Create a custom Azure Security Center recommendation with Azure Policy

Create a custom Azure Security Center recommendation with Azure Policy

In Azure Security Center you get a lot of built-in recommendations based on various compliance- and security controls. These are based on industry standards and include things like Azure CIS, PCI DSS, SOC TSP, ISO 27001, and more. However, many organizations have different requirements than the defaults, and sometimes want to introduce additional or modified checks. With Azure Security Center we get the capability to use custom recommendations together with Azure Policy, where we now can define our corporate policies and roll them out as recommendations in ASC. A great way to tailor the experience according to our use cases.…

Read More

Understanding Azure Policies with Visual Studio Code

Understanding Azure Policies with Visual Studio Code

I did not know about this extension until recently. It is currently in preview, and it is supposed to simplify authoring of policies by enabling alias property look-up inline with the resource or policy definition. I like the idea of drafting policies in Visual Studio Code, especially now that I can look at my existing policy definitions directly from within the tool. Let's take that for a spin to see if we check out our Azure policies. Installing the Azure Policy extensionThe extension is available on the Visual Studio Code marketplace, and can be found on the following URL: https:…

Read More