Security Services : On-Prem Vs Azure
Security Controls
Security controls are safeguards or countermeasures to avoid, detect, counteract, or minimize security risks to physical property, information, computer systems, or other assets. In the field of information security, such controls protect the confidentiality, integrity and availability of information.
So here, we will see the services which used in On-Prem environment to tackle different security concerns. Also We see, how we can leverage the same security feature in Microsoft Azure environment to secure our environment and what are different services can offer same role. It will help you, when you plan to migrate your services to Microsoft Azure or you are preparing for AZ-500 (Microsoft Azure Security Technologies) exam.
Security Services : On-Prem Vs Azure
| On-Prem | Azure |
| Firewall & ACLs | Azure Firewall Network Security Groups |
| IPS/IDS | Azure Firewall Network Security Groups |
| Web Application Firewall | Azure Web Application Firewall (WAF) |
| SIEM & Log Analytics | Azure Sentinel |
| Data Loss Prevention (DLP) | Azure Inf. Protection M365 Compliance Center |
| Key Management | Azure Key Vault |
| Encryption At Rest | Storage Encryption for Data at Rest |
| DDoS Protection | Azure DDoS Protection |
| SSL Decryption Reverse Proxy | Application Gateway |
| Certificate Management | Azure Key Vault |
| Container Security | Azure Defender |
| Identity & Access Management | Azure Active Directory PIM |
| Privileged Access Management (PAM) | Azure AD Privileged Identity Management |
| Multi-Factor Authentication (MFA) | Azure MFA |
| Centralized Logging / Auditing | Azure Monitor Azure Sentinel |
| Load Balancer | Azure Load Balancer |
| LAN | Virtual Network |
| WAN | ExpressRoute |
| VPN | Azure Virtual Network Gateway |
| Governance, Risk & Compliance Monitoring | Azure Security Center M365 Compliance |
| Backup and Recovery | Azure Backup Azure Site Recovery |
| Vulnerability Assessment | Azure Defender Azure Security Center |
| Patch Management | Azure ARC Update Management |
| Change Management | Azure Automation Change Tracking and Inventory |
| IoT Security | Azure Defender for IoT |
| Extended Storage | Azure Data Explorer (ADX) Azure Log Analytics |
| Secure Operation & Management | Azure Bastion |
| Email Protection | Defender for Office 365 |
| Antimalware | Azure Defender |
| Endpoint Protection | Defender For Endpoint Azure Defender |
| File Integrity Monitoring (FIM) | Azure Defender |
| Cloud Access Security Broker (CASB) | Microsoft Cloud App Security (MCAS) |
Hope the content available in post will help you to know all the security services offered by Azure to replace them with On-Prem security service when you plan to migrate.
Stay tuned to learn more about Security Controls in other cloud platforms
Comments