Azure Security ☁️🔐

Microsoft Azure security services and configuration.

Core Services

Service	Purpose
Microsoft Defender for Cloud	Cloud security posture management (CSPM)
Microsoft Entra ID	Identity and access management (formerly Azure AD)
Microsoft Sentinel	Cloud-native SIEM (Azure’s SIEM solution)
Azure Firewall	Managed firewall-as-a-service
Azure Bastion	Secure RDP/SSH access without public IPs

Defender for Cloud

Cloud-native CSPM — security posture management and threat protection across Azure workloads.

Security Posture

Secure Score — Overall security posture rating (0-100%)
MSSA — Microsoft Security Score Analytics
Recommendations — Hardening actions prioritized by risk

Threat Protection

Defender for Servers — Runtime protection, alerting
Defender for Storage — Anomaly detection on blob access
Defender for SQL — Vulnerability assessment, threat detection

Entra ID (Azure AD) Security

Conditional Access

{
  "conditions": {
    "signInRiskLevel": "high",
    "devicePlatform": "iOS"
  },
  "grantControls": {
    "operator": "AND",
    "controls": ["blockAccess"]
  }
}

Identity Protection

Risky users — Detect compromised accounts
Risky sign-ins — Anomaly-based risk scoring
MFA enforcement — Conditional access policies

cloudnative wiki

Explorer

Azure Security

Azure Security ☁️🔐

Core Services

Defender for Cloud

Security Posture

Threat Protection

Entra ID (Azure AD) Security

Conditional Access

Identity Protection

Graph View

Table of Contents

Backlinks

cloudnative wiki

Explorer

Azure Security

Azure Security ☁️🔐

Core Services

Defender for Cloud

Security Posture

Threat Protection

Entra ID (Azure AD) Security

Conditional Access

Identity Protection

Related

Graph View

Table of Contents

Backlinks