matthew, author.
2021
QA76.9.A25
Available Online

Linked e-resources

Linked Resource Online Access
Concurrent users Unlimited
Authorized users Authorized users
Document Delivery Supplied Can lend chapters, not whole ebooks

Details

Title Cyber security on Azure : an it professional's guide to Microsoft Azure security / Marshall Copeland, Matthew Jacobs.
Author Copeland, Marshall.
Edition 2nd ed.
ISBN 9781484265314 (electronic bk.)
1484265319 (electronic bk.)
9781484265321 (print)
1484265327
1484265300
9781484265307
DOI https://doi.org/10.1007/978-1-4842-6531-4
Publication Details [Place of publication not identified] : Apress, 2021.
Language English
Description 1 online resource
Other Standard Identifiers 10.1007/978-1-4842-6531-4 doi
Call Number QA76.9.A25
Dewey Decimal Classification 005.8
Summary Prevent destructive attacks to your Azure public cloud infrastructure, remove vulnerabilities, and instantly report cloud security readiness. This book provides comprehensive guidance from a security insider's perspective. Cyber Security on Azure supports cloud security operations and cloud security architects by supplying a path to clearly identify potential vulnerabilities to business assets and reduce security risk in Microsoft Azure subscription. This updated edition explores how to "lean-in" and recognize challenges with IaaS and PaaS for identity, networks, applications, virtual machines, databases, and data encryption to use the variety of Azure security tools. You will dive into Azure Cloud Security to guide cloud operations teams to become more security focused in many areas and laser focused on security configuration. New chapters cover Azure Kubernetes Service and Container security and you will get up and running quickly with an overview of Azure Sentinel SIEM Solution. You will: Understand enterprise privileged identity and security policies "Shift left" with security controls in Microsoft Azure Configure intrusion detection and alerts Reduce security risks using Azure Security Service
Note Includes index.
Access Note Access limited to authorized users.
Digital File Characteristics text file
PDF
Source of Description Online resource; title from PDF title page (SpringerLink, viewed February 26, 2021).
Added Author Jacobs, Matthew, author.
Available in Other Form Cyber security on Azure.
Linked Resources Online Access
Record Appears in Online Resources > Ebooks
All Resources
Intro
Table of Contents
About the Authors
About the Technical Reviewer
Acknowledgments
Introduction
Part I: Zero Trust Cloud Security
Chapter 1: Reduce Cyber Security Vulnerabilities: Identity Layer
Azure Cloud Relations: Tenant, Subscription, Resources
Azure Tenant Security
Azure Subscription Security
Azure API Security
Azure Resource Locks
Managing Azure Active Directory: Users and Groups
Azure Users
Azure Groups
Azure Active Directory: OAuth, SAML, AD Connect
OAuth
SAML
AD Connect
Federation with ADFS
Non-federation

Security Measures
Azure Application Permission Scopes
Configure Multi-Factor Authentication
Enabling Security Defaults
Self-Service Password Reset
Conditional Access Policies
Azure AD Privileged Identity Management
Summary
Chapter 2: Azure Network Security Configuration
Virtual Network Overview
VNets
Network Security Group
VNet Security Best Practices
Network Peering
Application Security Groups
TCP/IP Port Vulnerability
Azure Front Door Service
Remote Access Management
Azure Bastion Host
Summary

Chapter 3: Reduce Cyber Security Vulnerabilities: IaaS and Data
Azure Security with IaC
ARM Development
Harden Azure VMs
Patching the VM Directly
VM Security and Endpoint Protection
Database Security
DB Best Practices
DB Authentication
Database Auditing
Storage Accounts
Shared Access Signatures
Key Management
Summary
Part II: Azure Cloud Security Operations
Chapter 4: Configure Azure Monitoring for Blue Team Hunting
Azure Data Platform
Azure Logs
Azure Metrics
Azure Monitor and Log Analytics Enablement

Log Analytics Workspace Security Strategy
Guest OS Metrics and Logs
Connecting Data Sources to Log Analytics Workspace
Summary
Chapter 5: Azure Security Center and Azure Sentinel
Cloud Security Challenges
Enable Security
Configuration Value
Standard Tier Advantages
Just-in-Time Access
Advanced Threat Detection
Anomaly Detection
Crash Analysis
Threat Intelligence
Behavioral Analysis
Configure Alerting
Using Security Center
Compute and Apps
Network
Data and Storage
Azure Sentinel
Connect to Data Streams
Using Azure Sentinel

Logs Pane
Analytics Pane
Hunting
Summary
Chapter 6: Azure Kubernetes Services: Container Security
Microservices
Containers, Docker, and Kubernetes
Azure Kubernetes Services and Security
Authentication
Container Security
AKS Security with Security Center and Sentinel
Kubernetes Security with Azure Policy
Summary
Chapter 7: Security Governance Operations
Azure Governance Architecture
Management Groups
Azure Policy
Compliance Reporting
Assignments
Blueprints
Role-Based Access Control
Azure Cost Management
Data Governance

Browse Subjects

Show more subjects...

Statistics

from
to
Export