Topic:

Using Azure Policy & Initiatives with Azure Security Center for Organizational Governance & Compliance

Abstract:

Challenges arise within a cloud environment when resources can be created that may affect, cost, security, or regulatory jurisdictions. Role-based access control (RBAC) and the principles of least privilege provide levels of restriction to users and groups within the environment as to what resources they can access or create, but they do not set parameters on where they can be created, the level of cost, or the security requirements. Azure policies are created, assigned, and utilized to govern the resources within your Azure subscription. Policies should be put in place based on the business, security, and financial requirements of the organization. This session will explore these three areas and examples of each that can be assigned and monitored.

Speaker:

Dwayne Natwick

Dwayne is an Azure MVP, MCT Regional Lead, and a Cloud Training Architect Lead at Opsgility and Skill Me UP, where I author content and provide live training. I have served many roles over my 30 years of IT experience, including solution engineer and product manager. I am 13x certified in multiple Azure and M365 roles, including Azure Solution Architect Expert, Azure Administrator Associate, Azure Security Engineer Associate, Azure AI Engineer Associate, and M365 Security Administrator Associate.