Security and Compliance in Azure

Understanding Microsoft Azure

Kevin James

Technical Lead and Training Architect

Think security

Online banking account.jpg

  • Logging into an unsecured online banking application
    • Username, password, and money at risk from theft
  • Data security and compliance maintain customer trust in organizations
  • Global regulations have legal implications for businesses
Understanding Microsoft Azure

Azure Security Center

  • Provides robust security
  • Offers unified security management
  • Advanced threat protection
  • Provides recommendations and insights for enhanced security

icons for azure security center

Understanding Microsoft Azure

Azure Policy

icons for azure policy

  • Enforces organization-wide standards
  • Assesses compliance at scale
    • Corporate and regulatory
Understanding Microsoft Azure

Azure Blueprints

  • Consistent deployments
  • Combines templates and policies
  • Offer blueprint to meet GDPR requirements

icon for azure blueprints

Understanding Microsoft Azure

Data Protection and Identity

 

Overview of Data Protection and Identity.png

Understanding Microsoft Azure

Encryption

  • Secures data at rest
  • Protects data in transit

cartoon shield with key inside and the word encryption at the bottom

Understanding Microsoft Azure

Encryption

  • Secures data at rest
  • Protects data in transit
  • Like safe plus armored truck
  • Encrypted data thwarts breaches

Truck and safe.png

Understanding Microsoft Azure

Role-based access control

  • Utilizes role-based access control (RBAC) to allocate permissions
  • Includes custom and predefined roles for select users or groups
  • Supports extensive roles:
    • Contributor
    • Owner
    • Reader
    • RBAC administrator
    • User access administrator

Drawing with stylized people and the words access control

Understanding Microsoft Azure

Network security

 

Network security overview.png

Understanding Microsoft Azure

Network security groups

blue shield with network security groups in text underneath

  • Filters inbound and outbound traffic
  • Administrators set and enforce security rules
Understanding Microsoft Azure

Firewall

Azure firewall icon with azure firewall in text below

  • Provides advanced threat protection
  • Filters and analyzes network traffic
  • Allows only safe and approved connections
Understanding Microsoft Azure

DDoS protection

blue shield with ddos protection written underneath

  • DDoS floods sites with fake traffic
    • Inaccessible to real users
Understanding Microsoft Azure

DDoS protection

Security guard.jpg

  • DDoS floods sites with fake traffic
    • Inaccessible to real users
  • Azure DDoS acts as security guard
  • Allows genuine users only
  • Guards continuously against large-scale attacks
Understanding Microsoft Azure

Managing security

 

Managing security overview.png

Understanding Microsoft Azure

Managing security

Sentinel logo only.png

Sentinel

  • Detects and manages threats
Understanding Microsoft Azure

Managing security

Sentinel and protection logos.png

Sentinel

  • Detects and manages threats

$$

Azure Information Protection

  • Helps govern and classify sensitive information
Understanding Microsoft Azure

Managing security

All logos for managing security.png

Sentinel

  • Detects and manages threats

$$

Azure Information Protection

  • Helps govern and classify sensitive information

$$

Key Vault

  • Securely stores classified information
Understanding Microsoft Azure

Compliance

  • Committed to compliance standards
    • e.g., ISO, IEC, GDPR

Abstract image with people working and checkmarks and the word ISO inside an award

Understanding Microsoft Azure

Let's practice!

Understanding Microsoft Azure

Preparing Video For Download...