Azure Security Center Wrap - Issue #2
Hi, all and welcome to issue #2 of our sister publication. For those that are new here and don't know, there's also have an Azure Sentinel version of this newsletter that's been going strong for many months now. This particular newsletter here, specific to Azure Security Center, is a direct result of recommendations from you and your peers.
I have to say, the response has been overwhelmingly positive so far. And, if subscriber numbers are an indicator, we're off to a great start. In the past 2 weeks since the first issue delivered, we've seen a steady influx of new subscribers. That's all great stuff!
But, while the steady influx is good to see, that stream of new subscribers has been without your help (for the most part). I know, I know. I've seen some of you promoting and amplifying this newsletter to others over social media and other places. I've seen the internal emails and promotions over Teams channels. So, don't worry...I've seen that work and completely appreciate it.
But, to grow this bi-weekly newsletter into a weekly one, a couple things need to happen:
Promote it! As a newsletter subscriber you've signed-up to be part of this community because you want to be here. Being part of a community comes with the responsibility of participating. But, it doesn't have to be hard. You can accomplish this in the very simple manner of just telling someone about it. Do me a favor and send at least one colleague to the subscriber page this week: https://www.getrevue.co/profile/ASCDefender
Share content! If you find great Azure Security Center content this week - or create great content yourself - share it on one of the social media networks using the #AzureSecurityCenter hashtag. If you do that, I'll most likely find it and include it in the next newsletter issue.
Thanks so much to all of you that are participating and sharing great content already. I really want to see this Azure Security Center community take off and be a fantastic resource for anyone and everyone that needs to know more and do more for Azure security. And, I think you do, too.
We'll talk again in two weeks.
-Rod
Things to Read
Sharing access to Workbooks in Azure Security Center - Microsoft Tech Community — cda.ms Azure Workbooks are a great way of analyzing and visualizing various data in Azure. Azure Security Center (ASC) provides several built-in workbooks to
Customizing Endpoint Protection Recommendation in Azure Security Center - Microsoft Tech Community — cda.ms Azure Security Center assesses your environment and enables you to understand the status of your resources, to help you improve the Security Posture. The
Responding to malware on Azure Storage - by SwiftSolves - SwiftSolves Security on Azure — cda.ms Many cloud customers operating in IaaS and PaaS are looking for a malware detection, av scanning of files, or storage av scanning solution with there Azure Storage accounts (Blobs and Files). This space is still early and there are options today that customers can adopt. Depending on your level of comfort and architecture needs they may move you into a solution. The great news is cloud allows you to adopt and prototype rapidly to fit your security business needs.
Security Monitoring and Posture Management in Multi-Cloud Scenario – Overview – Sam's Corner — cda.ms As many of you already know, I have spent last couple of years purely focusing on security monitoring, leveraging Microsoft security solutions in the cloud. Even though, my work is focused on Microsoft technologies and how to get the most out of the MS security tools I'm more and more working with multi-cloud environments. The…
Improve your Azure Network Infrastructure Security with Complementary Services - Microsoft Tech Community — cda.ms Given the rising number of cyber-attacks and data breaches in recent times, security has become paramount. For a while now, it’s been clear that securing
Validating Azure Defender for App Service Alerts - Microsoft Tech Community — cda.ms Azure Defender for App Service helps organizations be more secure by providing dedicated security analytics for your App Service resources. The purpose of this article is to provide specific guidance on how to validate Azure Defender for App Service alerts, by simulating a suspicious activity on applications running over App Service.
Azure Defender PoC Series - Azure Defender for Kubernetes - Microsoft Tech Community — cda.ms Introduction In this article, I continue the Azure Defender PoC series by providing you with guidelines and considerations for how to successfully perform
Passing AZ-900 Azure Security — www.linkedin.com Here are key points for Azure Security. Thanks to Cloud Academy for the AZ-900 Exam Prep Course.
Things to Watch/Listen To
Regulatory Compliance Workbook | Azure Security Center in the Field #32 — cda.ms In this episode of Azure Security Center in the Field, Tal Cohen joins Yuri Diogenes to share the new Regulatory Compliance Workbook. Tal explains the intent...
KeyNote by Yuri Diogenes | Principal Program Manager at C+AI Security CxE Team at Microsoft — cda.ms India Cloud Security Summit 2021 | KeyNote by Yuri Diogenes | Principal Program Manager at C+AI Security CxE Team at Microsoft
Azure Security Center webinar: Best Practices for Improving Your Secure Score — cda.ms To ensure you hear about future Microsoft Azure Security Center webinars and other developments, make sure you join our community by going to https://aka.ms/...
Things to Have
Azure-Security-Center/Powershell scripts/Vulnerability Solution at main · Azure/Azure-Security-Center · GitHub — cda.ms This script will create new Qualys or Rapid7 vulnerability assessment (VA) solution in Azure Security Center (ASC).
Azure-Security-Center/Workbooks/ASCQualysDashboard at main · Azure/Azure-Security-Center · GitHub — cda.ms This Workbook provides an unified view on the information collected by the Qualys agent running as part of the integrated vulnerability scanner for virtual machines (Standard tier only). In order to take advantage of this integration, deploy the Qualys built-in vulnerability scanner by following the recommendation "Vulnerabilities in your virtual machines should be remediated" for your unhealthy resources.
New Things
Azure Security Center: Public preview updates for August 2021 | Azure updates | Microsoft Azure — cda.ms Public preview enhancements and updates released for Azure Security Center in August 2021.
Azure Security Center: General availability updates for August 2021 | Azure updates | Microsoft Azure — cda.ms New enhancements and updates released for general availability (GA) in Azure Security Center in August 2021.
UPDATED: Become an Azure Security Center Ninja — cda.ms
Azure Security Center Ninja training updates : August 31, 2021
Related Things
How to prepare for CMMC compliance as a defense industrial base supplier using the Microsoft cloud | Microsoft Security Blog — cda.ms While the CMMC Interim Rule allows companies to attest to their compliance with NIST 800-171, the ability to self-attest will eventually be retired. Starting in 2021, a phased-in approach will cause DoD contractors to need certification from an independent Certified Third-Party Assessor Organization (C3PAO). Certification provides the DoD with the assurance that a contractor (prime or sub) can be trusted to store Controlled Unclassified Information (CUI) and Federal Contract Information (FCI). The CMMC model is created and managed by the DoD and confers a cybersecurity “maturity”—the efficacy of process and automation of practices—ranging from “basic” to “advanced.”
News
Government of Nunavut comes back stronger after ransomware attack with Microsoft security solutions — cda.ms Microsoft customer stories. See how Microsoft tools help companies run their business.