Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017

•Télécharger en tant que PPTX, PDF•

0 j'aime•255 vues

How does an enterprise looks like when you talk about security and cloud? Complicated, rigid and challenging to accept cloud based architectures. After working closely with security teams from different companies I identified different approaches and requirements that are standard for enterprises. In this session I want to discuss and share with you lessons learned on how we can map security requirements to Azure.

Technologie

1
ENTERPRISE SECURITY
IN PRACTICE
RADU VUNVULEA, OCTOBER 2017
@RADU VUNVULEA

RADU VUNVULEA
Technology Enthusiast
Dreamer
Microsoft Azure MVP
Speaker & Trainer
Writer & Blogger
Idealist Software
Architecture Crafter

DIRECT ACCESS
Same network
Visible between
each other
Easy access and
control

ISOLATION
Restric traffic
Controls what goes
to and from VNET
Isolate from outside

CROSS SYSTEM COMMUNICATION
Specify what can be
exchange between
systems
Full control on
inbound and
outbound traffic
NSG

NETWORK VIRTUAL APPLIANCE
Control security from
only one location
Cross location
synchronization

MONITOR AND AUDIT
All traffic goes
through virtual
appliance
Push audit data to
on-premises system
Firewall, IDS, IPS
UDR

EXTERNAL TRAFFIC CONTROL
Full control of IP
Filtering
Traffic goes through
VPN
S2S
VPN
Internet

IPSEC VPN TERMINATED OUTSIDE FIREWALL
Cannot be done using S2S
VPN
VPN terminated before NGFW,
inside Virtual Gateway
Appliance
VPN

IPSEC VPN TERMINATED OUTSIDE FIREWALL
Cannot be done using S2S
VPN
VPN terminated before NGFW,
inside Virtual Gateway
Appliance
VPN
OpenVPN

IPSEC VPN TERMINATED OUTSIDE FIREWALL
Appliance plays the role of
firewall and VPN Gateway
VPN

DEVICE AUTHENTICATION USING CERTIFICATES
Supported only for Point-to-Site
VPN
Site-to-Site VPN is connected
directly to VPN hardware
certificates

CASCADED VIRTUAL APPLIANCES
Multiple virtual appliances
connected together

VNET TO VNET CONNECTIVITY
Peering – Fast and
reliable
VPN Gateway –
More granular
control of what goes
in or out
Peering /
VPN
Gateway

CENTRAL LOGGING DATA
Activity Logs
Azure Diagnostic Logs
AAD Reporting
VM and Cloud Services
Storage Analytics
Network Security Groups
Application Insights
Security Alert
Configurable, +180 days, 90
days

API AND INFRASTRUCTURE CHANGES
CLOUD SERVICE PROVIDER CAN MAKE CHANGES ONLY AFTER THE NATURE OF CHANGE IS
UNDERSTOOD AND A SECURITY ASSESSMENT IS DONE
YES
• Microsoft announce 12 months in advance any
breaking changes at API or functionality level
NO
• Infrastructure and services change are done on the
fly as long as the API or functionality is not altered

Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017

Contenu connexe

Tendances

Cisco Connect 2018 Malaysia - Secure data center and mobility solutions

NetworkCollaborators

Sasa milic, cisco advanced malware protection

Dejan Jeremic

Making AI based monitoring a platform feature with the power of BOSH

Mike Villiger

Cisco connect winnipeg 2018 accelerating incident response in organizations...

Cisco Canada

Cloud Access Security Broker (CASB)

rkulandaivel

Cloud Management for WiFi networks

Tanaza

DevSecOps: control and monitoring of zero-day vulnerabilities.

Emerasoft, solutions to collaborate

As security professionals, how can we be sure that we’re ready for 2019? After the last few years, when our practices and conventions have been tested again and again, it’s a little daunting to consider what may face us in the year ahead. Will attackers set their sights on cloud apps? Will hackers join forces with organized crime? Will governments look to the private sector to deal with the skills gap? What will happen to cybersecurity budgets? Join us to get answers to these questions and more.

Top 5 predictions webinar

Zscaler

Driven by the mobility, cloud computing, and Internet of Everything megatrends and fueled by increasingly sophisticated cybercriminals, today’s information landscape is more dynamic and more vulnerable than ever before. Join Cisco and Lancope for a complimentary webinar to learn how you can implement a comprehensive, network-enabled approach to cybersecurity. During the webinar we will discuss: Using the Network as a Security Sensor with Lancope’s StealthWatch System and Flexible NetFlow and to obtain visibility at scale, monitor network activity efficiently, discover security incidents quickly, and help achieve compliance. Using the Network as a Security Enforcer with Cisco TrustSec to ensure policy-based access control and network segmentation for containment of the network attacks, assist compliance and reduce risks of data-breaches.

