Check out my ISACA Presentation
Security Hybrid Networks
https://msuspartners.eventbuilder.com/SCIThreatProtectionTI
And here is a copy of the slides.
Microsoft Security Workshops
(note: you need to be a vendor to get to some of these sites)
https://aka.ms/SecurityWorkshop
Microsoft Licensing Maps
Getting Started with Azure Lighthouse
https://docs.microsoft.com/en-us/azure/lighthouse/how-to/onboard-customer
https://github.com/Azure/Azure-Lighthouse-samples/
To start, register a tenant with your ‘lighthouse tenant’
Github: Azure Lighthouse – Subscription Deployment
Next, add another ARM template to add more resources
Microsoft Cloud Training and Education
new links for 2022 (that I didn’t find in 2021…)
lots of new training here (2022):
https://msuspartners.eventbuilder.com/microsoftsecurityandcompliance
Full list of study guides!!!
Tips for Architects
Sample Architectures (LOTs here):
CyberSecurity Reference Architecture
https://docs.microsoft.com/en-us/security/cybersecurity-reference-architecture/mcra
Cloud for IT Architect Illustrations
Steps on moving to a ‘modern’, Zero Trust architecture
- Moving away from VPN by publishing the apps via Azure AD App Proxy (per-app vpn)
- Modernize the app by moving the data/process to SaaS products
- Isolate the app/data by implementing Windows Virtual Desktop (running in Azure) – useful for when you don’t own the endpoint
- Isolate the data using DLP on Windows, Office, MCAS, and anywhere else (MIP integration)
- Monitor all user app/data access via Azure AD Auth with MCAS session controls (includes AWS, SaaS, etc)
Microsoft Well Architected Framework
https://www.microsoft.com/azure/partners/well-architected
Well Architected Assessment Tool
Simple-Security 