Microsoft to announce Azure Security Center updates at RSA 2018

A screenshot of the Azure Security Center | Source

Microsoft announced updates to Azure Security Center ahead of the RSA 2018 conference. A new overview dashboard is aimed at improving visibility at the organization level, rather than the subscription level. Users will be able to set security policies specific to different management groups in an organization. The program will output breakdown and compliance scores for different subscription and management groups.

With the updates, Microsoft focused on securing IaaS resources, by expanding security configuration for virtual machines (VMs) created in Azure. Azure Security Center issue security state overviews for VMs as well as mitigation recommendations. The addition of the Identity & Access Management section offers users the ability to discover if access controls are enabled along with the ability to assess apps, data, and multifactor authentication settings.

For users concerned about brute force attacks, Microsoft included Just-in Time VM access that allows access to VM management ports only as needed. Adaptive application controls issue recommendations for scripts and MSI file types, and group VMs running comparable apps. The program's interactive topology visualizes subnet, virtual network, and node connections to help users spot missing web application firewalls or network security groups. Among the new features, Microsoft also added file integrity monitoring, container monitoring, and server configuration assessments to spot potential vulnerabilities in IIS web servers ...