AzureTracks

Part 2: Visualizing DDoS Defense—Workbooks, Mitigation Reports & GitHub Tooling

Today we start the second phase of our DDoS protection journey—where visibility becomes your superpower, and raw telemetry transforms into strategic insight.

You’ve done the hard work: diagnostic logging is enabled, your DDoS protection plan is active, and telemetry is flowing into Log Analytics. Now it’s time to elevate your defense posture from reactive to predictive. Because in cloud security, knowing what happened isn’t enough—you need to know what’s happening now, and what’s likely to happen next.

Posted on September 18, 2025 7:10 am

Azure

Building the Foundations of Azure DDoS Defense

Today we start a journey into the heart of Azure’s DDoS protection capabilities—not just to check a box, but to build a resilient, observable, and defensible cloud perimeter.

DDoS attacks are no longer rare anomalies. They’re persistent, evolving threats that target everything from public-facing APIs to mission-critical web apps; and while Azure offers built-in protection, the real value comes when you configure it with intention—enabling diagnostics, routing telemetry, and preparing your environment to respond intelligently.

Posted on September 4, 2025 7:03 am

Azure

Compliance in the Cloud: Navigating Azure Security Standards

In today’s article, we explore the digital landscape that businesses face, there are strict regulatory requirements for securing sensitive data, ensuring privacy, and maintaining compliance with industry and government mandates. Whether you’re a startup, enterprise, or regulated entity, Microsoft Azure offers a robust suite of security and compliance solutions designed to simplify compliance management and enhance security posture. We’ll explore some foundations and remove the complexity of how to track your compliance in Microsoft Azure.

Posted on July 10, 2025 7:02 am

Azure

Top Azure Services for Supporting Small Businesses

In today’s digital-first world, small businesses must leverage cost-effective, scalable, and secure cloud solutions to stay competitive. Microsoft Azure offers a powerful ecosystem of cloud services that can help businesses improve efficiency, security, and innovation without requiring extensive technical expertise. One of the biggest advantages of Azure and Microsoft Cloud is the ability to toggle (scale) up or down with your business. I’ve always felt that cloud-based secure identity is a huge advantage, and Entra ID makes it easy to support all the advanced security features without dragging the traditional big costs along.

Posted on June 26, 2025 6:44 am

Azure

Securing Azure Environments: Best Practices

In today’s cloud-powered world, businesses must prioritize security and compliance to safeguard their Azure environments from cyber threats and vulnerabilities. Azure provides a robust suite of security tools and best practices to help organizations fortify their cloud infrastructure, maintain regulatory compliance, and ensure operational resilience. In this post we explore some of the Best Practices for securing Azure environments and walk through the basics of Zero Trust in Azure.

Whether you’re an Azure architect, security engineer, or IT leader, this guide offers comprehensive strategies for securing your deployments, backed by Microsoft’s recommendations. There are many cross-referenced resources from Microsoft’s Security Adoption Framework to help get you started with your Azure security Journey.

Posted on June 12, 2025 7:05 am

Azure

Azure Security Features Explained: Protecting Your Data with Microsoft’s Robust Framework

In today’s digital world, securing sensitive information is a top priority for organizations. Microsoft Azure, one of the leading cloud platforms, offers a comprehensive suite of security features designed to safeguard your data from internal and external threats. This is supported by a solid suite of Security SaaS offerings in the Defender stack, Azure Firewall, network security groups, web application firewalls, and so much more! (But wait — there’s more!) In this article, we’ll explore these features step by step, providing insights on how to implement them effectively.

Today we jump into protecting data in Azure using Microsoft’s native security tooling.

Posted on May 29, 2025 7:02 am

Azure

Zero Trust with Microsoft Security Solutions: An Overview

In today’s rapidly evolving threat landscape, the traditional perimeter-based security model is no longer sufficient. As organizations adopt hybrid work […]

Posted on May 15, 2025 7:00 am

Azure

Strengthening Your Security Posture: The Role of Zero Trust Architecture

In today’s digital landscape, traditional security measures are no longer enough to safeguard sensitive data and resources. Cyber threats are evolving, and organizations must adapt to stay resilient. Enter Zero Trust Architecture—a security framework that’s gaining traction for its ability to mitigate modern risks effectively. Today we explore Zero Trust a bit more, and some simple steps to begin shaping your own organization towards a more secure-by-design mindset.

Posted on May 1, 2025 7:03 am

Azure

Microsoft Defender for Cloud - A defender pictured as a knight with a shield defending against technology threats and badguys!

Onboard a Single Subscription with Microsoft Defender for Cloud

In today’s post we will look at a targeted way to harness the full potential of your Azure security by integrating Microsoft Defender for Cloud with Microsoft Sentinel. This powerful combination allows for advanced threat detection, seamless monitoring, and a unified view of your security posture. We want to select our Sentinel data connectors while being thoughtful. The Microsoft Defender XDR data connector is the modern connector version that we should all use in most cases; but the legacy connector is useful when we have only specific subscriptions that we want to bring into Sentinel. The older, legacy connector, requires the manual selection of the subscriptions to include in the data ingestion; it is the perfect solution if you have a tenant that you only want 2 of the many subscriptions provisioned.

Posted on January 23, 2025 7:15 am

Azure

Detecting Common Email Inbox Rule Manipulation

This article dives deep into the world of Kusto Query Language (KQL) to show you how to create custom analytics rules for detecting high-volume email sends, both internal and external, that might indicate potential security breaches. By leveraging these KQL queries, you can gain valuable insights into your email traffic, identify suspicious patterns, and take proactive measures to safeguard your organization’s data. Targeting a high-risk behaviour from the most recent MDDR, we will explore finding inbox rule compromises on our o365 logs today.

Posted on January 9, 2025 7:00 am

Category: Security