Compute resources are a foundational building block of any public cloud environment. Thus, securing the compute resources in Azure on top of which your applications and digital services run helps avoid unintended disruption to your business by making your services more resilient against cyberattacks—because if you don’t secure compute resources from bad actors, you might have no business at all.
Public cloud environments consist of various building blocks that you can use to build applications and digital services in Azure, such as Azure storage, backup, and recovery services (figure 4.1). They run digital services vital to organizations and their businesses by powering your application code; without them, your applications wouldn’t run.
Thus, you need to consider how to protect your resources from bad actors as well as from people inside your organization who might expose the services through misconfigurations (or misuse). Understanding how to implement security for compute resources in Azure matters greatly. This chapter teaches you how to differentiate between the various Azure security services that can be used to secure compute resources and implement them effectively.