All Categories: cybersecurity(24) sc-100(22) azure(16) microsoft(14) certification(11) productivity(6) linux(5) edgevolt labs(3) shell(3) iot(2) the drive on 17(2) roku(2) zero trust(2) marvel move(2) sendmail(2) marvel(2) packet capture(1) jks(1) pfx(1) michael hyatt(1) budgie(1) key vault(1) security workflows(1) nist(1) microsoft graph(1) verified id(1) mcsb(1) workload security(1) azure blueprints(1) azure landing zone(1) stix(1) taxii(1) data residency(1) azure monitor(1) conditional access(1) cwpp(1) cpsm(1) guardians of the galaxy(1) movie reviews(1) monster hunter now(1) fitness(1) logitech(1) java(1) miscellaneous(1) music(1) networking(1) cooking(1) metasploit(1) recipes(1) movies(1) soccer(1) authentication(1) playlist(1) ubuntu(1) traffic on 17(1) edgevolt radio(1) tcpdump(1) home

[SC-100] Conditional access "what if" tool

More security controls in the market need a feature like this.

August 16, 2023

I'm digging the "What If" tool in Azure Conditional Access component. The idea is simple: as you're building policies, you can throw various scenarios at the policy engine to understand what the heck it'll do.

This gives admins the opportunity to observe effects and perhaps test variations of authentication use . . .

[SC-100] Sensitive Operations Report Workbook

August 16, 2023

Just a friendly reminder that the Microsoft sensitive operations report workbook exists and can be super helpful.

For those unfamiliar, it's an Azure Monitor workbook designed to capture activities/events that could be critical or impactful for Azure AD. Examples include:

Modified application and service . . .

[SC-100] Azure Blueprints vs Azure Landing Zone

August 13, 2023

This was another topic that was a little confusing: what's the difference between Azure Blueprints and Azure Landing Zone?

I came across various Microsoft documentation but it was still a little... vague.

Here's a nice table, provided courtesy of Google Bard:

sb_float_center

(usual disclaimer about AI-provided . . .

[SC-100] The purpose of Azure Subscriptions

August 13, 2023

Azure Subscriptions are (to me at least) an interesting concept/term. I've taken several Microsoft exams involving the topic but to date, I haven't necessarily found a succinct way to describe them. This description in SC-100 training documentation is one of the best I've seen:

Everything starts with a subscription, . . .

Posted in: azure cybersecurity sc-100

[SC-100] Defender for Cloud - Recommendations vs Alerts vs Vulnerability Assessment

August 13, 2023

Maybe it's just me, but I was starting to get a little confused on the differences in Azure workload security options. There's essentially three elements:

"Security Recommendations"
"Alerts"
"Vulnerability Assessment"

What's the difference though? Just for the heck . . .

[SC-100] CWPP vs CSPM

Gotta love acronyms and abbreviations, right?

August 12, 2023

While studying for the SC-100, there's a few terms that kept coming up:

"Cloud Workload Protection Platform" (CWPP)
"Cloud Security Posture Management" (CSPM)

I can infer some context based on the names but I was curious to know exactly what the difference was between them. Thankfully, . . .

[SC-100] Security and agility

August 10, 2023

Another gem from SC-100 study material. Admittedly a little obvious but the thought is expressed very well.

Security needs to become more agile because businesses, government agencies, and other organizations today face a world where services are expected to be provided whenever and wherever people want them.

(Source: . . .

Posted in: azure cybersecurity

← Previous 1 2 3 Next →