- Published 5/12/2021
- 1st Edition
Master a complete strategy for protecting any Azure cloud network environment!
Network security is crucial to safely deploying and managing Azure cloud resources in any environment. Now, two of Microsoft's leading experts present a comprehensive, cloud-native approach to protecting your network, and safeguarding all your Azure systems and assets. Nicholas DiCola and Anthony Roman begin with a thoughtful overview of network security's role in the cloud. Next, they offer practical, real-world guidance on deploying cloud-native solutions for firewalling, DDOS, WAF, and other foundational services all within a best-practice secure network architecture based on proven design patterns.
Two of Microsoft's leading Azure network security experts show how to:
- Review Azure components and services for securing network infrastructure, and the threats to consider in using them
- Layer cloud security into a Zero Trust approach that helps limit or contain attacks
- Centrally direct and inspect traffic with the managed, stateful, Platform-as-a-Service Azure Firewall
- Improve visibility into Azure traffic with Deep Packet Inspection
- Optimize the way network and web application security work together
- Use Azure DDoS Protection (Basic and Standard) to mitigate Layer 3 (volumetric) and Layer 4 (protocol) DDoS attacks
- Enable log collection for Firewall, DDoS, WAF, and Bastion; and configure NSG Flow Logs and Traffic Analytics
- Continually monitor network security with Azure Sentinel, Security Center, and Network Watcher
- Customize queries, playbooks, workbooks, and alerts when Azure's robust out-of-the-box alerts and tools aren't enough
- Build and maintain secure architecture designs that scale smoothly to handle growing complexity
About This Book
- For Security Operations (SecOps) analysts, cybersecurity/information security professionals, network security engineers, and other IT professionals
- For individuals with security responsibilities in any Azure environment, no matter how large, small, simple, or complex
Sample Pages
Download the sample pages (includes Chapter 2)
Table of Contents
Chapter 1 Introduction to Azure Network Security
Chapter 2 Secure Azure Network architectures
Chapter 3 Controlling traffic with Azure Firewall
Chapter 4 Traffic Inspection in Azure Networks
Chapter 5 Secure application delivery with Azure Web Application Firewall
Chapter 6 Mitigating DDoS attacks
Chapter 7 Enabling Network Security log collection
Chapter 8 Security monitoring with Azure Sentinel, Security Center, and Network Watcher
Chapter 9 Combining Azure resources for a wholistic network security strategy