Course Description

Don't miss the chance to join a LIVE Online Training with David O’Brien from ARGOS. In this training, you will learn about Azure Cloud Security best practices and effective uses, including core Azure concepts, Azure services, Azure security, and Azure management tools.

Note: If you already have an All Access Pass subscription, this course has been added to your account.

This program runs for six weeks and includes:

  • Weekly live webinars (with recordings and Q&A)
  • Weekly assignments to guide your progress
  • A community of individuals with the same goals
  • A private Facebook group with other participants for sharing reflections, progress, etc. 
  • The chance to ask David O’Brien questions directly in a live training environment


This LIVE Online Training is for YOU if you want to:

  • Understand Azure global infrastructure with its many tools and services
  • Learn how to effectively utilize Azure network security groups and firewalls
  • Manage security baselines and benchmarks
  • Understand advanced security features and best practices 


Course Prerequisites
Knowledge of Active Directory, Entry ID (FKA Azure Active Directory), and Windows operating systems. Scripting experience (PowerShell) is helpful but not required.

Course Schedule

Date and Time for Live Webinars

Dates and start time for the live two-hour webinars:

  • Module 1: Thursday, April 25, 3:00-5:00 PM Central Time (US and Canada)
  • Module 2: Thursday, May 2, 3:00-5:00 PM Central Time (US and Canada)
  • Module 3: Rescheduled - Thursday, May 30, 3:00-5:00 PM Central Time (US and Canada)
  • Module 4: Rescheduled - Wednesday, June 5, 3:00-5:00 PM Central Time (US and Canada)
  • Module 5: Thursday, June 13, 3:00-5:00 PM Central Time (US and Canada)
  • Module 6: Thursday, June 20, 3:00-5:00 PM Central Time (US and Canada)


Course Outline

Module 1: Introduction to Azure Cloud Security

  • Overview of Cloud Security and Introduction of Cloud Security Principles
  • Understanding the Shared Responsibility Model in Azure
  • Understanding the Azure Global Infrastructure
  • Regions and Availability Zones
  • Compliance and Trust Center
  • Monitoring and Logging with Azure Monitor and Defender for Cloud
  • Creating and Configuring Log Analytics
  • Connecting Different Data  Sources to Log Analytics

Module 2: Azure Identity and Access Management

  • Understanding Entra ID (EID)
  • EID Editions and Features
  • Identity Protection
  • Implementing Secure Authentication and Authorization
  • Multi-Factor Authentication (MFA)
  • Role-Based Access Control (RBAC)
  • Entra ID and Azure roles
  • Configuring RBAC on Azure
  • Configuring Privileged Identity Management
  • Using EID Conditional Access
  • Creating Baseline Conditional Access Policies

Module 3: Network Security in Azure

  • Azure Network Security Groups and Firewalls
  • Configuring Network Security Groups (NSGs)
  • Azure Firewall and Its Capabilities
  • Private Endpoints for PaaS
  • Applying Private Endpoints to Azure PaaS for Private Connectivity
  • Configuring Virtual Networks
  • NSG and Net Flow Logs
  • Troubleshooting Network Connections Using Flow Logs
  • Application Gateway and WAF


Module 4: Azure Infrastructure Security

  • Securing Azure Compute Services
  • Virtual Machines and Disk Encryption
  • Azure Update Manager to Manage OS Updates
  • Introduction to Azure Bastion
  • Accessing Private Services via Azure Bastion
  • Security Best Practices for Containers and Kubernetes
  • Azure Storage Security
  • Encryption of Data at Rest and in Transit
  • Secure Access to Storage Accounts
  • Shared Access Signature Best Practices
  • Azure Database Security
  • Cloud Database Security Best Practices


Module 5: Operating Systems Security in Azure

  • Security Baselines and Benchmarks
  • Applying Security Baselines via Defender for Cloud
  • Creating Custom Azure Policies
  • Endpoint Protection: Microsoft Defender for Endpoint
  • Configuring Defender for Endpoint


Module 6: Advanced Security Features and Best Practices

  • Data Protection and Privacy: Azure Key Vault for Managing Secrets
  • Accessing Azure Key Vault Secrets from Other Azure Services
  • Security Monitoring and Response: Microsoft Sentinel as a SIEM Solution
  • Responding to an Incident with Sentinel
  • CSPM, CASB, CIEM, and Other Gartner Acronyms
  • Course Wrap-Up and Review of Key Concepts
  • Certification Paths and Continuing Education Resources

Instructor

David O'Brien

David is the founder of ARGOS Cloud Security, a contextual cloud security SaaS that helps you keep your cloud platforms protected and secure. His fields of interest are mainly everything about cloud security, automation, and architecture. David has been a Microsoft Azure MVP for eight years and a Microsoft Certified Trainer for two years. When he isn’t working (and outside of a pandemic), he tries to spend as much time as possible with his family traveling the world or up in the air flying above it. If you would like to get in touch with David, just send him a tweet @david_obrien.

David O'Brien

Founder of ARGOS Cloud Security