Book Image

Microsoft Azure Security Technologies Certification and Beyond

By : David Okeyode
Book Image

Microsoft Azure Security Technologies Certification and Beyond

By: David Okeyode

Overview of this book

Exam preparation for the AZ-500 means you’ll need to master all aspects of the Azure cloud platform and know how to implement them. With the help of this book, you'll gain both the knowledge and the practical skills to significantly reduce the attack surface of your Azure workloads and protect your organization from constantly evolving threats to public cloud environments like Azure. While exam preparation is one of its focuses, this book isn't just a comprehensive security guide for those looking to take the Azure Security Engineer certification exam, but also a valuable resource for those interested in securing their Azure infrastructure and keeping up with the latest updates. Complete with hands-on tutorials, projects, and self-assessment questions, this easy-to-follow guide builds a solid foundation of Azure security. You’ll not only learn about security technologies in Azure but also be able to configure and manage them. Moreover, you’ll develop a clear understanding of how to identify different attack vectors and mitigate risks. By the end of this book, you'll be well-versed with implementing multi-layered security to protect identities, networks, hosts, containers, databases, and storage in Azure – and more than ready to tackle the AZ-500.

Related Content you might be interested in

Current Title:

Small book image
Microsoft Azure Security Technologies Certification and Beyond
David Okeyode
Nov, 2021 | 526 pages
Small book image
Penetration Testing Azure for Ethical Hackers
Karl Fosaaen | David Okeyode
Nov, 2021 | 352 pages
Small book image
Azure Security Cookbook
Steve Miles
Mar, 2023 | 372 pages
Small book image
Designing and Implementing Microsoft Azure Networking Solutions
David Okeyode
Aug, 2023 | 524 pages
Table of Contents (19 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Download the example code files
Conventions used
Get in touch
Share Your Thoughts
1
Section 1: Implement Identity and Access Security for Azure
Section 1: Implement Identity and Access Security for Azure
Free Chapter
2
Chapter 1: Introduction to Azure Security
Chapter 1: Introduction to Azure Security
Technical requirements
Shared responsibility model
Setting up a practice environment
Summary
Questions
Further reading
3
Chapter 2: Understanding Azure AD
Chapter 2: Understanding Azure AD
What Azure AD is not (what is Azure AD?)
Modern authentication protocols
Azure AD editions
Azure AD object management
Summary
Questions
Further reading
4
Chapter 3: Azure AD Hybrid Identity
Chapter 3: Azure AD Hybrid Identity
Technical requirements
Implementing Azure AD hybrid identity
Selecting a hybrid identity authentication method
Implementing password writeback
Summary
Questions
Further reading
5
Chapter 4: Azure AD Identity Security
Chapter 4: Azure AD Identity Security
Technical requirements
Implementing Azure AD Password Protection
Securing Azure AD users with multi-factor authentication (MFA)
Implementing conditional access policies
Protecting identities with Azure AD Identity Protection
Summary
Question
Further reading
6
Chapter 5: Azure AD Identity Governance
Chapter 5: Azure AD Identity Governance
Technical requirements
Protecting privileged access using Azure AD Privileged Identity Management (PIM)
Configuring PIM access reviews
Summary
Questions
Further reading
7
Section 2: Implement Azure Platform Protection
Section 2: Implement Azure Platform Protection
8
Chapter 6: Implementing Perimeter Security
Chapter 6: Implementing Perimeter Security
Technical requirements
Securing the Azure virtual network perimeter
Implementing Azure Distributed Denial of Service (DDoS) Protection
Implementing Azure Firewall
Implementing a Web Application Firewall (WAF) in Azure
Summary
Questions
Further reading
9
Chapter 7: Implementing Network Security
Chapter 7: Implementing Network Security
Technical requirements
Implementing virtual network segmentation
Implementing platform service network security
Securing Azure network hybrid connectivity
Summary
Question
Further reading
10
Chapter 8: Implementing Host Security
Chapter 8: Implementing Host Security
Technical requirements
Using hardened baseline VM images
Protecting VMs from viruses and malware
Implementing system update management for VMs
Implementing vulnerability assessment for VMs
Encrypting VM disks with Azure Disk Encryption
Securing management ports with JIT VM access
Summary
Questions
Further reading
11
Chapter 9: Implementing Container Security
Chapter 9: Implementing Container Security
Technical requirements
An overview of containerization in Azure
Hands-on exercise – providing resources for the chapter exercises
Introducing ACR
ACR security best practices
Introducing AKS
AKS security best practices
Summary
Questions
Further reading
12
Section 3: Secure Storage, Applications, and Data
Section 3: Secure Storage, Applications, and Data
13
Chapter 10: Implementing Storage Security
Chapter 10: Implementing Storage Security
Technical requirements
Azure Storage overview
Implementing encryption at rest
Implementing encryption in transit
Configuring storage account authorization
Implementing Azure Defender for Storage
Summary
Question
Further reading
14
Chapter 11: Implementing Database Security
Chapter 11: Implementing Database Security
Technical requirements
Database options in Azure
Azure SQL deployment options
Implementing defense in depth for Azure SQL
Protecting Azure SQL against unauthorized network connections
Protecting Azure SQL against unauthorized user access
Protecting Azure SQL against vulnerabilities
Protecting Azure SQL against data leakage and theft (database encryption)
Cleaning up resources
Summary
Question
Further reading
15
Chapter 12: Implementing Secrets, Keys, and Certificate Management with Key Vault
Chapter 12: Implementing Secrets, Keys, and Certificate Management with Key Vault
Technical requirements
Introducing Azure Key Vault
Understanding secrets, keys, and certificates
Understanding Key Vault pricing tiers
Managing access to Key Vault
Protecting Key Vault resources
Cleaning up resources
Summary
Question
Further reading
16
Chapter 13: Azure Cloud Governance and Security Operations
Chapter 13: Azure Cloud Governance and Security Operations
Technical requirements
Implementing Azure cloud governance
Understanding logging and monitoring
Addressing cloud security challenges with Security Center
Managing security operations with Azure Sentinel
Cleaning up resources
Summary
Questions
Further reading
17
Assessments
Assessments
Chapter 1 – Introduction to Azure Security
Chapter 2 – Understanding Azure AD
Chapter 3 – Azure AD Hybrid Identity
Chapter 4 – Azure AD Identity Security
Chapter 5 – Azure AD Identity Governance
Chapter 6 – Implementing Perimeter Security
Chapter 7 – Implementing Network Security
Chapter 8 – Implementing Host Security
Chapter 9 – Implementing Container Security
Chapter 10 – Implementing Storage Security
Chapter 11 – Implementing Database Security
Chapter 12 – Implement Secrets, Keys, and Certificate Management with Key Vault
Chapter 13 – Azure Cloud Governance and Security Operations
Why subscribe?
18
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

