Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Azure Security Assessments

Teri
April 09, 2019
Technology
0
570

Azure Security Assessments

Find out what you can do to assess the security of your Azure account.

Teri

April 09, 2019
Tweet

More Decks by Teri

See All by Teri
Azure for Auditors
radichel
0
48
Stopping Cloud Breaches
radichel
0
96
Are you ready for a cloud pentest?
radichel
0
200
Top Priorities for Cloud Application Security
radichel
0
51

Other Decks in Technology

See All in Technology
フルカイテン株式会社 採用資料
fullkaiten
0
40k
隣接領域をBeyondするFinatextのエンジニア組織設計 / beyond-engineering-areas
stajima
1
230
形式手法の 10 メートル手前 #kernelvm / Kernel VM Study Hokuriku Part 7
ytaka23
5
750
データの信頼性を支える仕組みと技術
chanyou0311
6
1.6k
株式会社島津製作所_研究開発(集団協業と知的生産)の現場を支える、OSS知識基盤システムの導入
akahane92
1
180
freeeのモバイルエンジニアについて
freee
1
100
メールサーバ管理者のみ知る話
hinono
1
100
LINEヤフー株式会社における音声言語情報処理AI研究開発@SP/SLP研究会 2024.10.22
lycorptech_jp
PRO
2
280
これまでの計測・開発・デプロイ方法全部見せます! / Findy ISUCON 2024-11-14
tohutohu
3
250
AI機能の開発運用のリアルと今後のリアル
akiroom
0
250
製造現場のデジタル化における課題とPLC Data to Cloudによる新しいアプローチ
hamadakoji
0
210
Terraform Stacks入門 #HashiTalks
msato
0
230

Featured

See All Featured
Unsuck your backbone
ammeep
668
57k
How GitHub (no longer) Works
holman
310
140k
Learning to Love Humans: Emotional Interface Design
aarron
273
40k
Designing for humans not robots
tammielis
249
25k
Six Lessons from altMBA
skipperchong
27
3.5k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
191
16k
Designing for Performance
lara
604
68k
Optimising Largest Contentful Paint
csswizardry
33
2.9k
Facilitating Awesome Meetings
lara
49
6.1k
GraphQLの誤解/rethinking-graphql
sonatard
67
10k
Building an army of robots
kneath
302
42k
A Tale of Four Properties
chriscoyier
156
23k

Transcript

  1. None

  2. DIY Azure Security Assessment Tanya Janca Cloud Advocate @SheHacksPurple Teri

    Radichel CEO 2nd Sight Lab @TeriRadichel

  3. @SheHacksPurple @TeriRadichel Do It Yourself, Security Assessment @SheHacksPurple @TeriRadichel

  4. @SheHacksPurple @TeriRadichel This is me. I’m Tanya Janca. AKA: @SheHacksPurple

    WoSEC

  5. @SheHacksPurple @TeriRadichel ~ 25 years in tech professionally Spammed +

    hacked => security focus Taught myself to program, age 12. Cloud security ~ AWS Hero, SANS Landed in networking + telecom Helped Capital One move to cloud Moved to programming Master of Infosec Engineering, GSE Master of Software Engineering 2nd Sight Lab ~ Cloud Security Web + E-commerce Business Training, Assessments, Pentesting Teri Radichel

  6. @SheHacksPurple @TeriRadichel

  7. @SheHacksPurple @TeriRadichel

  8. Why Do It Yourself?

  9. None

  10. @SheHacksPurple @TeriRadichel Out of Scope (for this talk) Rick Rolling

    X

  11. @SheHacksPurple @TeriRadichel Let’s do this.

