Successfully reported this slideshow.
Your SlideShare is downloading. ×

Integration-Monday-Azure-Governence-Unleashed

Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad

Check these out next

1 of 46 Ad

Integration-Monday-Azure-Governence-Unleashed

Download to read offline

Nino shares his practical experience and insides in solving problems related to Azure Costs and Governance. He also presents some practical techniques he uses to manage some of the most important tasks in Azure using Microsoft Excel, and advanced ideas for developers to combine these tools with Azure.

Nino shares his practical experience and insides in solving problems related to Azure Costs and Governance. He also presents some practical techniques he uses to manage some of the most important tasks in Azure using Microsoft Excel, and advanced ideas for developers to combine these tools with Azure.

Advertisement
Advertisement

More Related Content

More from BizTalk360 (20)

Recently uploaded (20)

Advertisement

Integration-Monday-Azure-Governence-Unleashed

  1. 1. Azure Governance unleashed Integration Monday Speaker: Nino Crudele nino.crudele@live.com
  2. 2. This is and interactive session
  3. 3. About Me • I am a freelance (Consulting focus on Azure Governance and Cybersecurity) • Global Azure Lead @Hexagon • Microsoft Azure MVP since 2006 • Certified Ethical Hacker (CEH) • Blogger and IT community contributor • Hacker and Security Alchemist • Skateboarder for life nino.crudele@live.com
  4. 4. About you • How many of you are using Azure? • How many of you are working in the governance area • How many of you are working in the infrastructure area? • How many of you are working in the development area? • How many of you are working in the management area? • Any big doubt you would like to cover in this session?
  5. 5. My story
  6. 6. A brief introduction about Hexagon •Global company •Working in many sectors •Several Azure EA and subscriptions •Many different internal realities •Many different departments and projects
  7. 7. Some of my first tasks • Who is using Azure and for what? • Are we using Azure correctly? • Provide internal best practices • Provide a consolidate internal cost management. • Recharge departments. • Provide a cost strategy and practice. • How to save costs? • Organize and skill the internal teams • Create internal policies for Azure • Create security strategy • Provide 360 support and advices
  8. 8. What you will learn todayWe know what is best for you! We work in Azure since the 1990!
  9. 9. You don’t know a damn thing about Azure!
  10. 10. Organise resources (Human and Technical)
  11. 11. Human- Organization & teams CEO CFO-CIO- CTO IT – SOC- DEV Internal and Microsoft support Users - Customers
  12. 12. Microsoft Engagement EA/Account Portal Azure AD account.omnimicrosoft.com RBAC
  13. 13. Management Group • A container for Subscriptions • Root is the default one • The Root is tied to the Tenant • A must in enterprise scenarios
  14. 14. Subscription • It is a business contract • Tied to the tenant • A great costs container • Separated for the others subs • Microsoft invoices on subscription
  15. 15. Resource Group • It is a namespace in subscription • Togroupresources • Great to organise resources • Only option to manage costs in single subscription (+Tags)
  16. 16. Dependencies
  17. 17. Naming standards
  18. 18. Costs
  19. 19. Costs Enterprise Company Azure EA Small Business (Single subscription) Use SubscriptionsUse RG and Tags
  20. 20. Costs • Power BI • Cost Management Portal • API Consumption • Third party products (SoftwareONE Italia- Alessandro Colasanti)
  21. 21. Negotiation and Discount
  22. 22. Am I spending to much? Why in US they look so happy?
  23. 23. The Price Sheet
  24. 24. EA Portal
  25. 25. Policies
  26. 26. Prevention with Policies
  27. 27. Network
  28. 28. Internet Latency
  29. 29. The Backbone
  30. 30. Network optimization •EXPRESSROUTE to join the Backbone •TCPIP compression – for example Riverbed •Content Delivery Network (CDN)
  31. 31. Connect from On-premise
  32. 32. Cybersecurity
  33. 33. Most critical areas Azure AD+RBAC Privileged escalation Storage Phishing Ransomware Network DDOS RDP / SSH
  34. 34. Shodan
  35. 35. Internal SOC Organise internal challenges
  36. 36. Kali
  37. 37. Parrot
  38. 38. Azure AD and RBAC
  39. 39. Microsoft Engagement EA/Account Portal Azure AD account.omnimicrosoft.com RBAC
  40. 40. Management Group Resource Group 1 Subscription VMs/Apps/DBs Main tenant provided by Microsoft Tenant The root management group is tied to the main Tenant Root All the sub management groups depends by the Root management group The subscription is contract tied to the Tenant and contained in a management group (in the Root at the first time) A namespace to organise the resources The resource is a single logical entity in the resource group Dependencies
  41. 41. Authentication and Authorization Weakness
  42. 42. Automation • Blueprint • Azure DevOps • Terraform
  43. 43. Questions
  44. 44. Thank you

×