Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ Monitor your Azure workload compliance with Azure Security Benchmark

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š Monitor your Azure workload compliance with Azure Security Benchmark


๐Ÿ’ก Newskategorie: Programmierung
๐Ÿ”— Quelle: azure.microsoft.com

The Azure Security Benchmark v1 was released in January 2020ย and is being used by organizations to manage their security and compliance policies for their Azure workloads. We are pleased to share that you can now track and monitor your compliance with the benchmark across your Azure environment in Azure Security Center.

The Azure Security Benchmarkย is a collection of over 90 security best practice recommendations you can employ to increase the overall security and compliance of all your workloads in Azure. The Azure Security Benchmark is based on common compliance frameworks and standards but is tailored to cloud deployments and specifically to Azure workloads. The benchmark provides specific guidance on how these common controls apply to Azure, and what you specifically need to implement in Azure to meet those requirements.

ASB1

Now, not only can you understand the fundamental compliance framework requirements in Azure terms, but you can also measure and track how your own deployed Azure workloads are meeting those requirements at any given time.

Azure Security Center provides built-in automation for monitoring your compliance with the benchmark controls across different Azure resource types and workloads. Azure Security Centerย not only measures your compliance with the controls but also provides actionable recommendations for how to remediate the non-compliant resources and meet the requirements. The benchmark guidance and recommendations are contextualized for each Azure service, making it easier for you to implement the controls for the Azure services you are actively using.

The benchmark can be monitored using the Azure Security Centerย Regulatory Compliance Dashboard. The Azure Security Centerย compliance dashboard enables you to track and monitor industry-driven common compliance frameworks like NIST 800-53, Azure CIS, PCI-DSS, and ISO 27001, among others. To monitor the benchmark in this dashboard, you need to onboard the Azure Security Benchmark as a tracked standard. Once you onboard, you get a clear view of how your currently deployed Azure environment is meeting the benchmark controls. You can use the dashboard to track the status of your Azure resources with respect to benchmark requirements, download a summary report, and improve your compliance posture using Azure Security Centerย remediation guidance and automation.

To onboard the benchmark to your Azure Security Center compliance dashboard, you need to add the Azure Security Benchmark initiative package to your compliance view. You can then view the dashboard and start tracking your compliance status with benchmark controls.

ย The Azure Security Benchmark in the Azure Security Center compliance dashboard

Increasing coverage of the Azure Security Benchmark

The Azure Security Benchmark core requirements are already being met by all major Azure services, and those controls can be monitored and tracked in this dashboard today. With time, coverage will increase even further as Azure services are working to create additional features supporting the full set of security and compliance requirements of the Azure Security Benchmark, and monitors for those.
Here are a couple of recent examples of Azure services providing added capabilities to help you implement the security benchmark:

  • Encrypt sensitive information at rest: In some cases, you may want to use your own encryption key to protect your data. Fifty new services including Azure Cosmos DB and Azure Data Lake now support customer-managed keys for encryption at rest.
  • Protect Azure resources within virtual networks: Private Link allows you to securely access an Azure Service over a private endpoint in your virtual network. Thirteen new services including Azure Kubernetes Service and Azure Data Explorer now support Private Link.

Over time, a larger portion of controls will be supported and will be monitorable using the dashboard.ย 

The Azure Security Benchmark and Secure Score

Secure Score in Azure Security Center is a measure that helps you track your security posture, and effectively and efficiently improve your security by prioritizing the actions most likely to create a risk to your organization. Secure Score is comprised of a set of controls, where each control reflects a certain attack surface. Each control has an associated score (number of points) that represents your vulnerability for that attack surface, along with a set of security recommendations for reducing your vulnerability and improving your security. The cumulative scores for all controls are then used to calculate your overall Secure Score, which is a single KPI measurement representing your security posture.

The underlying security recommendations stipulated by Secure Score are the same as those associated with the Azure Security Benchmark controls. They are comprised of the same set of actions, that ultimately serve the common purpose of maximizing your Azure security posture. The Secure Score adds the additional dimension of threat analysis, risk, and vulnerability to each of those recommendations, and thus helps you prioritize action according to the most significant factors in reducing risk in your environment. The benchmark then illustrates how these security settings and factors apply to compliance framework requirements. It also adds some additional requirements that are compliance-focused but donโ€™t have a direct impact on security risk.
Synergy between Secure Score and the Azure Security Benchmark.ย 

Our recommendation is to use Azure Secure Score view to address misconfigurations starting with the highest priority recommendations.ย  The Azure Security Benchmark view is helpful for understanding your compliance and is sorted by controls rather than score impact.

Summary and next steps

The Azure Security Benchmark compliance dashboard in Azure Security Center can help you continuously track your compliance posture in Azure and improve your Azure workloadsโ€™ adherence to compliance requirements.

Get started now by learning about the Azure Security Benchmark and onboarding the benchmark to the Security Center compliance dashboard.

You can look forward to seeing upcoming releases of the dashboard with additional automation and improved coverage for benchmark controls, as well as extended capabilities to manage compliance controls and additional report types.

We would love to hear your feedback, you can use this link to send us an email.

...



๐Ÿ“Œ Monitor your Azure workload compliance with Azure Security Benchmark


๐Ÿ“ˆ 59.35 Punkte

๐Ÿ“Œ Aembit Announces New Workload IAM Integration with CrowdStrike to Help Enterprises Secure Workload-to-Workload Access


๐Ÿ“ˆ 50.51 Punkte

๐Ÿ“Œ Aembit Announces New Workload IAM Integration with CrowdStrike to Help Enterprises Secure Workload-to-Workload Access


๐Ÿ“ˆ 50.51 Punkte

๐Ÿ“Œ Aembit Announces New Workload IAM Integration with CrowdStrike to Help Enterprises Secure Workload-to-Workload Access


๐Ÿ“ˆ 50.51 Punkte

๐Ÿ“Œ Bugtraq: CA20180329-01: Security Notice for CA Workload Automation AE and CA Workload Control Center


๐Ÿ“ˆ 35.59 Punkte

๐Ÿ“Œ CA Workload Automation AE / CA Workload Control Center SQL Injection / Code Execution


๐Ÿ“ˆ 33.67 Punkte

๐Ÿ“Œ Characterizing a workload and recreating it as a synthetic benchmark


๐Ÿ“ˆ 27.27 Punkte

๐Ÿ“Œ Please Use Streaming Workload to Benchmark Vector Databases


๐Ÿ“ˆ 27.27 Punkte

๐Ÿ“Œ AMD Ryzen Threadripper 7960X im Test: Der 24-Kern-Einsteiger im Workload- und Spiele-Benchmark


๐Ÿ“ˆ 27.27 Punkte

๐Ÿ“Œ VM Setup โ€” Which Virtual Machine is best for your workload in Azure?


๐Ÿ“ˆ 25.35 Punkte

๐Ÿ“Œ Backup and Restore your Azure Database for MySQL - Flexible Server workload | Data Exposed


๐Ÿ“ˆ 25.35 Punkte

๐Ÿ“Œ Learn Live - Authenticate your Azure deployment workflow by using workload identities


๐Ÿ“ˆ 25.35 Punkte

๐Ÿ“Œ How to use Prometheus to monitor containers in Azure Monitor | Azure Friday


๐Ÿ“ˆ 24.42 Punkte

๐Ÿ“Œ Add brand security to your workload


๐Ÿ“ˆ 22.27 Punkte

๐Ÿ“Œ Add brand security to your workload


๐Ÿ“ˆ 22.27 Punkte

๐Ÿ“Œ Azure Load Balancer insights using Azure Monitor for Networks | Azure Friday


๐Ÿ“ˆ 22.2 Punkte

๐Ÿ“Œ Monitoring on Azure HDInsight part 4: Workload metrics and logs


๐Ÿ“ˆ 21.83 Punkte

๐Ÿ“Œ Azure infrastructure as a service (IaaS) for every workload


๐Ÿ“ˆ 21.83 Punkte

๐Ÿ“Œ Office Licensing Service and Azure Cosmos DB part 1: Migrating the production workload


๐Ÿ“ˆ 21.83 Punkte

๐Ÿ“Œ Diving deeper into Azure workload reliability (Part 1) | Well-Architected Framework


๐Ÿ“ˆ 21.83 Punkte

๐Ÿ“Œ Diving deeper into Azure workload reliability (Part 2) | Well-Architected Framework


๐Ÿ“ˆ 21.83 Punkte

๐Ÿ“Œ Integrating a mission-critical workload with Azure landing zones


๐Ÿ“ˆ 21.83 Punkte

๐Ÿ“Œ Geekbench 6: Die neue Benchmark-Suite im Leser-Benchmark


๐Ÿ“ˆ 20.87 Punkte

๐Ÿ“Œ ShiftLeft helps orgs benchmark and validate the accuracy of ShiftLeft CORE using OWASP Benchmark


๐Ÿ“ˆ 20.87 Punkte

๐Ÿ“Œ Pacbot - Platform For Continuous Compliance Monitoring, Compliance Reporting And Security Automation For The Cloud


๐Ÿ“ˆ 20.81 Punkte

๐Ÿ“Œ Pacbot - Platform For Continuous Compliance Monitoring, Compliance Reporting And Security Automation For The Cloud


๐Ÿ“ˆ 20.81 Punkte

๐Ÿ“Œ Learn Live - Monitor the health of your Azure Virtual Machine with Azure Metrics Explorer


๐Ÿ“ˆ 20.72 Punkte

๐Ÿ“Œ Qualys unterstรผtzt die Bewertung und รœberwachung von Azure Assets gemรครŸ CIS Microsoft Azure Foundations Benchmark


๐Ÿ“ˆ 20.43 Punkte

๐Ÿ“Œ Zero Trust Execution as Part of Your Cloud Workload Protection Strategy - Justin Bradley - BSW #181


๐Ÿ“ˆ 20.35 Punkte

๐Ÿ“Œ How to know youโ€™re getting best value out of your Kubernetes and containerized workload investments


๐Ÿ“ˆ 20.35 Punkte

๐Ÿ“Œ Continuously validate your mission-critical workload


๐Ÿ“ˆ 20.35 Punkte

๐Ÿ“Œ Learn Live - Choose the right disk storage for your virtual machine workload


๐Ÿ“ˆ 20.35 Punkte











matomo