Audit the security of Windows Server IaaS Virtual Machines

Intermediate
Administrator
Solution Architect
Technology Manager
Azure
Azure Cloud Shell
Azure Portal
Azure Virtual Machines

You'll learn about Azure Security Center and how to onboard Windows Server computers to Security Center. You'll also learn about Azure Sentinel, security information and event management (SIEM), and security orchestration, automation and response (SOAR).

Learning objectives

After completing this module, you will be able to:

  • Describe Azure Security Center.
  • Enable Azure Security Center in hybrid environments.
  • Onboard Windows Server computers to Azure Security Center.
  • Implement and assess security policies.
  • Describe Azure Sentinel.
  • Implement SIEM and SOAR.
  • Protect your resources with Azure Security Center.

Prerequisites

In order to get the best learning experience from this module, it's important that you have knowledge and experience of the following:

  • Managing Windows Server operating system and Windows Server workloads in on-premises scenarios, including Active Directory Domain Services (AD DS), Domain Name System (DNS), the Distributed File System (DFS), Microsoft Hyper-V, and file and storage services
  • Common Windows Server management tools
  • Core Microsoft compute, storage, networking, and virtualization technologies
  • On-premises resiliency Windows Server–based compute and storage technologies
  • Implementing and managing ​​infrastructure as a service (IaaS) services in Azure
  • Microsoft Entra ID
  • Security-related technologies (firewalls, encryption, multi-factor authentication)
  • Windows PowerShell scripting
  • Automation and monitoring