  12. @SheHacksPurple @TeriRadichel

  13. @SheHacksPurple @TeriRadichel External Azure

  14. @SheHacksPurple @TeriRadichel

  15. @SheHacksPurple @TeriRadichel https://aka.ms/TurnOnMFA

  16. @SheHacksPurple @TeriRadichel https://aka.ms/AzureADandYou

  17. @SheHacksPurple @TeriRadichel

  18. @SheHacksPurple @TeriRadichel

  19. @SheHacksPurple @TeriRadichel

  20. @SheHacksPurple @TeriRadichel

  21. @SheHacksPurple @TeriRadichel

  22. @SheHacksPurple @TeriRadichel

  23. @SheHacksPurple @TeriRadichel

  24. @SheHacksPurple @TeriRadichel

  25. https://aka.ms/ASC-and-me

  26. None

  27. @SheHacksPurple @TeriRadichel https://aka.ms/subscription-coverage

  28. @SheHacksPurple @TeriRadichel https://aka.ms/custom-policy

  29. @SheHacksPurple @TeriRadichel TRUST

  30. @SheHacksPurple @TeriRadichel

  31. @SheHacksPurple @TeriRadichel

  32. @SheHacksPurple @TeriRadichel

  33. @SheHacksPurple @TeriRadichel

  34. @SheHacksPurple @TeriRadichel

  35. @SheHacksPurple @TeriRadichel

  36. @SheHacksPurple @TeriRadichel

  37. @SheHacksPurple @TeriRadichel

  38. @SheHacksPurple @TeriRadichel

  39. @SheHacksPurple @TeriRadichel

  40. @SheHacksPurple @TeriRadichel https://aka.ms/cloud-native-policy

  41. @SheHacksPurple @TeriRadichel https://aka.ms/JustInTime

  42. @SheHacksPurple @TeriRadichel https://aka.ms/JustInTime

  43. @SheHacksPurple @TeriRadichel https://aka.ms/JustInTime

  44. @SheHacksPurple @TeriRadichel https://aka.ms/Azure-PIM “PIM essentially helps you manage the who,

    what, when, where, and why for resources that you care about. ”

  45. @SheHacksPurple @TeriRadichel (Application Whitelisting for servers) https://aka.ms/Adaptive-Controls

  46. @SheHacksPurple @TeriRadichel https://aka.ms/storage-threats

  47. @SheHacksPurple @TeriRadichel

  48. @SheHacksPurple @TeriRadichel https://aka.ms/storage-threats @SheHacksPurple @TeriRadichel https://aka.ms/storage-threats

  49. @SheHacksPurple @TeriRadichel

  50. @SheHacksPurple @TeriRadichel

  51. @SheHacksPurple @TeriRadichel

  52. @SheHacksPurple @TeriRadichel

  53. @SheHacksPurple @TeriRadichel https://aka.ms/Sentinel-by-Azure

  54. @SheHacksPurple @TeriRadichel https://aka.ms/Data-Security

  55. @SheHacksPurple @TeriRadichel @SheHacksPurple @TeriRadichel https://aka.ms/DB-VA

  56. @SheHacksPurple @TeriRadichel

  57. @SheHacksPurple @TeriRadichel

  58. @SheHacksPurple @TeriRadichel

  59. @SheHacksPurple @TeriRadichel • Set scope; only test what is in

    scope • Verify account structure, Identity and Access Control, follow best practices • Set Azure Policies, according to your org’s needs • Turn on Azure Security Center, for all subscriptions • Use Cloud Native Security features: Threat Detection and Adaptive Application Controls, File Integrity Monitoring, Just in Time (JIT) & PIM • Follow Networking best practices; NSGs, Routes, Access to compute and storage, Network Watcher, Azure Firewall, Express Route and Bastion Host • Always be on top of your alerts and logs for Azure WAF and Sentinel • VA everything, especially your SQL databases • Encryption, for your disks and data (in transit and at rest) • Monitor all that can be monitored • Follow the Azure Security Center Recommendations • THEN call a PenTester. :)

  60. @SheHacksPurple @TeriRadichel WE CAN Do It Ourselves. @SheHacksPurple @TeriRadichel

  61. @SheHacksPurple @TeriRadichel Articles & Videos • https://medium.com/microsoftazure/pentesting-azure-thoughts-before-reading- matts-book-4609d14fb61d • https://medium.com/microsoftazure/pentesting-azure-the-report-3bf32fc3d12e

    • https://youtu.be/NHt9KKP3mPg • https://www.cisecurity.org/cis-benchmarks/ • https://www.cisecurity.org/blog/cis-microsoft-azure-foundations-benchmark-v1-0- 0-now-available/ Resources

  62. @SheHacksPurple @TeriRadichel (Follow us?) Tanya Janca Twitter: @SheHacksPurple medium.com/@SheHacksPurple https://dev.to/SheHacksPurple

    YouTube.com/SheHacksPurple Teri Radichel Twitter: @TeriRadichel medium.com/cloud-security https://2ndsightlab.com slideshare.net/TeriRadichel THANK YOU