Azure Security Benchmark

Azure Security Benchmark

Microsoft has published its first Azure Security Benchmark v1 (ASB). ASB inlcudes over 90 security best practice recommendations you can employ to increase the overall security and compliance of all your workloads in Azure.

The ASB controls are based on industry standards and best practices, such as Center for Internet Security (CIS) and NIST.

ASB includes the following control categories:

Network security
Logging and monitoring
Identity and access control
Data protection
Vulnerability management
Inventory and asset management
Secure configuration
Malware defense
Data recovery
Incident response
Penetration tests and red team exercises

ASB is integrated with Azure Security Center allowing you to track, report, and assess your compliance against the benchmark by using the Security Center compliance dashboard.

You can find the full set of controls and the recommendations at the Azure Security Benchmark website.