This article is contributed. See the original author and article here.
This blog post has a curation of many Azure Security Center (ASC) resources, organized in a format that can help you to go from absolutely no knowledge in ASC, to design and implement different scenarios. You can use this blog post as a training roadmap to learn more about Azure Security Center.
Modules
To become an ASC Ninja, you will need to complete each module. The content of each module will vary, refer to the legend to understand the type of content before clicking in the topic’s hyperlink. The table below summarizes the content of each module:
|
Module |
Description |
|
1 – Introducing Azure Security Center |
In this module you will familiarize yourself with ASC and understand the use case scenarios. You will also learn about ASC pricing and overall architecture data flow. |
|
2 – Planning Azure Security Center |
In this module you will learn the main considerations to correctly plan Azure Security Center deployment. From supported platforms to best practices implementation. |
|
3 – Enhance your Cloud Security Posture using Secure Score |
In this module you will learn how to leverage Secure Score to continuous improvement of your cloud security posture. This module includes automation samples that can be used to facilitate secure score adoption and operations. |
|
4 – Cloud Security Posture Management Capabilities in ASC |
In this module you will learn how to use the cloud security posture management capabilities available in ASC, which includes vulnerability assessment, inventory, workflow automation and custom dashboards with workbooks. |
|
5 – Regulatory Compliance Capabilities in ASC |
In this module you will learn about the regulatory compliance dashboard in ASC and give you insights on how to include additional standards. In this module you will also familiarize yourself with Azure Blueprints for regulatory standards. |
|
6 – Cloud Workload Protection Platform Capabilities in ASC |
In this module you will learn how the advanced cloud capabilities in ASC work, which includes JIT, File Integrity Monitoring and Adaptive Application Control. This module also covers how threat protection works in ASC, the different categories of detections, and how to simulate alerts. |
|
7 – Streaming Alerts and Recommendations to a SIEM Solution |
In this module you will learn how to use native ASC capabilities to stream recommendations and alerts to different platforms. You will also learn more about Azure Sentinel native connectivity with ASC. Lastly, you will learn how to leverage Graph Security API to stream alerts from ASC to Splunk. |
|
8 – Integrations and APIs |
In this module you will learn about the different integration capabilities in ASC, how to connect Tenable to ASC, and how other supported solutions can be integrated with ASC. |
Legend
|
|
|
|
|
|
|
|
|
|
|
|
Module 1 – Introducing Azure Security Center
What is Azure Security Center
Securing the hybrid cloud with Azure Security Center
Azure Security Center Data Flow
Module 2 – Planning Azure Security Center
Module 3 – Enhance your Cloud Security Posture using Secure Score
Secure Score Over Time Reports
Module 4 – Cloud Security Posture Management Capabilities in ASC
Identify security vulnerabilities workloads managed by ASC
Module 5 – Regulatory Compliance Capabilities in ASC
Regulatory Compliance dashboard and security benchmark
Module 6 – Cloud Workload Protection Platform Capabilities in ASC
Automate JIT VM Access Deployment with PowerShell
- Simulating Alerts in ASC
Module 7 – Streaming Alerts and Recommendations to a SIEM Solution
Module 8 – Integrations and APIs
Have a great time ramping up in Azure Security Center and becoming an ASC Ninja!!
Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.
Recent Comments