Every organization has varying levels of risk, and as the cloud becomes more popular there are new risks but also new opportunities to mitigate both new and old risks. This course explores ways to think about risk with Azure and how to manage them.
Risk keeps every organization awake at night, and when embracing the cloud the initial perception is that risk will be increased. In this course, Design for Risk Prevention in Microsoft Azure, you’ll gain the ability to not only identify new risk considerations and how to mitigate them, but also how to actually lower the organization’s overall risk through Azure solutions. First, you will learn some basics about types of risk and risk management. Next, you will discover how to mitigate the risks around identity. Finally, you will explore how to identify and address risks related to Azure resources and data. When you’re finished with this course, you will have the skills and knowledge of risk management using Azure services needed to bring risk to an organizationally acceptable level using Microsoft cloud solutions.
John Savill is an 11-time MVP, and he holds many Microsoft certifications
including Azure Infrastructure and Azure Architecture specialist. John is
the author of the popular FAQ for Windows and a senior contributing editor
to Windows IT Pro. John has written eight books on Microsoft technologies
including Mastering Microsoft Azure Infrastructure Services and Mastering
Windows Server 2016 Hyper-V.
Course Overview Hi everyone. My name is John Savill, and welcome to my course, Design for Risk Prevention in Microsoft Azure. I'm a principle technical architect at the Dallas Microsoft Technology Center. There is not a single company that does not have some form of risk. And as customers adopt cloud services, risk types and responsibilities may change. And organization may not know how to best identify and mitigate that risk. In this course, we're going to look at how to identify types of risk in the cloud, then what are the capabilities to identify and mitigate to bring risk within a tolerable limit for the organization. By the end of this course, you'll know risk considerations in the cloud, how to mitigate risk in the cloud and even beyond the cloud using Microsoft solutions. I hope you will join me on this journey to learn all about risk strategy in Azure with the Design for Risk Prevention in Microsoft Azure course at Pluralsight.
An Overview of Risk Welcome to the Design for Risk Prevention in Microsoft Azure course and this first module, An Overview of Risk. My name is John Savill. I'm a principal technical architect at the Dallas Microsoft Technology Center. You can follow me on Twitter @ntfaqguy. My blog is at savilltech. com where I try and keep you updated on the latest things I'm doing. In this course, we're going to dive into well what is risk and how I can manage risk, focusing on identity risk, resource risk, and then data risk. In this module, we're going to look at what exactly is risk, what is the compliance for various Microsoft services, how responsibilities in an organization vary and where those risk responsibilities lie, and then some overall steps to what I can do to minimize risk.
Managing Identity Risk with Azure AD In this module, we're going to explore managing identity risk with Azure Active Directory. We're going to look at identity flow in a hybrid environment so we understand all the various points within the identity flow, how we can protect Active Directory and Azure Active Directory, thinking about mitigations with things like multifactor authentication, conditional access, and privileged identity management, and then auditing Azure Active Directory.
Managing Azure Resource Risk In this module, we're going to explore how I can manage the Azure resource risk. This includes ensuring services are available. Availability is a risk, or not being available rather. Minimizing resource access. I want to protect resources on the network. And a main driver around ensuring compliance, which means I'm mitigating certain risks through configuration, is using declarative state technologies. So how can I leverage those in the cloud? And although our focus is the cloud, most of what we're going to talk about in this module would equally apply to resources I have on-premises.
Managing Data in Azure Risk In this module, we're going to explore Managing Data in Azure Risk. I'm going to break this down into how to keep a secret, types of storage encryption across the range of storage services in Azure, thinking about classifying my data and then leveraging that as part of a data leakage mitigation.