You're reading from Microsoft Azure Security Technologies Certification and Beyond Gain practical skills to secure your Azure environment and pass the AZ-500 exam

Product type Paperback

Published in Nov 2021

Publisher Packt

ISBN-13 9781800562653

Length 526 pages

Edition 1st Edition

Tools

Azure

Concepts

Cybersecurity

Author (1):

David Okeyode

View More author details

Table of Contents (19) Chapters

Preface

1. Section 1: Implement Identity and Access Security for Azure

2. Chapter 1: Introduction to Azure Security FREE CHAPTER

3. Chapter 2: Understanding Azure AD

4. Chapter 3: Azure AD Hybrid Identity

5. Chapter 4: Azure AD Identity Security

6. Chapter 5: Azure AD Identity Governance

7. Section 2: Implement Azure Platform Protection

8. Chapter 6: Implementing Perimeter Security

9. Chapter 7: Implementing Network Security

10. Chapter 8: Implementing Host Security

11. Chapter 9: Implementing Container Security

12. Section 3: Secure Storage, Applications, and Data

13. Chapter 10: Implementing Storage Security

14. Chapter 11: Implementing Database Security

15. Chapter 12: Implementing Secrets, Keys, and Certificate Management with Key Vault

16. Chapter 13: Azure Cloud Governance and Security Operations

17. Assessments

18. Other Books You May Enjoy

Implementing Azure Defender for Storage

Read, write, and delete requests to the Blob and Files services are logged by the storage service as resource logs. Azure Defender for Storage can ingest these logs and analyze them for suspicious events. Without a service like this, analyzing these logs requires security expertise and a significant amount of time.

When Azure Defender for Storage detects unusual and potentially harmful events, it raises an alert in Security Center for us to investigate and remediate threats. We will cover Security Center in a later chapter:

Figure 10.52 – Enabling Azure Defender for Storage

Azure Defender for Storage can be enabled from the Security blade of a storage account resource in the Azure portal or from the pricing and settings blade in Security Center (Figure 10.52). This can also be enabled at scale using Azure policy.