You're reading from Microsoft Cybersecurity Architect Exam Ref SC-100 Get certified with ease while learning how to develop highly effective cybersecurity strategies

Product type Paperback

Published in Jan 2023

Publisher Packt

ISBN-13 9781803242392

Length 272 pages

Edition 1st Edition

Concepts

Cybersecurity

Author (1):

Dwayne Natwick

View More author details

Table of Contents (20) Chapters

Preface

1. Part 1: The Evolution of Cybersecurity in the Cloud

2. Chapter 1: Cybersecurity in the Cloud FREE CHAPTER

3. Part 2: Designing a Zero-Trust Strategy and Architecture

4. Chapter 2: Building an Overall Security Strategy and Architecture

5. Chapter 3: Designing a Security Operations Strategy

6. Chapter 4: Designing an Identity Security Strategy

7. Part 3: Evaluating Governance, Risk, and Compliance (GRC) Technical Strategies and Security Operations Strategies

8. Chapter 5: Designing a Regulatory Compliance Strategy

9. Chapter 6: Evaluating the Security Posture and Recommending Technical Strategies to Manage Risk

10. Part 4: Designing Security for Infrastructure

11. Chapter 7: Designing a Strategy for Securing Server and Client Endpoints

12. Chapter 8: Designing a Strategy for Securing SaaS, PaaS, and IaaS

13. Part 5: Designing a Strategy for Data and Applications

14. Chapter 9: Specifying Security Requirements for Applications

15. Chapter 10: Designing a Strategy for Securing Data

16. Chapter 11: Case Study Responses and Final Assessment/Mock Exam

17. Index

Why subscribe?

18. Other Books You May Enjoy

Appendix: Preparing for Your Microsoft Exam

Designing a strategy to manage secrets, keys, and certificates

Securing secrets, keys, and certificates is as important as securing identities within your cloud and hybrid architectures. Many compliance regulations require customers to manage their keys rather than the cloud provider. Azure allows you to separate these duties with Azure Key Vault. Azure Key Vault is a centralized location where you can protect and manage encryption keys, secrets, and certificates.

Some Azure services use a default configuration for Microsoft-managed keys, such as with Azure Storage accounts. Figure 7.8 shows where you can change that configuration to Customer-managed keys within an Azure storage account: