Back to Learning Paths Learning Paths

Azure Services for Security Engineers

Intermediate

LP Box Courses 3 Video Courses
LP Box quiz 3 Quiz sessions
LP Box Lab 3 Hands-on Labs
Duration 7h 33m
Karma ~240 karma points
Microsoft made security a key pillar of the Azure platform because they understand that you need to trust the cloud to realize its full benefits, which is why Azure boasts the most compliance certifications of any cloud provider. But security in the cloud is a shared responsibility. Azure provides services that you can leverage to secure your cloud resources and applications. To uphold your end of the shared responsibility, you need to know:
  • The security services that are available, and
  • How to properly use each service.
This is true regardless of whether you are making use of IaaS, PaaS, or SaaS offerings in Azure. This learning path will teach you how to take advantage of these security features and services to enable strong security practices in your organization and to protect and secure your own cloud applications.


Topics Covered
Identity and Access Management; Securely manage users, groups, devices, and applications that integrate with Azure Active Directory (AAD) and role-based access controls.
Storage: Defend against data breaches by utilizing encryption support for storage accounts, virtual hard drives, and Azure-managed databases.
Networking: Use encrypted VPN tunnels to connect to networks in Azure from on premises and remote machines, or to avoid the public internet entirely by connecting your company to Azure directly through a private ExpressRoute connection. Incorporate different types of firewalls to secure traffic in your network, including network security groups, web application firewalls, next-generation firewalls, and Azure-managed database firewalls.
Auditing and Threat Prevention: Proactively monitor your cloud resources for vulnerabilities and take action to close any identified security gaps with Azure Security Center.
Secrets Management: Securely store and provide secure access to keys, passwords, and application secrets inside of Azure's Key Vault service.
Your Name Here
Preview certificate
Start

1

About This Course Security is a critical concern for anyone who uses the cloud. Microsoft takes this seriously and built and operates the Azure Platform with security as a key principle. Microsoft secures data centers, and management applications; and provides pay-as-you-go security services. Learn how to take advantage of these security features and services to enable strong security practices ...

2

Lab Overview The security of your cloud environment should always a leading concern. However, it can be difficult to stay on top of all the resources and changes taking place in your environment. Azure provides Security Center to help lighten the burden of securing your cloud environment. Take advantage of automatic security audits and recommendations to secure your cloud with Azure Security ...

3

4

During this course, we will explore the primary components that are offered by Microsoft Azure Virtual Network under Microsoft Azure Resource Manager (ARM). This is sometimes known as IaaSv2. For the sake of clarity, this course does not cover IaaSv1, which is Microsoft Azure infrastructure services provisioned using the Azure Service Management (ASM) REST API. In addition to covering Azure ...

5

Lab Overview In this Lab, you will use the Azure Key Vault service in order to store keys and secrets used to encrypt an Azure Virtual Machine (VM). Azure Key Vault helps safeguard cryptographic keys and secrets used by cloud applications and services. By using Key Vault, you can encrypt keys and secrets (such as authentication keys, storage account keys, data encryption keys, .PFX files, and ...

7

Azure Active Directory Security Azure Active Directory, commonly referred to as Azure AD, is Microsoft’s Identity and Access Management service in the Cloud. It manages users, groups, and applications along with their access to other applications and resources running in the cloud. This is exactly what we have with traditional on-premises Active Directory. Azure AD runs as a cloud service and ...

8

Lab Overview The 'principle of least privilege' states that security of resources is improved when workers only have the access they need to perform their job roles. Azure provides fine-grained role-based access control (RBAC) mechanisms to secure your cloud environment. In this Lab, you will follow the principle of least privilege for users as you manage access to Azure with RBAC. You will use ...
Complete all the steps to claim this certificate
Your Name Here
Azure Services for Security Engineers
Certificate Sample