Chapter 16. Azure Security Center and updates

 

Wouldn’t it be great if Azure was smart enough to monitor all of your core application resources and alert you about any security concerns? Or what if your business has security policies already defined (if you don’t have any security policies, please stop right now and make a note to create some!)—how do you ensure that your Azure deployments remain compliant? If you’ve ever gone through an IT security audit, you know how fun it can be to look over a list of misconfigurations applied to your environment, especially the basic security lapses that you know to avoid!

Azure Security Center provides a central location for security alerts and recommendations to be grouped for your review. You can define your own security policies and then let Azure monitor the state of your resources for compliance. In this chapter, we discuss how Security Center can alert you to problems and provide steps to correct them, how you can use just-in-time VM access to control and audit remote connections, and how Update Management keeps your VMs automatically up to date with the latest security patches.

16.1. Azure Security Center

16.2. Just-in-time access

16.3. Azure Update Management

16.4. Lab: Enabling JIT for a Windows VM