10 Importance of governance: Azure Policy and Azure Blueprints

 

This chapter covers

  • Understanding Azure Policy
  • Getting started with Azure Policy
  • Custom policies
  • Centralized security policy management
  • Azure Blueprints

Governance in Azure can be seen as a combination of different Azure services you can use to manage your resources and ensure they meet your organization’s guidelines. What does governance have to do with Azure security? I’d like to offer a perspective. In chapter 6, you learned about cloud security posture management and how you can use Microsoft Defender for Cloud to continuously assess the configurations of resources in your environment and detect misconfigurations. New resources can be deployed daily (as can subscriptions).

10.1 What is Azure Policy?

10.2 Getting started with Azure Policy

10.2.1 Azure Policy in action

10.2.2 Scope

10.2.3 Policy effects

10.3 Custom policies

10.4 Centralized security policy management

10.5 Azure Blueprints

10.6 Answers to exercises

Exercise 10.1

Exercise 10.2

Summary