Pro Azure Governance and Security

A Comprehensive Guide to Azure Policy, Blueprints, Security Center, and Sentinel

  • Peter De Tender
  • David Rendon
  • Samuel Erskine

Table of contents

  1. Front Matter
    Pages i-xxii
  2. Peter De Tender, David Rendon, Samuel Erskine
    Pages 1-20
  3. Peter De Tender, David Rendon, Samuel Erskine
    Pages 21-28
  4. Peter De Tender, David Rendon, Samuel Erskine
    Pages 29-51
  5. Peter De Tender, David Rendon, Samuel Erskine
    Pages 53-100
  6. Peter De Tender, David Rendon, Samuel Erskine
    Pages 101-179
  7. Peter De Tender, David Rendon, Samuel Erskine
    Pages 181-228
  8. Peter De Tender, David Rendon, Samuel Erskine
    Pages 229-265
  9. Peter De Tender, David Rendon, Samuel Erskine
    Pages 267-310
  10. Back Matter
    Pages 311-317

About this book


Any IT professional can tell you that managing security is a top priority and even more so when working in the cloud. Access to accurate and timely security information is critical, but governance and control must first be enabled. This guide shows you how to take advantage of Azure's vast and powerful built-in security tools and capabilities for your application workloads.

Pro Azure Governance and Security offers a comprehensive look at the governance features available with Microsoft Azure and demonstrates how to integrate them with your hybrid and Azure environments, drawing on the author's experiences from years in the field. Learn about the array of controls implemented within Microsoft Azure from two valuable perspectives: the customer and Microsoft operations.

Beginning with the top-level subscription hierarchy, learn about the most important built-in Azure security services and features, as well as how to use Azure Policies and Blueprints as a means for security and governance. A series of hands-on exercises teaches you the concepts of Azure Governance: how to enable and deploy Azure Security Center, integrate RBAC (role-based access control), and set up Azure Operations and Monitoring. Get introduced to the new Azure Sentinel solution that offers SIEM as a service for security incident management and proactive hunting.

What You'll Learn:

  • Understand different architectural designs for implementing Azure Security
  • Operate and monitor an Azure environment
  • Deploy Azure Governance, Policies, and Blueprints
  • Discover key Azure features that enhance security
  • Implement and confidently access Azure Security Center
  • Get to know Azure Sentinel

This book is for technical engineers, consultants, solution and cloud architects, IT managers, and SecOps teams who need to understand how to integrate governance, security, and compliance in hybrid and Azure environments. A basic understanding of Azure or other public cloud platforms is beneficial, but not required.

Peter De Tender is CEO and Lead Technical Trainer at 007FFFLearning. He has more than 20 years of professional experience in Microsoft infrastructure as a consultant, architect, and trainer and has most recently focused on Microsoft Cloud technologies. Based in Belgium, appreciates teaching others in fun and engaging ways, with a passion for providing readiness workshops on Azure. He is a Microsoft Azure MVP, MCT, and speaker. He tweets @pdtit and @007FFFLearning.

David Rendon is a Microsoft MVP with expertise in Azure, specializing in enterprise data and applications management in cloud environments. He conducts private training classes globally (India, South America, and USA) that help companies migrate critical applications to the cloud and train their staff to be certified cloud architects. He is passionate about travel, action-packed tech days with peers, and getting down in the trenches of technology road maps. He is active on Twitter @DaveRndn.

Samuel Erskine is a cloud solutions architect and senior manager with more than 20 years of experience. He is focused on cloud technologies with an expertise in Microsoft Azure. When it comes to crossing the technology chasm, he is multilingual, speaking both the language of the business and technology to facilitate the delivery of key organizational objectives. He is a Microsoft MVP, published author, speaker, and blogger at He tweets @samerskine.


Azure Azure Governance Azure Security Center Azure Identities Azure Security Single Sign-On Azure Policies Azure Active Directory Encryption Role Based Access Control (RBAC) Cloud Governance Peter De Tender Sam Erskine Dave Rendon

Authors and affiliations

  • Peter De Tender
    • 1
  • David Rendon
    • 2
  • Samuel Erskine
    • 3
  1. 1.DaknamBelgium
  2. 2.AgsMexico
  3. 3.RushdonUK

Bibliographic information