We are trying to move our legacy systems from onprem to Azure managed instance (paas). I need your 2 cents in following the best security practices on azure managed instance. Could you please let me know if there is specific recommendations that needs to be followed to better security ?