Workshop: Microsoft Defender for Cloud Deep Dive

Microsoft Defender for Cloud is an Azure-based service to discover security and compliance deviations in multi-cloud and on-premises environments. It covers IaaS and PaaS resources plus servers deployed in customer datacenters. Defender for Cloud provides insights which let you increase your security and compliance posture by following recommendations based on best practices and frameworks, such as ISO 27001 and CIS.

To us at Bitline, Defender for Cloud is an integral part of an Azure Landing Zone, and vice versa. We see both as complementary components providing great value to customers when combined and applied. We even would say an Azure Landing Zone with Defender for Cloud is a fundamental part of any IaaS and PaaS deployment; we strongly recommend to enable both, regardless what the current state of an existing Azure tenant is or when you build a brand-new one.

Bitline offers a two-day workshop on Microsoft Defender for Cloud as component of an Azure Landing Zone. We look at how the service works, how to deal with recommendations and security threats, how you can use Azure policy and runbooks to automate remediation, and how to simulate attacks against IaaS and PaaS. We do not look at the GUI only but provide insightful tips and experiences right from the field, as our experts are working with countless organizations and have encountered many of the questions you might have, too.

Let us give you a simple example. While many companies have onboarded virtual machines running both in the cloud and on-premises to Microsoft Defender for Cloud, they realize not all of the value possible as they do not have the Guest Configuration extension installed for their VMs. In this situation, you might see the outside of a VM, but not the inside. The outside view would advise you to encrypt the virtual disks of your Windows or Linux VM if they are not already. But without the Guest Configuration extension, you might miss the point that your VM has no security baseline applied internally (like the Microsoft Security Compliance Toolkit baselines for Windows operating systems). Our field experts will guide you on how to solve this by applying Azure policy. We even touch the topic of DevOps in this context to provide a more holistic view on automation.

Are you interested in this two-day workshop? Just send a note to info@bitline.ch, and we will reach out to you.