Azure Security Center Basics

3 minute read

Azure Security Center is the base infrastructure service to collect logs analyze them and generate tailored recommendations. Learn how can you review and fix general, cloud securities and manage security concerns of your resources in Azure. This article will help you to prepare for az-303: Microsoft Azure Architect Technologies.

Azure Security center is a unified infrastructure security management system.

This is your β€œbase layer” for monitoring the security configuration and health of your workloads. Azure Security Center collects events from Azure or log analytics agents and correlates them in a security analytics engine, to provide you with tailored recommendations (hardening tasks). Strengthening your security posture can be achieved by implementing these recommendations.

The Azure Security Center uses a built-in Azure Policy initiative in audit-only mode (the Azure Security Benchmark) as well as Azure Monitor logs and other Azure security solutions like Microsoft Cloud App Security. Learn more here…

Security Challenges

  1. In cloud workloads are changing quickly and we must make sure the developers/devops are following the security best practices while provisioning the resources.
  2. Internet Security attacks risk is always there if your resources are internet facing.
  3. Also Security skills are less with developers.

Solving Security Challenges

  1. Strengthen Security Posture: Using Azure Security Monitor you can examine your resources and give you security reports.
  2. Protect against threats: Azure security monitor can generate security alerts and raises threat prevention suggestions on your Azure resources.
  3. Auto Secure: You can give auto-provisioning to resolve security issues faster.

Resources Protected by Azure Security Center

There are lots of resources which are automatically protected and monitor by security center.

  1. All Azure PaaS resources like DB engine and Storage accounts.
  2. Non-Azure Virtual Machines on cloud or on premises. You must install Log Analytics Agents on them ( both windows and Linux ) supported.
  3. Azure VMs
  4. Security alerts are created when threat is found on the azure workloads. One has to investigate the security alerts.

Security Center on Azure Portal

Overview screen

  1. Secure Score- over all health score
  2. Regulatory compliance - how compliant you are for the resources.
  3. Azure Defender - protects resources against security threats.
  4. Firewall Manager
  5. Insights

Recommendations screen

Displays the Secure Score, security improvement for all resources & their recommendation and Quick fixes.

Security alerts

If there is any security threats found on your resources then you will see alerts here.

Cloud security

Here you can see secure score and check your overall health score plus you can visit the recommendations.


Thanks for reading my article till end. I hope you learned something special today. If you enjoyed this article then please share to your friends and if you have suggestions or thoughts to share with me then please write in the comment box.

Become full stack developer πŸ’»

I teach at Fullstack Master. If you want to become Software Developer and grow your carrier as new Software Engineer or Lead Developer/Architect. Consider subscribing to our full stack development training programs. You will learn Angular, RxJS, JavaScript, System Architecture and much more with lots of hands on coding. We have All-Access Monthly membership plans and you will get unlimited access to all of our video courses, slides, download source code & Monthly video calls.

  • Please subscribe to All-Access Membership PRO plan to access current and future angular, node.js and related courses.
  • Please subscribe to All-Access Membership ELITE plan to get everything from PRO plan. Additionally, you will get access to a monthly live Q&A video call with Rupesh and you can ask doubts/questions and get more help, tips and tricks.

Your bright future is awaiting for you so visit today FullstackMaster and allow me to help you to board on your dream software company as a new Software Developer, Architect or Lead Engineer role.

πŸ’– Say πŸ‘‹ to me!
Rupesh Tiwari
Founder of Fullstack Master
Email: rupesh.tiwari.info@gmail.com
Website: www.rupeshtiwari.com | www.fullstackmaster.net