Recommended Security Software

Nick 60 Reputation points
2023-08-31T21:35:33.35+00:00

Hi

What is the recommended security package for Azure Servers? We currently use Sophos on our non Azure cloud servers.

Thank you,

Nick

Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,807 questions
0 comments No comments
{count} votes

Accepted answer
  1. Sina Salam 10,036 Reputation points
    2023-08-31T21:56:13.7233333+00:00

    Hello @Nick ,

    Welcome to Microsoft Q&A and thank you for posting your questions here.

    For more clarity, you were asking the recommended security package for Azure Servers, and you already using Sophos on your on-premises servers.

    Sophos is good with all of its features for on-premises servers and enterprise network solutions, and I have recommended for many enterprises.

    For Microsoft Azure Servers, there is no single recommended security package for Azure Servers, as different scenarios may require different security solutions.

    Microsoft Defender for Cloud is the first line of defense for your resources in Azure. It periodically analyzes the security state of your Azure resources to identify potential security vulnerabilities. It then recommends how to address the vulnerabilities.

    However, Azure provides a variety of security features and capabilities that can help you protect your servers from various threats and vulnerabilities. Some of these features are:

    Azure Disk Encryption

    Azure Security Center

    Azure Firewall

    Azure Backup

    Find recommendations that can improve your security posture on Azure from this links:

    Recommendations that can improve your security.

    Security recommendations for virtual machines in Azure.

    Also, you can read more about Azure Security:

    https://learn.microsoft.com/en-us/azure/security/fundamentals/overview.

    https://azure.microsoft.com/en-us/explore/security/.

    I hope this is helpful! Do not hesitate to let me know if you have any other questions.

    Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.

    Best Regards,

    Sina Salam

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
  1. David Broggy 5,716 Reputation points MVP
    2023-09-04T23:08:36.6066667+00:00

    I would like to add some more specifics:

    Get Defender for Cloud P2

    Go to the Defender for Cloud > Workloads blade and take a look at the workload features you may need.

    See comparison between P1 and P2 here:

    https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-select-plan

    For on-prem servers, I would recommend installing the Azure Arc Agent and then from the Defender for Cloud > Workloads menu you can enable whatever workloads features you like from the list in the link above.

    You can also enable defender for Endpoint from the security.microsoft.com portal but it's recommended to manage all servers through Defender for Cloud for the CSPM and CWPP capabilities.

    (Server VMs in Azure don't need the Arc agent, just on-prem servers)

    References:

    https://learn.microsoft.com/en-us/azure/defender-for-cloud/deploy-vulnerability-assessment-vm


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.