Responsibilities by Platform
Start course

Security is a critical concern for anyone who uses the cloud. Microsoft takes this seriously and operates the Azure Platform with security as a key principle. Microsoft secures data centers, and management applications, and provides pay-as-you-go security services. Learn how to take advantage of these security features and services to enable strong security practices in your organization and to protect and secure your own cloud applications.

This course begins by looking at Azure's shared responsibility model before moving on to look at various security topics within Azure: storage security, database security, identity & access management, and networking security. By the end of this course, you should have a basic understanding of all of the key security options and features available in Microsoft Azure.

For any feedback relating to this course, please contact us at

Learning Objectives

  • Understand the shared responsibility model
  • Learn how to secure Azure resources
  • Learn about Azure security services and technologies
  • Learn how to monitor your Azure resources with Azure Security Center

Intended Audience

This course is intended for IT Professionals who need to develop an understanding of the security solutions that are available in Microsoft Azure.


To get the most from this course, you should have a basic understanding of Microsoft Azure and its offerings.


Let’s break things down by platform. 

For on-premises solutions, the customer will always be responsible for all aspects of security and operations. 

For IaaS solutions, the cloud provider will be responsible for the tangible aspects – things like servers and network hardware. The hypervisor is also managed by the cloud provider – as are the physical datacenters that host the hardware. The customer will typically be responsible for securing and managing operating systems on servers, network configurations, applications that are deployed, identity management, and, of course, data. 

Solutions built on the PaaS platform push more responsibility onto the cloud provider. In addition to the same things that the cloud provider is responsible for in an IaaS deployment, the provider is additionally responsible for managing and securing the network controls. The customer, however, is still at least partially responsible for securing and managing its applications, user identities, and data. 

SaaS solutions push even more responsibility onto the provider. This is because the cloud provider provides the application to the customer as a service. This removes the customer’s responsibility for ANY underlying components. That said, the customer is still responsible for ensuring that its data is properly classified. The provider and customer will share the responsibility for managing users and end-point devices.

It’s critical to understand that, while cloud providers can offer significant security and compliance advantages over an on-prem solution, these advantages do not, in any way, absolve the customer from protecting its users, applications, and service offerings. 

About the Author
Learning Paths

Tom is a 25+ year veteran of the IT industry, having worked in environments as large as 40k seats and as small as 50 seats. Throughout the course of a long an interesting career, he has built an in-depth skillset that spans numerous IT disciplines. Tom has designed and architected small, large, and global IT solutions.

In addition to the Cloud Platform and Infrastructure MCSE certification, Tom also carries several other Microsoft certifications. His ability to see things from a strategic perspective allows Tom to architect solutions that closely align with business needs.

In his spare time, Tom enjoys camping, fishing, and playing poker.