Yuri Diogenes's Blog

Thoughts from a Senior Program Manager @ Microsoft C+AI Security CxE Team

2018: Azure Security Center Year in Review

Last day of the year, and this was a great year for Azure Security Center. Looking back to all...

Author: Yuri Diogenes [MSFT] Date: 12/31/2018

Auditing Changes in Azure Security Center Configuration

Azure Security Center uses Role-Based Access Control (RBAC), which provides built-in roles that can...

Author: Yuri Diogenes [MSFT] Date: 12/07/2018

Holistic Approach to Enhance your Security Posture

This month the ISSA Journal released my article, which is called Holistic Approach to Enhance your...

Author: Yuri Diogenes [MSFT] Date: 11/08/2018

Failed to connect to mdsd error in a Linux machine monitored by Azure Security Center

Some customers are already monitoring Linux machines using Security Center for a quiet sometime,...

Author: Yuri Diogenes [MSFT] Date: 10/22/2018

Unable to start Azure ATP Service

Take in consideration a scenario where you deployed Azure ATP, and after the service has worked for...

Author: Yuri Diogenes [MSFT] Date: 09/14/2018

Exploring Microsoft Antimalware Alert in Azure Security Center

Azure Security Center leverages Microsoft Antimalware engine to trigger antimalware related alerts...

Author: Yuri Diogenes [MSFT] Date: 08/20/2018

Using Azure Monitor to send an Email Notification for Azure Security Center Alerts

Azure Security Center allows you to provide a security contact that will receive email notifications...

Author: Yuri Diogenes [MSFT] Date: 08/01/2018

Recap of Microsoft Inspire + Ready

Last week I had the opportunity to attend Microsoft Inspire and Ready in Las Vegas. It was great to...

Author: Yuri Diogenes [MSFT] Date: 07/24/2018

Azure Essentials

What if you had a place where you could quickly learn more about Azure Security, track your learning...

Author: Yuri Diogenes [MSFT] Date: 07/13/2018

New Azure Security Center Dashboard

Today we released the new Azure Security Center dashboard, and in the video below I present a quick...

Author: Yuri Diogenes [MSFT] Date: 06/18/2018

File Integrity Monitoring in Azure Security Center

Following the previous posts about new Azure Security Center capabilities that we released at RSA...

Author: Yuri Diogenes [MSFT] Date: 05/11/2018

Azure Security Center Integration with Windows Defender Advanced Threat Protection for Servers

At RSA Security Conference this year we announced that Security Center now harnesses the power of...

Author: Yuri Diogenes [MSFT] Date: 05/09/2018

Enhance your Cybersecurity Posture to Handle Current Threats

Last January, Erdal Ozkaya and I released a new book called Cybersecurity - Attack and Defense...

Author: Yuri Diogenes [MSFT] Date: 05/09/2018

Leveraging Azure Security Center Capabilities in a PCI DSS Compliant Environment

It is important to start this conversation by saying that PCI DSS encompasses more than Azure...

Author: Yuri Diogenes [MSFT] Date: 05/03/2018

Integrated Security Configuration for your Azure VM

Last week I wrote about the new Azure Security Center Network Map, today I want to talk about the...

Author: Yuri Diogenes [MSFT] Date: 05/01/2018

Azure Security Center Network Map

Last week at RSA Security Conference we announced a new set of capabilities in Azure Security...

Author: Yuri Diogenes [MSFT] Date: 04/24/2018

Incident Management Implementation Guidance for Azure and Office365

Couple of months ago I had had a great opportunity to be among the contributors/reviewers of this...

Author: Yuri Diogenes [MSFT] Date: 04/12/2018

Going beyond the signature with behavior analytics in Azure Security Center

One of the benefits of using Azure Security Center as your cloud workload protection is the...

Author: Yuri Diogenes [MSFT] Date: 03/29/2018

Exploring the Identity & Access dashboard in Azure Security Center

In Azure Security Center you can use the Identity & Access dashboard to explore more details...

Author: Yuri Diogenes [MSFT] Date: 03/24/2018

Detecting Suspicious PowerShell Activity in Azure Security Center

Adversaries may use PowerShell scripts as a defense evasion technique, or to establish persistence....

Author: Yuri Diogenes [MSFT] Date: 03/20/2018

Detecting Persistence in Azure Security Center

According to Mitre Adversarial Tactics, Techniques & Common Knowledge (ATT&CK), Persistence...

Author: Yuri Diogenes [MSFT] Date: 03/14/2018

Considerations Regarding Azure Security Center Adoption

One common question that I receive from customers is: how do I fit Azure Security Center in my...

Author: Yuri Diogenes [MSFT] Date: 03/10/2018

Integrating Azure Function with Azure Security Center Playbook

The Playbook feature in Azure Security Center leverages Azure Logic Apps to create a comprehensive...

Author: Yuri Diogenes [MSFT] Date: 02/24/2018

Testing Azure Security Center Detections Capabilities

When you first onboard your VMs/Computers in Azure Security Center, and the Microsoft Monitoring...

