Security in the Microsoft Cloud Adoption Framework for Azure - Architecture: establish a single unified security strategy.Security in the Microsoft Cloud Adoption Framework for Azure - Segmentation: Separate to protect.GS-2: Define and implement enterprise segmentation/separation of duties strategy CIS Controls v8 ID(s)Īzure Guidance: Establish an enterprise-wide strategy to segment access to assets using a combination of identity, network, application, subscription, management group, and other controls.Ĭarefully balance the need for security separation with the need to enable daily operation of the systems that need to communicate with each other and access data.Įnsure that the segmentation strategy is implemented consistently in the workload, including network security, identity and access models, and application permission/access models, and human process controls. Azure Security Best Practice 3 - Process: Assign Accountability for Cloud Security DecisionsĬustomer Security Stakeholders ( Learn more):.Azure Security Best Practice 2 - People: Educate Teams on Cloud Security Technology.Azure Security Best Practice 1 – People: Educate Teams on Cloud Security Journey.Prioritize providing clear accountability for security decisions, educating everyone on the shared responsibility model, and educate technical teams on technology to secure the cloud. GS-1: Align organization roles, responsibilities and accountabilities CIS Controls v8 ID(s)Īzure Guidance: Ensure that you define and communicate a clear strategy for roles and responsibilities in your security organization. Governance and Strategy provides guidance for ensuring a coherent security strategy and documented governance approach to guide and sustain security assurance, including establishing roles and responsibilities for the different cloud security functions, unified technical strategy, and supporting policies and standards.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |