Microsoft made security a key pillar of the Azure platform because they understand that you need to trust the cloud to realize its full benefits, which is why Azure boasts the most compliance certifications of any cloud provider. But security in the cloud is a shared responsibility. Azure provides services that you can leverage to secure your cloud resources and applications.
This is true regardless of whether you are making use of IaaS, PaaS, or SaaS offerings in Azure. This learning path will teach you how to take advantage of these security features and services to enable strong security practices in your organization and to protect and secure your own cloud applications.
What you will learn
Identity and Access Management: Securely manage users, groups, devices, and applications that integrate with Azure Active Directory (AAD) and role-based access controls.
Storage: Defend against data breaches by utilizing encryption support for storage accounts, virtual hard drives, and Azure-managed databases.
Networking: Use encrypted VPN tunnels to connect to networks in Azure from on-premises and remote machines, or to avoid the public internet entirely by connecting your company to Azure directly through a private ExpressRoute connection. Incorporate different types of firewalls to secure traffic in your network, including network security groups, web application firewalls, next-generation firewalls, and Azure-managed database firewalls.
Auditing and Threat Prevention: Proactively monitor your cloud resources for vulnerabilities and take action to close any identified security gaps with Azure Security Center.
Secrets Management: Securely store and provide secure access to keys, passwords, and application secrets inside of Azure's Key Vault service.
To uphold your end of the shared responsibility, you need to know:
- The security services that are available
- How to properly use each service
Learning Path Steps
This course provides you with a basic understanding of all of the key security options and features available in Microsoft Azure.
In this course, you'll learn how to create and manage encryption keys in Azure, prevent and respond to security threats to Azure resources, and configure access to Azure applications.
Take advantage of automatic security audits and recommendations to secure your cloud with Azure Security Center in this Lab.
In this course, you will learn how to design a network implementation using the appropriate Azure services.
Knowledge Check: Design Azure Network Implementation
Learn about Azure Key Vault to store keys/secrets used for encrypting an Azure Virtual Machine in a hands-on Lab environment
In this course, you'll learn how to implement and deploy identity management on Azure to better protect your organization with this expertly instructed training content.
In this course, you'll learn how to implement Multi-Factor Authentication on Azure.
In this course, you'll learn about Azure Role-Based Access Control and gain skills to allow you to manage access to resources in Azure.
Learn Role Based access control for the Microsoft Azure Cloud
This course explains what Azure AD Privileged Identity Management is and what it offers and works through the deployment of PIM and how it works with multi-factor authentication.
Final Exam: Azure Services for Security Engineers
Chris has over 15 years of experience working with top IT Enterprise businesses. Having worked at Google helping to launch Gmail, YouTube, Maps and more and most recently at Microsoft working directly with Microsoft Azure for both Commercial and Public Sectors, Chris brings a wealth of knowledge and experience to the team in architecting complex solutions and advanced troubleshooting techniques. He holds several Microsoft Certifications including Azure Certifications.
In his spare time, Chris enjoys movies, gaming, outdoor activities, and Brazilian Jiu-Jitsu.