Auditing performed actions and deployed configuration is challenging, and when leveraging the cloud it can be very difficult to understand how to audit effectively. In this course, Design Auditing for Microsoft Azure, you will learn the foundational knowledge necessary to meet the full range of auditing requirements utilizing Azure services. First, you will learn common auditing requirements. Next, you will discover how to gain insight into Azure services and how to effectively interpret and respond to audit conditions. Finally, you will explore how to ensure configuration compliance within Azure. When you’re finished with this course, you will have the skills and knowledge of audit-related technologies needed to ensure compliance and insight for services deployed in Azure.
John Savill is an 11-time MVP, and he holds many Microsoft certifications
including Azure Infrastructure and Azure Architecture specialist. John is
the author of the popular FAQ for Windows and a senior contributing editor
to Windows IT Pro. John has written eight books on Microsoft technologies
including Mastering Microsoft Azure Infrastructure Services and Mastering
Windows Server 2016 Hyper-V.
Course Overview Hi everyone. My name is John Savill, and welcome to my course Design Auditing for Microsoft Azure. I'm a principal technical architect at the Dallas Microsoft Technology Center. And every organization has auditing requirements which could be internally created or mandated by certain regulatory bodies. In this course, we're going to look at how to audit in terms of tracking activities performed, and ensuring deployment configuration compliance. By the end of this course, you'll know how to meet auditing requirements utilizing Azure AD and Azure Services. I hope you'll join me on this journey to learn all about the auditing capabilities in Azure with the Design Auditing for Microsoft Azure course at Pluralsight.
Auditing Foundation Welcome to the Design Auditing for Microsoft Azure course, and this first module, Auditing Foundation. My name is John Savill. I'm a principal technical architect at the Dallas Microsoft Technology Center. You can follow me on Twitter @ntfaqguy, and my blog is at savilltech. com, where I try and keep people updated in the latest videos, trainings, and articles I'm working on. Now the goal for this course is to dive into well, what exactly is auditing, and why do we need to do it, what are some of the auditing solutions available in Azure, and then understanding auditing and retention for the Azure Data Plane, only storage services. In this first module, we're going to explore what is auditing, and there's more to it than we might initially think. Some of the common types and sources for log data, defining audit policies to really drive the behavior around auditing, and looking at some of the other reasons why we may actually audit.
Auditing in Azure Welcome to the Auditing in Azure module. In this module, we're going to dive into well, what Azure Monitor, and we'll see this is really the starting hub for a lot of the monitoring capabilities we'll have, understanding the different types of Azure log data available and the configuration, options about retaining and aggregating the log data to get meaningful insight, leveraging Azure Security Center, Azure Advisor, and Azure Identity Protection as some of those tools to actually get that really useful focused insight information that I can act on, using access reviews, a common type of audit is well, who has access to this thing, this role, this group, so how I can enable that within Azure, using Azure Cloud App Security for insight into cloud service utilization, and then some of the Azure compliance services.
Auditing Azure Data Plane In this module, we're going to explore Auditing the Azure Data Plane. But it's not just auditing, it's also about data protection and also retention. Those can be important requirements for auditing. So we're going to look at what are the types of Azure storage, a quick look at Azure Backup because that can be a mechanism to retain data, looking at the retention and the various replication options around Azure Storage Services and encryption, and then the same for Azure SQL Database and Azure Cosmos DB, the three main types of storage service that are typically used in Azure today.