Learning Path Overview
Microsoft made security a key pillar of the Azure platform because they understand that you need to trust the cloud to realize its full benefits, which is why Azure boasts the most compliance certifications of any cloud provider. But security in the cloud is a shared responsibility. Azure provides services that you can leverage to secure your cloud resources and applications.
This is true regardless of whether you are making use of IaaS, PaaS, or SaaS offerings in Azure. This learning path will teach you how to take advantage of these security features and services to enable strong security practices in your organization and to protect and secure your own cloud applications.
What you will learn
Identity and Access Management: Securely manage users, groups, devices, and applications that integrate with Azure Active Directory (AAD) and role-based access controls.
Storage: Defend against data breaches by utilizing encryption support for storage accounts, virtual hard drives, and Azure-managed databases.
Networking: Use encrypted VPN tunnels to connect to networks in Azure from on-premises and remote machines, or to avoid the public internet entirely by connecting your company to Azure directly through a private ExpressRoute connection. Incorporate different types of firewalls to secure traffic in your network, including network security groups, web application firewalls, next-generation firewalls, and Azure-managed database firewalls.
Auditing and Threat Prevention: Proactively monitor your cloud resources for vulnerabilities and take action to close any identified security gaps with Azure Security Center.
Secrets Management: Securely store and provide secure access to keys, passwords, and application secrets inside of Azure's Key Vault service.
To uphold your end of the shared responsibility, you need to know:
- The security services that are available
- How to properly use each service
Learning Path Steps
Knowledge Check: Azure Security Solutions
Take advantage of automatic security audits and recommendations to secure your cloud with Azure Security Center in this Lab.
Knowledge Check: Design Azure Network Implementation
Learn about Azure Key Vault to store keys/secrets used for encrypting an Azure Virtual Machine in a hands-on Lab environment
Knowledge Check: Azure Active Directory Security
Learn Role Based access control for the Microsoft Azure Cloud
Azure Services for Security Engineers
Added "Designing for Azure Identity Management" course
Added 4 courses:
Managing Azure Data Protection and Security Compliance
Implementing Multi-Factor Authentication on Azure
Managing Role-Based Access Control on Azure
Implementing Azure Active Directory Privileged Identity Management
A learning path exam has been added for Azure Service for Security Engineers.
About the Author
Chris has over 15 years of experience working with top IT Enterprise businesses. Having worked at Google helping to launch Gmail, YouTube, Maps and more and most recently at Microsoft working directly with Microsoft Azure for both Commercial and Public Sectors, Chris brings a wealth of knowledge and experience to the team in architecting complex solutions and advanced troubleshooting techniques. He holds several Microsoft Certifications including Azure Certifications.
In his spare time, Chris enjoys movies, gaming, outdoor activities, and Brazilian Jiu-Jitsu.