Summary
Securing our resources is an iterative process. Although we may have completed all necessary steps to protect our resources, every update or new addition to our project might affect the overall security of the system. The first step is to maintain a security baseline for the resources we are using and the second is to develop a strategy to stay up to date using threat modeling frameworks to be proactive in mitigating possible threats. We saw the STRIDE methodology and the Microsoft Threat Modeling Tool, but there are more frameworks available. For example, we can base the strategy on the MITRE framework and tailor the steps for our organization.
Remember, security in the cloud is a shared responsibility. While Azure provides the tools and infrastructure to secure the cloud environment, it’s up to us to secure our configurations and data.
Cybersecurity has a multi-faceted nature and adversaries are becoming more creative every day. As our cloud ecosystem evolves...