Using Your Network as a Sensor for Enhanced Visibility and Security

Lancope, Inc.

Making AI based monitoring a platform feature with the power of BOSH

VMware Tanzu

SonicWall

NEOTD Tech Events .

2020 09-30 overcoming the challenges of managing a hybrid environment - aws a...

AlgoSec

One of the toughest IT challenges has been figuring out how to allow users to bring their own devices to work while maintaining the security of internal apps. It becomes even more complicated when a good chunk of users are partners, contractors, and other third parties—those who present a disproportionately high security risk. IT teams have begun to leverage a zero trust security strategy that enables third parties and users on unmanaged devices to securely access internal apps. But can such access be accomplished without placing users on the network and without a mobile client?

Three ways-zero-trust-security-redefines-partner-access-ch

Zscaler

Virtualized Firewall: Is it the panacea to secure distributed enterprises?

Zscaler

Many IT teams used an “M&M” approach to design network security: create a hard shell or perimeter around the soft interior. For remote users, traditional L3 VPNs extend that perimeter, placing remote users' endpoints directly onto the enterprise network. This puts the enterprise's network and data at risk from a range of threats - compromised credentials can lead to unintended exposure, as attackers move laterally throughout the network environment.

What Comes After VPN?

Zscaler

Today 34% of enterprises are running applications within Azure Cloud. That's up 14% from last year! The problem is that Enterprise Networking and Security teams still rely on the VPN to provide remote access to the network for their mobile users. The VPN, famous for giving users a poor user experience, breaks the cloud experience, exposes the network to employees while driving costs and complexity when migrating apps to Azure.

Secure access to applications on Microsoft Azure

Zscaler

Securing with Sophos - Sophos Day Belux 2014

Sophos Benelux

Moving from appliances to cloud security with phoenix children's hospital

Zscaler

Migration to cisco next generation firewall

IT Tech

Skybox is a Risk Analytics brain for security management We provide visibility, intelligence and control to help you manage firewalls and changes, minimize vulnerabilities, and deal with threats --- on one common platform With Skybox, you can visualize your network, prioritize risks in minutes, find attack vectors, and save time through security automation. We help you Take Action Fast! How do we do this? Let’s show you how…

RSA 2014: Skybox Security Risk Analytics Overview

Skybox Security

Tendances (20)

Cisco Connect 2018 Malaysia - Secure data center and mobility solutions

Sasa milic, cisco advanced malware protection

Making AI based monitoring a platform feature with the power of BOSH

Cisco connect winnipeg 2018 accelerating incident response in organizations...

Cloud Access Security Broker (CASB)

Cloud Management for WiFi networks

DevSecOps: control and monitoring of zero-day vulnerabilities.

Top 5 predictions webinar

Using Your Network as a Sensor for Enhanced Visibility and Security

Making AI based monitoring a platform feature with the power of BOSH

SonicWall

2020 09-30 overcoming the challenges of managing a hybrid environment - aws a...

Three ways-zero-trust-security-redefines-partner-access-ch

Virtualized Firewall: Is it the panacea to secure distributed enterprises?

What Comes After VPN?

Secure access to applications on Microsoft Azure

Securing with Sophos - Sophos Day Belux 2014

Moving from appliances to cloud security with phoenix children's hospital

Migration to cisco next generation firewall

RSA 2014: Skybox Security Risk Analytics Overview

Similaire à Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017

Una conoscenza approfondita dei vari aspetti legati al networking di Azure è fondamentale per implementare cloud ibridi in modo sicuro e allo stesso tempo funzionale. In questa sessione saranno esplorati a 360° gli elementi chiave da tenere in considerazione per realizzare architetture di rete ibride, sfruttando al meglio i vari servizi offerti dalla piattaforma Azure, al fine di realizzare la miglior integrazione con l’ambiente on-premises, senza mai trascurare la sicurezza. Durante l’intervento si scenderà nel dettaglio di architetture di rete ibride avanzate, mostrando esempi reali, frutto di un'esperienza diretta sul campo. By Francesco Molfese

CCI2019 - Architecting and Implementing Azure Networking

walk2talk srl

Trisul for Managed Security Service Providers

trisulnsm

Trisul for Managed Security Service Providers

Vivek Rajagopalan

Genian NAC provides network surveillance and performs ongoing compliance checks to ensure that all connected devices are automatically identified, classified, authorized, and given policy-based access control. It also provides all the major features that network managers expect, such as IP Address Management (IPAM), Desktop Configuration Management, WLAN access control, automated IT security operation, IT asset management, and much more. Genians NAC provides both on-premise and cloud-based deployment options, providing for ease of deployment and ongoing management.

