Category: Security

Section 8.2 – Mitigate threats using Microsoft Defender for Cloud – Configure and respond to alerts and incidents in Microsoft Defender for Cloud

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/04/2023 0 Comments on Section 8.2 – Mitigate threats using Microsoft Defender for Cloud – Configure and respond to alerts and incidents in Microsoft Defender for Cloud
Posted in Azure, Defender, Identity, SC-200, Security, Study guide

And this is the second part of 8th section on my study guide and today we are looking at recommendations and the alerts and incidents it will create. Again by apologies to all that had to wait as I cut…

Continue Reading Section 8.2 – Mitigate threats using Microsoft Defender for Cloud – Configure and respond to alerts and incidents in Microsoft Defender for Cloud

Section 8.1 – Mitigate threats using Microsoft Defender for Cloud – Configure and respond to alerts and incidents in Microsoft Defender for Cloud

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 16/04/2023 0 Comments on Section 8.1 – Mitigate threats using Microsoft Defender for Cloud – Configure and respond to alerts and incidents in Microsoft Defender for Cloud
Posted in Azure, Defender, SC-200, Security, Study guide

Already in the 8th section on my study guide and today we are looking alerts, automation workflows and remediations. And because this is an huge section to cover, I will cut it in two different posts, my apologies for the…

Continue Reading Section 8.1 – Mitigate threats using Microsoft Defender for Cloud – Configure and respond to alerts and incidents in Microsoft Defender for Cloud

Azure AD External Identities with SAML IdP part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 2 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Azure B2C, Identity, Identity Platform, Security

In this part we will see the end-user experience and what you could use instead of Direct federation. SAML-based External IdP can be also done with federating your cloud-based domains. The idea and the concept is the same but in…

Continue Reading Azure AD External Identities with SAML IdP part 2 of 2

Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/04/2023 0 Comments on Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud
Posted in Azure, Azure ARC, Azure Automation, Defender, Identity, Microsoft Graph, On-premises, SC-200, Security, Study guide

Continuing the journey with Defender for cloud. This time we will see Data source, how to onboard Azure resources and Azure ARC integration. With the exponential rise of cloud services, companies now place a high priority on protecting cloud workloads….

Continue Reading Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud

Azure (AD) recommendations with some explanations

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/04/2023 0 Comments on Azure (AD) recommendations with some explanations
Posted in Azure, Azure AD, Azure Policies, Defender, Identity, Identity Platform, Microsoft Graph, Security

This post is on recommendations, so here is my personal red alert type recommendation for all. You still have 83 days, give or take to establish a migration from ADAL to MSAL. Read from more Learn In the past months…

Continue Reading Azure (AD) recommendations with some explanations

Azure Arc with Defender for cloud

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 07/04/2023 0 Comments on Azure Arc with Defender for cloud
Posted in Azure, Azure ARC, Defender, Hybrid, On-premises, Security

Deploying external server to Defender for Cloud Deploying those servers can be done with the following methods: And this is the reason we are talking about Arc as an onboarding tools. See more here But as many use Azure for…

Continue Reading Azure Arc with Defender for cloud

Azure AD External Identities with SAML IdP part 1 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 1 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Hybrid, Identity, Identity Platform, Security

In the picture above, you can see how Conditional Access will evaluate those guest users. The majority of users who are typically thought of as guests fall into this category. This B2B collaboration user has guest-level access in your organization…

Continue Reading Azure AD External Identities with SAML IdP part 1 of 2

Power Platform and customer-managed encryption key (preview) with some HSM

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2023 0 Comments on Power Platform and customer-managed encryption key (preview) with some HSM
Posted in Azure, Compliance, IAM, Managed HSM, Security

This is huge for all the Power Platform users. Now you can use Key vault to store your key, if you aren’t familiar with concept of Key vault, let me open it a bit. What features will be supported? Power…

Continue Reading Power Platform and customer-managed encryption key (preview) with some HSM

Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2023 0 Comments on Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection
Posted in Azure, Azure AD, Defender, Identity, KQL, SC-200, Security

Then we go to Defender for Cloud and starting with the planning part. Let’s get going! Be sure to check the previous chapters, you will need that information to understand to journey that we are on. Plan and configure Microsoft…

Continue Reading Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Section 5 – Mitigate threats using Microsoft 365 Defender – Manage extended detection and response (XDR) in Microsoft 365 Defender

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/03/2023 0 Comments on Section 5 – Mitigate threats using Microsoft 365 Defender – Manage extended detection and response (XDR) in Microsoft 365 Defender
Posted in Azure, Defender, Identity, KQL, SC-200, Security, Study guide

Today we will be discovering XDR with Microsoft 365 Defender. It will be an central hub for many different scenarios. Although you will have interfaces inside Azure portal for Sentinel and Defender for Cloud but you can get those signals…

Continue Reading Section 5 – Mitigate threats using Microsoft 365 Defender – Manage extended detection and response (XDR) in Microsoft 365 Defender