Yuri Diogenes's Blog
Thoughts from a Senior Program Manager @ Microsoft C+AI Security CxE Team
2018: Azure Security Center Year in Review
Last day of the year, and this was a great year for Azure Security Center. Looking back to all...
Date: 12/31/2018
Auditing Changes in Azure Security Center Configuration
Azure Security Center uses Role-Based Access Control (RBAC), which provides built-in roles that can...
Date: 12/07/2018
Holistic Approach to Enhance your Security Posture
This month the ISSA Journal released my article, which is called Holistic Approach to Enhance your...
Date: 11/08/2018
Failed to connect to mdsd error in a Linux machine monitored by Azure Security Center
Some customers are already monitoring Linux machines using Security Center for a quiet sometime,...
Date: 10/22/2018
Unable to start Azure ATP Service
Take in consideration a scenario where you deployed Azure ATP, and after the service has worked for...
Date: 09/14/2018
Exploring Microsoft Antimalware Alert in Azure Security Center
Azure Security Center leverages Microsoft Antimalware engine to trigger antimalware related alerts...
Date: 08/20/2018
Using Azure Monitor to send an Email Notification for Azure Security Center Alerts
Azure Security Center allows you to provide a security contact that will receive email notifications...
Date: 08/01/2018
Recap of Microsoft Inspire + Ready
Last week I had the opportunity to attend Microsoft Inspire and Ready in Las Vegas. It was great to...
Date: 07/24/2018
Azure Essentials
What if you had a place where you could quickly learn more about Azure Security, track your learning...
Date: 07/13/2018
New Azure Security Center Dashboard
Today we released the new Azure Security Center dashboard, and in the video below I present a quick...
Date: 06/18/2018
File Integrity Monitoring in Azure Security Center
Following the previous posts about new Azure Security Center capabilities that we released at RSA...
Date: 05/11/2018
Azure Security Center Integration with Windows Defender Advanced Threat Protection for Servers
At RSA Security Conference this year we announced that Security Center now harnesses the power of...
Date: 05/09/2018
Enhance your Cybersecurity Posture to Handle Current Threats
Last January, Erdal Ozkaya and I released a new book called Cybersecurity - Attack and Defense...
Date: 05/09/2018
Leveraging Azure Security Center Capabilities in a PCI DSS Compliant Environment
It is important to start this conversation by saying that PCI DSS encompasses more than Azure...
Date: 05/03/2018
Integrated Security Configuration for your Azure VM
Last week I wrote about the new Azure Security Center Network Map, today I want to talk about the...
Date: 05/01/2018
Azure Security Center Network Map
Last week at RSA Security Conference we announced a new set of capabilities in Azure Security...
Date: 04/24/2018
Incident Management Implementation Guidance for Azure and Office365
Couple of months ago I had had a great opportunity to be among the contributors/reviewers of this...
Date: 04/12/2018
Going beyond the signature with behavior analytics in Azure Security Center
One of the benefits of using Azure Security Center as your cloud workload protection is the...
Date: 03/29/2018
Exploring the Identity & Access dashboard in Azure Security Center
In Azure Security Center you can use the Identity & Access dashboard to explore more details...
Date: 03/24/2018
Detecting Suspicious PowerShell Activity in Azure Security Center
Adversaries may use PowerShell scripts as a defense evasion technique, or to establish persistence....
Date: 03/20/2018
Detecting Persistence in Azure Security Center
According to Mitre Adversarial Tactics, Techniques & Common Knowledge (ATT&CK), Persistence...
Date: 03/14/2018
Considerations Regarding Azure Security Center Adoption
One common question that I receive from customers is: how do I fit Azure Security Center in my...
Date: 03/10/2018
Integrating Azure Function with Azure Security Center Playbook
The Playbook feature in Azure Security Center leverages Azure Logic Apps to create a comprehensive...
Date: 02/24/2018
Testing Azure Security Center Detections Capabilities
When you first onboard your VMs/Computers in Azure Security Center, and the Microsoft Monitoring...
Date: 02/21/2018
Exploring Notable Events in Security Incidents
Azure Security Center is able to identify threats that may compromise your system in different...
Date: 01/26/2018
Azure Advisor Integration with Azure Security Center
First of all, Azure Advisor is super cool, it’s basically one-stop-shop for recommendations...
Date: 01/18/2018
Detecting attempts to run untrusted code by using trusted executables in Azure Security Center
In February 2017, FireEye documented a sophisticated spear phishing campaign targeting individuals...
Date: 01/13/2018
Creating Custom Notable Event in Azure Security Center
In Azure Security Center you can use the Events dashboard to see the security events (including...
Date: 01/12/2018
Hybrid Cloud Workload Protection with Azure Security Center
In case you missed due the holidays, we released a new Microsoft Virtual Academy fully dedicated to...
Date: 01/04/2018
Exporting Computers that are not Compliant with Security Baseline Recommendations in Azure Security Center
To enhance your security posture you must ensure that your computers are using the appropriate...
Date: 12/28/2017
Azure Security Center Overview Page Updated
If you are using Azure Security Center, and you use the Overview page as your main dashboard, you...
Date: 12/28/2017
Azure Security Center User Voice
I started working with Azure Security Center in July 2015 when it was still only available for some...
Date: 12/21/2017
Upcoming Azure Security Center Book
Following the great success of the Azure Security Infrastructure book, Tom and I signed another...
Date: 12/18/2017
Installing Azure Security Center Agent on Linux Computer
You probably know that Security Center can monitor your Linux computers, right? You also know how to...
Date: 12/13/2017
Using Azure Activity Log to query security alerts originated by Azure Security Center
By now you know that you can use Azure Security Center dashboard to visualize Security Alerts, and...
Date: 12/01/2017
Using Search in Security Center to find Indicators of Compromise
Indicators of Compromise (IoC) are individually-known malicious events that indicate that a network,...
Date: 10/25/2017
Searching for suspicious user in Azure Security Center
Last September during my presentation with Meir at Ignite, we talked about how powerful the new...
Date: 10/20/2017
Validating Connectivity with Azure Security Center
Azure Security Center is now hybrid, which means that you can connect computers that are located...
Date: 10/13/2017
Incident Response in Hybrid Cloud
I had a great time yesterday at Hacker Halted, my presentation was packed with great security...
Date: 10/11/2017
Ignite 2017 - Azure Security Center Domination!
I've been to all editions of Microsoft Ignite so far, 2015 in Chicago, 2016 in Atlanta, 2017 in...
Date: 09/30/2017
Updates in Azure Security Center – September 2017 – Part 3
Here another wave of new features that were released today, this time in public preview, but fully...
Date: 09/20/2017
Updates in Azure Security Center – September 2017 - Part 2
You thought we were done, didn't you? Nope, it ain't over yet, and here are the new articles that...
Date: 09/14/2017
Updates in Azure Security Center - September 2017
Today we are releasing a series of updates for Azure Security Center, and these updates are fully...
Date: 09/13/2017
Presentation at Ignite 2017 and New Book
This year I will be at Ignite working at the Azure Security Center booth, and I will also be...
Date: 08/28/2017
Azure Security Center - June Updates
I would like to share with you some updates that we had during this month in the Azure Security...
Date: 06/28/2017
Mobile Application Management
Another great video from the Enterprise Mobility + Security Team, this one shows how to minimize the...
Date: 06/14/2017
Azure Information Protection Scenarios
Just a quick follow up on my post about the demo video series from the Enterprise Mobility +...
Date: 06/01/2017
Respond to advanced threats with Azure Active Directory identity protection
The EMS + Security Team released a new series of demo videos with different common scenarios that...
Date: 06/01/2017
Leveraging Microsoft Enterprise Mobility + Security (EMS) to Protect against Cyberattacks
I’ve been working with EMS since 2013 (when it was not really EMS – but the idea of People Centric...
Date: 05/19/2017
Cloud Security can Enhance your Overall Security Posture
This month I took my Microsoft hat off, and wrote a vendor agnostic paper about Cloud Security. In...
Date: 05/11/2017