Genian NAC Overview

GENIANS, INC.

ISE_2.1_BDM_v3a.pptx

Yaser330700

What is SASE and How Can Partners Talk About it?

QOS Networks

Eximbank security presentation

laonap166

App gate sdp_use_case_secure_cloud_access

Cristian Garcia G.

Palo Alto Networks SASE Deck. A SASE (secure access service edge) architecture combines networking and security as a service functions into a single cloud-delivered service at the network edge. In short, a SASE architecture identifies users and devices, enables secure access, delivers secure access to the appropriate applications, while providing network security from the cloud to protect users, applications, and data regardless of where they are. Combined with Prisma SD-WAN, Palo Alto Networks offers the industry's most complete SASE solution.

palo-alto-networks-sase-overview-deck.pptx

infoeliechahine

Securing the Internet of Things in Smart Buildings!

Memoori

Forcepoint SD-WAN and NGFW + IPS

Larry Austin

Ras pro

choiceone

Ras pro

Datarobotics

Software-defined networking has come onto the scene and changed the way we think about moving packets throughout a network. But it has also morphed into multiple definitions and approaches, driven by both vendors and enterprise customers. But how does security fit into this picture? This talk will discuss the convergence of SDN and security and will try to make sense of them both. Learning Objectives: 1: Understand all types of SDN. 2: Understand SDN and security. 3: Understand how a secure SDN makes a network safer. (Source: RSA Conference USA 2018)

SDN and Security: A Marriage Made in Heaven. Or Not.

Priyanka Aash

2019 10-app gate sdp 101 09a

Cristian Garcia G.

Protección y acceso a tu información y aplicaciones en Azure y O365 – Barracuda

Plain Concepts

Ad enterprise datasheet

Advantec Distribution

ClearPass_Customer_Presentation

RoanVillalobos1

Air defense services_platform_spec_sheet

Advantec Distribution

Shadow IT

Risk Analysis Consultants, s.r.o.

Similaire à Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017 (20)

CCI2019 - Architecting and Implementing Azure Networking

Trisul for Managed Security Service Providers

Genian NAC Overview

ISE_2.1_BDM_v3a.pptx

What is SASE and How Can Partners Talk About it?

Eximbank security presentation

App gate sdp_use_case_secure_cloud_access

palo-alto-networks-sase-overview-deck.pptx

Securing the Internet of Things in Smart Buildings!

Forcepoint SD-WAN and NGFW + IPS

Ras pro

SDN and Security: A Marriage Made in Heaven. Or Not.

2019 10-app gate sdp 101 09a

Protección y acceso a tu información y aplicaciones en Azure y O365 – Barracuda

Ad enterprise datasheet

ClearPass_Customer_Presentation

Air defense services_platform_spec_sheet

Shadow IT

Dernier

Top 10 Most Downloaded Games on Play Store in 2024

SynarionITSolutions

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

Scaling API-first – The story of a global engineering organization

Radu Cotescu

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

A Principled Technologies deployment guide Conclusion Deploying VMware Cloud Foundation 5.1 on next gen Dell PowerEdge servers brings together critical virtualization capabilities and high-performing hardware infrastructure. Relying on our hands-on experience, this deployment guide offers a comprehensive roadmap that can guide your organization through the seamless integration of advanced VMware cloud solutions with the performance and reliability of Dell PowerEdge servers. In addition to the deployment efficiency, the Cloud Foundation 5.1 and PowerEdge solution delivered strong performance while running a MySQL database workload. By leveraging VMware Cloud Foundation 5.1 and PowerEdge servers, you could help your organization embrace cloud computing with confidence, potentially unlocking a new level of agility, scalability, and efficiency in your data center operations.

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Principled Technologies

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

Data Cloud, More than a CDP by Matt Robison

Anna Loughnan Colquhoun

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Dernier (20)

Top 10 Most Downloaded Games on Play Store in 2024

Apidays New York 2024 - The value of a flexible API Management solution for O...

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Scaling API-first – The story of a global engineering organization

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

Partners Life - Insurer Innovation Award 2024

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

How to Troubleshoot Apps for the Modern Connected Worker

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Boost PC performance: How more available memory can improve productivity

🐬 The future of MySQL is Postgres 🐘

Data Cloud, More than a CDP by Matt Robison

A Domino Admins Adventures (Engage 2024)

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

Strategies for Landing an Oracle DBA Job as a Fresher

Axa Assurance Maroc - Insurer Innovation Award 2024

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Exploring the Future Potential of AI-Enabled Smartphone Processors

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017

1. 1 ENTERPRISE SECURITY IN PRACTICE RADU VUNVULEA, OCTOBER 2017 @RADU VUNVULEA

2. ENTERPRISE AND SECURITY

4. RADU VUNVULEA Technology Enthusiast Dreamer Microsoft Azure MVP Speaker & Trainer Writer & Blogger Idealist Software Architecture Crafter

6. SANDBOX Group resources Control Manage

7. DIRECT ACCESS Same network Visible between each other Easy access and control

8. ISOLATION Restric traffic Controls what goes to and from VNET Isolate from outside

9. NSG – TIPS AND TRICKS

10.

11. CROSS SYSTEM COMMUNICATION Specify what can be exchange between systems Full control on inbound and outbound traffic NSG

12.

13. NETWORK VIRTUAL APPLIANCE Control security from only one location Cross location synchronization

14. MONITOR AND AUDIT All traffic goes through virtual appliance Push audit data to on-premises system Firewall, IDS, IPS UDR

15.

16. EXTERNAL TRAFFIC CONTROL Full control of IP Filtering Traffic goes through VPN S2S VPN Internet

17. IPSEC VPN TERMINATED OUTSIDE FIREWALL Cannot be done using S2S VPN VPN terminated before NGFW, inside Virtual Gateway Appliance VPN

18. IPSEC VPN TERMINATED OUTSIDE FIREWALL Cannot be done using S2S VPN VPN terminated before NGFW, inside Virtual Gateway Appliance VPN OpenVPN

19. IPSEC VPN TERMINATED OUTSIDE FIREWALL Appliance plays the role of firewall and VPN Gateway VPN

20. DEVICE AUTHENTICATION USING CERTIFICATES Supported only for Point-to-Site VPN Site-to-Site VPN is connected directly to VPN hardware certificates

21. CASCADED VIRTUAL APPLIANCES Multiple virtual appliances connected together

22. VNET TO VNET CONNECTIVITY Peering – Fast and reliable VPN Gateway – More granular control of what goes in or out Peering / VPN Gateway

23.

24. CENTRAL LOGGING DATA Activity Logs Azure Diagnostic Logs AAD Reporting VM and Cloud Services Storage Analytics Network Security Groups Application Insights Security Alert Configurable, +180 days, 90 days

25. MONITOR AND REACT - OMS

26.

27. API AND INFRASTRUCTURE CHANGES CLOUD SERVICE PROVIDER CAN MAKE CHANGES ONLY AFTER THE NATURE OF CHANGE IS UNDERSTOOD AND A SECURITY ASSESSMENT IS DONE YES • Microsoft announce 12 months in advance any breaking changes at API or functionality level NO • Infrastructure and services change are done on the fly as long as the API or functionality is not altered

28.

29. IDENTITY AND ACCESS MANAGEMENT

30. AZURE ACTIVE DIRECTORY

31.

32. Mitigation

Notes de l'éditeur

Images: https://pixabay.com/en/snail-slug-shell-animal-nature-918899/ https://pixabay.com/en/chain-rust-iron-metal-macro-rusty-566778/ https://pixabay.com/en/directory-traffic-note-shield-road-641914/
https://docs.microsoft.com/en-us/azure/security/azure-log-audit Activity Logs - config Azure Diagnostic Logs - config AAD Reporting – 180 days VM and Cloud Services - config Color map: Configurable +180 days 90 days Storage Analytics - config Network Security Groups – 1 year Application Insights – 90 days Security Alert - config
Migrate to on-prem
https://azure.microsoft.com/en-us/blog/an-introduction-to-eai-bridges/
https://azure.microsoft.com/en-us/blog/an-introduction-to-eai-bridges/
Picture source: https://pixabay.com/en/sting-free-snuff-snuff-2-in-1-snuff-2526043/

Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017

Recommandé

Recommandé

Contenu connexe

Tendances

Tendances (20)

Similaire à Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017

Similaire à Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017 (20)

Dernier

Dernier (20)

Azure Enterprise Security in Practice Radu Vunvulea Codecamp Cluj Napoca Nov 2017

Notes de l'éditeur