Archives
- July 2021 (5)
- June 2021 (1)
- May 2021 (1)
- April 2021 (1)
- January 2021 (1)
- August 2020 (1)
- July 2020 (3)
- June 2020 (1)
- March 2020 (5)
- February 2020 (3)
- January 2020 (18)
- December 2019 (22)
- November 2019 (3)
- October 2019 (1)
- July 2019 (1)
- April 2019 (2)
- January 2019 (2)
- October 2018 (2)
- September 2018 (1)
- August 2018 (4)
- July 2018 (4)
- February 2018 (6)
- January 2018 (3)
- November 2017 (1)
- August 2017 (3)
- May 2017 (4)
- April 2017 (4)
- December 2016 (1)
Categories
- Application Security (1)
- Azure Security Center (10)
- Governance & Compliance (12)
- Host Protection (3)
- Identity & Access Control (8)
- Monitoring & Detection (17)
- Network Security (2)
- Secure Development (10)
- Security Automation (35)
- Security Operation (16)
- Service Overview (1)
Archives
- July 2021 (5)
- June 2021 (1)
- May 2021 (1)
- April 2021 (1)
- January 2021 (1)
- August 2020 (1)
- July 2020 (3)
- June 2020 (1)
- March 2020 (5)
- February 2020 (3)
- January 2020 (18)
- December 2019 (22)
- November 2019 (3)
- October 2019 (1)
- July 2019 (1)
- April 2019 (2)
- January 2019 (2)
- October 2018 (2)
- September 2018 (1)
- August 2018 (4)
- July 2018 (4)
- February 2018 (6)
- January 2018 (3)
- November 2017 (1)
- August 2017 (3)
- May 2017 (4)
- April 2017 (4)
- December 2016 (1)
Categories
- Application Security (1)
- Azure Security Center (10)
- Governance & Compliance (12)
- Host Protection (3)
- Identity & Access Control (8)
- Monitoring & Detection (17)
- Network Security (2)
- Secure Development (10)
- Security Automation (35)
- Security Operation (16)
- Service Overview (1)
Category Archives: Governance & Compliance
Demystify Azure DDoS Protection Azure Policy
There are two different policies in Azure Security Center/Azure Policy scan virtual network resources and DDoS protection plan. Your virtual network resources may fall into the list of non-compliant resources in one of these policies. In this article, let’s demystify … Continue reading
Deny Azure Role Assignment with Azure Policy
Giving unplanned role to users or groups is one of the reasons that lead to a security breach. In this article, let’s just look at how we can use Azure Policy to prevent role assignment from being assigned to unattended … Continue reading
Posted in Governance & Compliance
Tagged azure policy, azure rbac, azure role assignment
Leave a comment
ARM template for Azure VM with Guest Configuration
I’ve recently got some questions related to Azure Policy Guest Configuration and an ARM template to deploy pre-requisites in order to work with the feature. In this article, I’d like to share ARM template to deploy Azure Policy Guest Configuration … Continue reading
Add custom Azure Policy to Azure Security Center Recommendation
You know that Azure Security Center recommendation is powered by Azure Policy and you can disable recommendation that may not be applicable to your environment. Along with that, you can even add a custom Azure Policy into Azure Security Center … Continue reading
Query Azure Security Security Recommendation by different ways
If you work with Azure Security Center you probably know about Azure Security Center Recommendation that periodically analyzes security state of Azure resources. In the past Azure Security Center Recommendation was executed by private Azure back-end service internally. Microsoft then … Continue reading
Quick notes on the use of securestring in Azure Blueprints
Azure Blueprint does support secureString and secureObject type when you create artifact and blueprint definition. So far there is not much of information about the use of secureString with Azure Blueprint. This article would hopefully clarify somewhat about secureString.
Essential tips for building a large Azure blueprint
Azure Blueprint allows an organization to design and build a standardized and repeatable cloud templates in Azure that meet pre-defined reference architecture as well as corporate compliance and policy for cloud deployment. Building a simple blueprint shouldn’t take time. However … Continue reading
Posted in Governance & Compliance
Tagged azure blueprint for architect, azure blueprint tip
8 Comments
Deploy Azure Security Center Blueprint
A few readers after reading this article about Azure Security Center ARM template asked me if they could include Azure Security Center ARM template to their Azure Blueprint so they could deploy it widely along with other artifacts. In this … Continue reading
Posted in Governance & Compliance
Tagged azure blueprint, azure security center blueprint
2 Comments
Walkthrough: deploy a compliance storage account blueprint
I got a few online readers asking on how to deploy the compliant storage account described here as a blueprint artifact so they could shift the template across team in their environment. This article is written to walk you through … Continue reading
Posted in Governance & Compliance
Tagged azure blueprint, azure compliance, azure storage account
2 Comments
Deploy a compliant Storage Account service
What exactly would you need from a compliant service like Storage Account? We have seen number of data breaches in cloud when storage account storing sensitive data have been compromised within 2019. Those breaches really raised the serious attention to … Continue reading