Category Archives: Governance & Compliance

ARM template for Azure VM with Guest Configuration

I’ve recently got some questions related to Azure Policy Guest Configuration and an ARM template to deploy pre-requisites in order to work with the feature. In this article, I’d like to share ARM template to deploy Azure Policy Guest Configuration … Continue reading

Posted in Governance & Compliance | Tagged | Leave a comment

Add custom Azure Policy to Azure Security Center Recommendation

You know that Azure Security Center recommendation is powered by Azure Policy and you can disable recommendation that may not be applicable to your environment. Along with that, you can even add a custom Azure Policy into Azure Security Center … Continue reading

Posted in Governance & Compliance | Tagged , | Leave a comment

Query Azure Security Security Recommendation by different ways

If you work with Azure Security Center you probably know about Azure Security Center Recommendation that periodically analyzes security state of Azure resources. In the past Azure Security Center Recommendation was executed by private Azure back-end service internally. Microsoft then … Continue reading

Posted in Azure Security Center, Governance & Compliance | Tagged , , | Leave a comment

Quick notes on the use of securestring in Azure Blueprints

Azure Blueprint does support secureString and secureObject type when you create artifact and blueprint definition. So far there is not much of information about the use of secureString with Azure Blueprint. This article would hopefully clarify somewhat about secureString.

Posted in Governance & Compliance | Tagged , | 1 Comment

Essential tips for building a large Azure blueprint

Azure Blueprint allows an organization to design and build a standardized and repeatable cloud templates in Azure that meet pre-defined reference architecture as well as corporate compliance and policy for cloud deployment. Building a simple blueprint shouldn’t take time. However … Continue reading

Posted in Governance & Compliance | Tagged , | 8 Comments

Deploy Azure Security Center Blueprint

A few readers after reading this article about Azure Security Center ARM template asked me if they could include Azure Security Center ARM template to their Azure Blueprint so they could deploy it widely along with other artifacts. In this … Continue reading

Posted in Governance & Compliance | Tagged , | 2 Comments

Deploy a compliant Storage Account service

What exactly would you need from a compliant service like Storage Account? We have seen number of data breaches in cloud when storage account storing sensitive data have been compromised within 2019. Those breaches really raised the serious attention to … Continue reading

Posted in Governance & Compliance | Tagged , , | 4 Comments

How much would you trust Microsoft Azure?

If you are working with Microsoft Cloud sometimes, you may have heard about Microsoft Trust Center where Microsoft proves to its customers a trustworthy platform. From the center, Microsoft shows not only compliance achievement but also security privacy and its … Continue reading

Posted in Governance & Compliance | Tagged | Leave a comment

Security shared responsibility in Azure IaaS

Cloud computing is heterogeneously broad, relating to variety of software services to hardware infrastructure. Nevertheless, people are still following the U.S. National Institute of Standards and Technology (NIST), defining three service models:

Posted in Governance & Compliance | Tagged | Leave a comment