If you are new to the cloud, then planning is important. Having the right tools to monitor and audit your resources within the cloud is a good start. Microsoft Azure has several tools that can assist.
Azure Monitor is one of the most important services within Azure to monitor services. At the foundation of Azure Monitor is the agent that collects activity and diagnostic logs for services within Azure as well as outside resources.
Information from these agents are presented to the Monitor dashboard. Azure Monitor can be configured to receive network watcher information to determine connectivity issues within the environment.
Alerts can be created that set thresholds that may be a cause for concern with corresponding actions that identify what should be done if these alerts are triggered.
Azure Policy is a service that allows you to assign rules to govern the Azure subscription and resources.
Assigning a policy to a subscription or resource group enforces compliance when creating new resources. They will also audit existing resources against the policy for compliance and allow you to make the adjustments necessary to remediate those resources to comply.
Azure Policy feeds governance and compliance information into Azure Security Center. This information is gathered through assigned policies and initiatives within the subscription or resource groups.
Much of the data collected from the activity logs, service logs, and policies are fed into the Azure Security Center dashboard, such as MFA, updates, policy compliance, and RBAC roles. The security center dashboard can be used as a central source for policy and compliance of security controls.
Azure Security Center provides a central location for monitoring and managing your security posture.
Security Center provides a number of graphics and tools based on best practices that can assist you with:
- Review policy and compliance to regulatory controls
- Monitor resources to best practice security controls
- Review network topology and traffic for potential external threats
- Monitor and alert using advanced threat analysis and global threat intelligence maps
These tools can provide valuable insight into where your company stands in their defense in depth strategy. It will also provide recommendations for improving that strategy.