From the course: Microsoft Cybersecurity Architect (SC-100) Cert Prep by Microsoft Press
Join today to access over 25,500 courses taught by industry experts.
Mitigate identified risks
From the course: Microsoft Cybersecurity Architect (SC-100) Cert Prep by Microsoft Press
Mitigate identified risks
Let's use an example scenario where you're a cybersecurity architect that is recommending security capabilities and controls to mitigate and identified risk. During the identification of the risk, you found a production subscription that has ten Azure storage accounts that are widely open to the Internet. Then during the assessment phase, you've determined that five of these storage accounts have low impact in case of compromise. The low impact is because they don't contain any important or intellectual property type information. However, you found the five other storage accounts could have a high impact in case of compromise. Then for the response for the first five is to tolerate the risk. These are okay. It's not going to impact the business. While the other five will need to be improved by adding technical controls to mitigate the risk. In this case, enabling the firewall on the network of the storage account.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
-
(Locked)
Learning objectives42s
-
(Locked)
Evaluate security using benchmarks1m 1s
-
(Locked)
Evaluate security using Defender2m 36s
-
(Locked)
Evaluate security using Secure Score41s
-
(Locked)
Evaluate security of cloud workloads57s
-
(Locked)
Design security with landing zones1m 53s
-
(Locked)
Interpret threat intelligence35s
-
(Locked)
Mitigate identified risks1m 8s
-
(Locked)
-
-
-
-
-