Blue Team

CRW06 Regulatory and Security Compliance from Azure for All Your Servers

11/15/2023

2:00pm - 3:15pm

Level: Advanced

John Joyner

Senior Director, Technology

AccountabilIT

This session focuses on how Azure Arc can be a key provider of security services for your organization. Starting with explaining how Azure Arc extends to your non-Azure servers all the security benefits of Microsoft Defender for Servers—with full multi-cloud support for servers on premises and in AWS and GCP as well as Azure. See how new project management and attestation features in Defender for Cloud plot your organization’s achievable journey to compliance with regulatory frameworks like HIPAA, PCI-DSS, and CMMC Level 3. Optimize your deployments of the Microsoft Sentinel SIEM for monitoring of Azure VMs and Azure Arc servers. We crack open a Logic App that performs security incident geo-tagging of computers to speed incident investigation. We finish with a deep dive into Azure Arc SQL Server, which heavily focuses on SQL Server vulnerability assessments and will give you an appreciation for how Microsoft is delivering new management experiences in the hybrid space.

You will learn:

  • Defender for Cloud has presentation ready reports proving your progress towards regulatory compliance
  • How Azure logic apps really work from a technical and security perspective in SOAR and incident response
  • How to defend against SQL injection attack on any platform, from SQL PaaS to on-prem and AWS IaaS SQL instances