AZURE SECURITY CENTER

Build next-generation security operations with Cloud and AI

Microsoft uses a wide variety of physical, infrastructure, and operational controls to help secure Azure—but there are additional actions you need to take to help safeguard your workloads. Turn on Security Center to quickly strengthen your security posture and protect against threats.

WHAT IS AZURE SECURITY CENTRE?

SECURITY POSTURE MANAGEMENT FOR YOUR CLOUD WORKLOADS

This feature provides recommendations with numeric values to help you prioritize your responses.

 

Ensure you’re following best practices and fix common misconfigurations for Azure infrastructure as a service (IaaS) and platform as a service (PaaS) resources that may include:

  • Failure to deploy system updates on virtual machines (VMs).

  • Unnecessary exposure to the Internet through public-facing endpoints.

  • Unencrypted data in transit or storage.

 

When you address these, easily deploy Microsoft and partner solutions directly from the Azure portal.

 

Customize your security policy to focus on what you need to—for example, check for web application firewalls or storage encryption—and apply your policy to multiple Azure subscriptions. Gain visibility across your environment to verify compliance with regulatory requirements, such as CIS, PCI DSS, SOC, and ISO.

HOW SECURITY CENTER WORKS

When you activate Security Center, a monitoring agent is deployed automatically into Azure virtual machines. For on-premises VMs, you manually deploy the agent. Security Center begins assessing the security state of all your VMs, networks, applications, and data.

 

Our analytics engines analyze the data and machine learning synthesizes it. Security Center provides recommendations and threat alerts for protecting your workloads. You’ll know right away if there’s been an attack or anomalous activity.

Aggregate your security information in an Azure Monitor workspace for big data querying capabilities. Alternatively, you can query your data through REST APIs, PowerShell cmdlets, or integration with an existing SIEM, such as Azure Sentinel.

©2019 by Velocity Group