This article is contributed. See the original author and article here.

This blog post has a curation of many Azure Security Center (ASC) resources, organized in a format that can help you to go from absolutely no knowledge in ASC, to design and implement different scenarios. You can use this blog post as a training roadmap to learn more about Azure Security Center.

 

Modules

To become an ASC Ninja, you will need to complete each module. The content of each module will vary, refer to the legend to understand the type of content before clicking in the topic’s hyperlink. The table below summarizes the content of each module:

 

Module

Description

1 – Introducing Azure Security Center

In this module you will familiarize yourself with ASC and understand the use case scenarios. You will also learn about ASC pricing and overall architecture data flow.

2 – Planning Azure Security Center

In this module you will learn the main considerations to correctly plan Azure Security Center deployment. From supported platforms to best practices implementation.

3 – Enhance your Cloud Security Posture using Secure Score

In this module you will learn how to leverage Secure Score to continuous improvement of your cloud security posture. This module includes automation samples that can be used to facilitate secure score adoption and operations.

4 – Cloud Security Posture Management Capabilities in ASC

In this module you will learn how to use the cloud security posture management capabilities available in ASC, which includes vulnerability assessment, inventory, workflow automation and custom dashboards with workbooks.

5 – Regulatory Compliance Capabilities in ASC

In this module you will learn about the regulatory compliance dashboard in ASC and give you insights on how to include additional standards. In this module you will also familiarize yourself with Azure Blueprints for regulatory standards.

6 – Cloud Workload Protection Platform Capabilities in ASC

In this module you will learn how the advanced cloud capabilities in ASC work, which includes JIT, File Integrity Monitoring and Adaptive Application Control.  This module also covers how threat protection works in ASC, the different categories of detections, and how to simulate alerts.

7 – Streaming Alerts and Recommendations to a SIEM Solution

In this module you will learn how to use native ASC capabilities to stream recommendations and alerts to different platforms. You will also learn more about Azure Sentinel native connectivity with ASC. Lastly, you will learn how to leverage Graph Security API to stream alerts from ASC to Splunk.

8 – Integrations and APIs

In this module you will learn about the different integration capabilities in ASC, how to connect Tenable to ASC, and how other supported solutions can be integrated with ASC.

 

Legend

vid.pngProduct videos

webcast.pngWebcast recordings

TechCommunity.pngTech Community

docs.pngDocs on Microsoft

blogs.pngBlogs on Microsoft

GitHub.pngGitHub

external.JPGExternal

InteractiveGuides.pngInteractive guides

 

 

Module 1 – Introducing Azure Security Center

 

Module 2 – Planning Azure Security Center

 

Module 3 – Enhance your Cloud Security Posture using Secure Score

 

Module 4 – Cloud Security Posture Management Capabilities in ASC

 

Module 5 – Regulatory Compliance Capabilities in ASC

 

Module 6 – Cloud Workload Protection Platform Capabilities in ASC

 

Module 7 – Streaming Alerts and Recommendations to a SIEM Solution

 

Module 8 – Integrations and APIs

 

Have a great time ramping up in Azure Security Center and becoming an ASC Ninja!! 

Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.

%d bloggers like this: