Preface

• Who this book is for
• What this book covers
• To get the most out of this book
• Download the color images
• Download the example code files
• Conventions used
• Get in touch
• Share Your Thoughts

1. Section 1: Implement Identity and Access Security for Azure

2. Chapter 1: Introduction to Azure Security FREE CHAPTER

• Technical requirements
• Shared responsibility model
• Setting up a practice environment
• Summary
• Questions
• Further reading

3. Chapter 2: Understanding Azure AD

• What Azure AD is not (what is Azure AD?)
• Modern authentication protocols
• Azure AD editions
• Azure AD object management
• Summary
• Questions
• Further reading

4. Chapter 3: Azure AD Hybrid Identity

• Technical requirements
• Implementing Azure AD hybrid identity
• Selecting a hybrid identity authentication method
• Implementing password writeback
• Summary
• Questions
• Further reading

5. Chapter 4: Azure AD Identity Security

• Technical requirements
• Implementing Azure AD Password Protection
• Securing Azure AD users with multi-factor authentication (MFA)
• Implementing conditional access policies
• Protecting identities with Azure AD Identity Protection
• Summary
• Question
• Further reading

6. Chapter 5: Azure AD Identity Governance

• Technical requirements
• Protecting privileged access using Azure AD Privileged Identity Management (PIM)
• Configuring PIM access reviews
• Summary
• Questions
• Further reading

7. Section 2: Implement Azure Platform Protection

8. Chapter 6: Implementing Perimeter Security

• Technical requirements
• Securing the Azure virtual network perimeter
• Implementing Azure Distributed Denial of Service (DDoS) Protection
• Implementing Azure Firewall
• Implementing a Web Application Firewall (WAF) in Azure
• Summary
• Questions
• Further reading

9. Chapter 7: Implementing Network Security

• Technical requirements
• Implementing virtual network segmentation
• Implementing platform service network security
• Securing Azure network hybrid connectivity
• Summary
• Question
• Further reading

10. Chapter 8: Implementing Host Security

• Technical requirements
• Using hardened baseline VM images
• Protecting VMs from viruses and malware
• Implementing system update management for VMs
• Implementing vulnerability assessment for VMs
• Encrypting VM disks with Azure Disk Encryption
• Securing management ports with JIT VM access
• Summary
• Questions
• Further reading

11. Chapter 9: Implementing Container Security

• Technical requirements
• An overview of containerization in Azure
• Hands-on exercise – providing resources for the chapter exercises
• Introducing ACR
• ACR security best practices
• Introducing AKS
• AKS security best practices
• Summary
• Questions
• Further reading

12. Section 3: Secure Storage, Applications, and Data

13. Chapter 10: Implementing Storage Security

• Technical requirements
• Azure Storage overview
• Implementing encryption at rest
• Implementing encryption in transit
• Configuring storage account authorization
• Implementing Azure Defender for Storage
• Summary
• Question
• Further reading

14. Chapter 11: Implementing Database Security

• Technical requirements
• Database options in Azure
• Azure SQL deployment options
• Implementing defense in depth for Azure SQL
• Protecting Azure SQL against unauthorized network connections
• Protecting Azure SQL against unauthorized user access
• Protecting Azure SQL against vulnerabilities
• Protecting Azure SQL against data leakage and theft (database encryption)
• Cleaning up resources
• Summary
• Question
• Further reading

15. Chapter 12: Implementing Secrets, Keys, and Certificate Management with Key Vault

• Technical requirements
• Introducing Azure Key Vault
• Understanding secrets, keys, and certificates
• Understanding Key Vault pricing tiers
• Managing access to Key Vault
• Protecting Key Vault resources
• Cleaning up resources
• Summary
• Question
• Further reading

16. Chapter 13: Azure Cloud Governance and Security Operations

• Technical requirements
• Implementing Azure cloud governance
• Understanding logging and monitoring
• Addressing cloud security challenges with Security Center
• Managing security operations with Azure Sentinel
• Cleaning up resources
• Summary
• Questions
• Further reading

17. Assessments

• Chapter 1 – Introduction to Azure Security
• Chapter 2 – Understanding Azure AD
• Chapter 3 – Azure AD Hybrid Identity
• Chapter 4 – Azure AD Identity Security
• Chapter 5 – Azure AD Identity Governance
• Chapter 6 – Implementing Perimeter Security
• Chapter 7 – Implementing Network Security
• Chapter 8 – Implementing Host Security
• Chapter 9 – Implementing Container Security
• Chapter 10 – Implementing Storage Security
• Chapter 11 – Implementing Database Security
• Chapter 12 – Implement Secrets, Keys, and Certificate Management with Key Vault
• Chapter 13 – Azure Cloud Governance and Security Operations
• Why subscribe?

18. Other Books You May Enjoy

• Packt is searching for authors like you
• Share Your Thoughts