New Azure Security Benchmark Foundation helps organizations embrace zero trust
Azure Gov Team
Disclaimer: Customers are wholly responsible for ensuring their own compliance with all applicable laws and regulations. Information provided in this post does not constitute legal advice, and customers should consult their legal advisors for any questions regarding regulatory compliance.
To help organizations stay secure in a zero trust environment, we’re announcing the release of a new sample blueprint, Azure Security Benchmark Foundation, which provides a set of baseline infrastructure patterns to assist in building a secure and compliant Azure environment.
Available in Azure and Azure Government, the Azure Security Benchmark Foundation aids in the deployment of a cloud-based architecture that offers solutions to scenarios with accreditation or compliance requirements. An extension of the Azure Security Benchmark blueprint sample, our new foundational blueprint sample deploys and configures network boundaries, monitoring, and other resources in alignment with policies and other guardrails defined in the Azure Security Benchmark.
Creating an environment based on hub-and-spoke architecture principles, the Azure Security Benchmark Foundation blueprint sample deploys several Azure services to provide a secure, monitored, enterprise-ready foundation. These services include Azure Security Center, Network Watcher, Azure Firewall, Azure Bastion, Azure DDoS Protection, and more (see diagram).
The Azure Security Benchmark Foundation blueprint sample is part of Azure Blueprints which enables cloud architects and central information technology groups to define a repeatable set of Azure resources that implements and adheres to an organization’s standards, patterns, and requirements. Azure Blueprints enable development teams to rapidly build and stand up new environments with the trust they’re building within organizational compliance with a set of built-in components to speed up development and delivery.