What this book covers

Chapter 1, Introduction to Azure Security, helps you to understand how security works in Azure and set up a practice environment.

Chapter 2, Understanding Azure AD, helps you to understand what Azure Active Directory (AD) is and how to implement identity management.

Chapter 3, Azure AD Hybrid Identity, covers how to implement Azure AD hybrid identity and configure its status.

Chapter 4, Azure AD Identity Security, covers how to protect Azure AD identities with advanced identity security best practices.

Chapter 5, Azure AD Identity Governance, covers how to protect privileged access using Azure AD Privileged Identity Management.

Chapter 6, Implementing Perimeter Security, covers how to implement platform perimeter protection to secure Azure workloads.

Chapter 7, Implementing Network Security, covers how to configure network security best practices for IaaS and PaaS.

Chapter 8, Implementing Host Security, covers how to implement host security best practices in Azure.

Chapter 9, Implementing Container Security, covers how to implement container security best practices in Azure.

Chapter 10, Implementing Storage Security, covers how to protect data in Azure Storage using multilayered security.

Chapter 11, Implementing Database Security, covers how to protect Azure SQL databases against unauthorized access, data theft, and vulnerabilities.

Chapter 12, Implementing Secrets, Keys, and Certificates Management with Key Vault, covers how to secure privileged application configuration and credentials using Key Vault.

Chapter 13, Azure Cloud Governance and Security Operations, covers how to implement Azure cloud governance, address cloud security challenges with Security Center, and manage security operations with Azure Sentinel.

Previous Section
Next Section