• Dana Epp

Best practices for Azure VM security

When working with infrastructure as a service (IaaS) scenarios, Azure virtual machines (VMs) are the main compute workload for organizations that use cloud computing. This fact is especially evident in hybrid scenarios where organizations want to slowly migrate workloads to the cloud. In such scenarios, follow the general security considerations for IaaS, and apply security best practices to all your VMs.

If you want to go deeper, Microsoft has published guidance on VM security best practices based on a consensus of opinion, and they work with current Azure platform capabilities and feature sets.

The guidance covers key VM security best practices, including:

  • VM authentication and access control

  • VM availability and network access

  • Protect data at rest in VMs by enforcing encryption

  • Manage your VM updates

  • Manage your VM security posture

  • Monitor VM performance

If you are responsible for the IaaS in Azure for your company, its worth using this guidance as a baseline... and then consider applying Azure Monitoring and tying back to the Azure Security Center.