question

CarolinaZamisnicu-1887 avatar image
0 Votes"
CarolinaZamisnicu-1887 asked vipulsparsh-MSFT answered

Audit in Azure security

Good afternoon,

I have a question regarding the my deployment environment.
I want to investigate if every object that is deployed from other entities (like Terraform for example) is secured. I want to ensure that on every deployment the user is asked about the creation/change modifications. For example, if a blob is deployed from Terraform, to ask multiple times if the user is sure about the creation/change. Is there something like this in Azure?
This also includes security groups, if we have for example VNETs exposed to internet that we might have missed to secure in the creation process.
Can you tell me the Azure service that helps in scanning the environment or a diagram that helps in detecting the missing security points that I have in the Azure environment (on resource group level, on objects level etc).
Thank you!

azure-security-center
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

vipulsparsh-MSFT avatar image
0 Votes"
vipulsparsh-MSFT answered

@CarolinaZamisnicu-1887 Thanks fir reaching out.

For checking the security posture of your Azure workloads, we have Azure Security Center which monitors your Azure Resources and give you a score.
It also gives you recommendation about security best practice and report the azure resources which lacks them and also suggest how to improve it.

Azure Security Center enables you to strengthen your security posture. This means it helps you identify and perform the hardening tasks recommended as security best practices and implement them across your machines, data services, and apps. This includes managing and enforcing your security policies, and making sure your Azure virtual machines, non-Azure servers, and Azure PaaS services are compliant. Security Center provides you with the tools you need to have a bird's eye view on your workloads, with focused visibility on your network security estate.

I would suggest you to start from here : https://docs.microsoft.com/en-us/azure/security-center/



If the suggested response helped you resolve your issue, please do not forget to accept the response as Answer and "Up-Vote" for the answer that helped you for benefit of the community.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.