Azure Security Handbook: A Comprehensive Guide for Defending Your Enterprise Environment

Did you know that the most common cloud security threats come from misconfigurations, not outside attacks? If not, you are not alone. In the on-premises world, cybersecurity risks were limited to the organization's network, but in the era of cloud computing, both the impact and likelihood of potential risks are significantly higher. With the corresponding advent of DevOps methodology, security is now the responsibility of everyone who is part of the application development lifecycle, not just the security specialists. Using the clear recommendations given in this book, you can reduce the risk to cloud applications in your organization.

This is the book that Azure IT professionals wish they had access to when learning Azure security. It demystifies the multitude of security controls and numerous guidelines for Azure, that quickly lead to learning fatigue and confusion. Throughout the book you will learn how to secure your applications using Azure native security controls. After reading this book, you will know which security guardrails are available, how effective they are and what will be the cost of implementing them. This book is written based on actual scenarios that come from securing enterprise applications and infrastructure running on Azure.

What you will Learn

Remediate Azure application risks by implementing the appropriate security controls and procedures.

Achieve a level of security and stay secure across your Azure environment by setting guardrails to automate secure configurations.

Protect the most common reference workloads according to security best practices.

Design secure access control solutions for your Azure administrative access, as well as Azure application access.

This book is for Cloud security architects and Cloud solution architects who work with Azure.

Karl Ots is a cloud and cybersecurity leader with more than a decade of experience in Microsoft Azure security. He has worked with large enterprises in fields such as technology, manufacturing, and finance. Karl is recognized as a Microsoft Regional Director, a patented inventor, a LinkedIn Learning instructor, and a Microsoft Azure MVP. He holds the Azure Security Engineer, SABSA Foundation SCF, and CISSP certifications. Karl is a frequent speaker on cloud security topics at global conferences such as Microsoft Ignite or (ISC)² Security Congress. He hosts the Cloud Gossip podcast.