Design areas
When we design an end-to-end solution with security in mind, we must focus on multiple areas. We cannot just focus on infrastructure security and leave application security. All the areas we are going to cover in this section should be treated based on the return on investment, as a small misconfiguration can lead to security gaps. The following security areas will be covered in this section:
- Governance
- Identity and access management
- Networking
- Data protection
- Application and services
Let’s start with the first one on the list: governance.
Governance
The first design area we consider is governance. In this section, we will cover the governance checklist, the Azure Security Benchmark, and the reference architecture shared by Microsoft. Governance is about enforcing compliance and measures to check whether the organization is meeting the organizational requirements while deploying resources to Azure. With the help of Azure Policy...