Author: Yuri Diogenes [MSFT] Date: 02/21/2018

Exploring Notable Events in Security Incidents

Azure Security Center is able to identify threats that may compromise your system in different...

Author: Yuri Diogenes [MSFT] Date: 01/26/2018

Azure Advisor Integration with Azure Security Center

First of all, Azure Advisor is super cool, it’s basically one-stop-shop for recommendations...

Author: Yuri Diogenes [MSFT] Date: 01/18/2018

Detecting attempts to run untrusted code by using trusted executables in Azure Security Center

In February 2017, FireEye documented a sophisticated spear phishing campaign targeting individuals...

Author: Yuri Diogenes [MSFT] Date: 01/13/2018

Creating Custom Notable Event in Azure Security Center

In Azure Security Center you can use the Events dashboard to see the security events (including...

Author: Yuri Diogenes [MSFT] Date: 01/12/2018

Hybrid Cloud Workload Protection with Azure Security Center

In case you missed due the holidays, we released a new Microsoft Virtual Academy fully dedicated to...

Author: Yuri Diogenes [MSFT] Date: 01/04/2018

Exporting Computers that are not Compliant with Security Baseline Recommendations in Azure Security Center

To enhance your security posture you must ensure that your computers are using the appropriate...

Author: Yuri Diogenes [MSFT] Date: 12/28/2017

Azure Security Center Overview Page Updated

If you are using Azure Security Center, and you use the Overview page as your main dashboard, you...

Author: Yuri Diogenes [MSFT] Date: 12/28/2017

Azure Security Center User Voice

I started working with Azure Security Center in July 2015 when it was still only available for some...

Author: Yuri Diogenes [MSFT] Date: 12/21/2017

Upcoming Azure Security Center Book

Following the great success of the Azure Security Infrastructure book, Tom and I signed another...

Author: Yuri Diogenes [MSFT] Date: 12/18/2017

Installing Azure Security Center Agent on Linux Computer

You probably know that Security Center can monitor your Linux computers, right? You also know how to...

Author: Yuri Diogenes [MSFT] Date: 12/13/2017

Using Azure Activity Log to query security alerts originated by Azure Security Center

By now you know that you can use Azure Security Center dashboard to visualize Security Alerts, and...

Author: Yuri Diogenes [MSFT] Date: 12/01/2017

Using Search in Security Center to find Indicators of Compromise

Indicators of Compromise (IoC) are individually-known malicious events that indicate that a network,...

Author: Yuri Diogenes [MSFT] Date: 10/25/2017

Searching for suspicious user in Azure Security Center

Last September during my presentation with Meir at Ignite, we talked about how powerful the new...

Author: Yuri Diogenes [MSFT] Date: 10/20/2017

Validating Connectivity with Azure Security Center

Azure Security Center is now hybrid, which means that you can connect computers that are located...

Author: Yuri Diogenes [MSFT] Date: 10/13/2017

Incident Response in Hybrid Cloud

I had a great time yesterday at Hacker Halted, my presentation was packed with great security...

Author: Yuri Diogenes [MSFT] Date: 10/11/2017

Ignite 2017 - Azure Security Center Domination!

I've been to all editions of Microsoft Ignite so far, 2015 in Chicago, 2016 in Atlanta, 2017 in...

Author: Yuri Diogenes [MSFT] Date: 09/30/2017

Updates in Azure Security Center – September 2017 – Part 3

Here another wave of new features that were released today, this time in public preview, but fully...

Author: Yuri Diogenes [MSFT] Date: 09/20/2017

Updates in Azure Security Center – September 2017 - Part 2

You thought we were done, didn't you? Nope, it ain't over yet, and here are the new articles that...

Author: Yuri Diogenes [MSFT] Date: 09/14/2017

Updates in Azure Security Center - September 2017

Today we are releasing a series of updates for Azure Security Center, and these updates are fully...

Author: Yuri Diogenes [MSFT] Date: 09/13/2017

Presentation at Ignite 2017 and New Book

This year I will be at Ignite working at the Azure Security Center booth, and I will also be...

Author: Yuri Diogenes [MSFT] Date: 08/28/2017

Azure Security Center - June Updates

I would like to share with you some updates that we had during this month in the Azure Security...

Author: Yuri Diogenes [MSFT] Date: 06/28/2017

Mobile Application Management

Another great video from the Enterprise Mobility + Security Team, this one shows how to minimize the...

Author: Yuri Diogenes [MSFT] Date: 06/14/2017

Azure Information Protection Scenarios

Just a quick follow up on my post about the demo video series from the Enterprise Mobility +...

Author: Yuri Diogenes [MSFT] Date: 06/01/2017

Respond to advanced threats with Azure Active Directory identity protection

The EMS + Security Team released a new series of demo videos with different common scenarios that...

Author: Yuri Diogenes [MSFT] Date: 06/01/2017

Leveraging Microsoft Enterprise Mobility + Security (EMS) to Protect against Cyberattacks

I’ve been working with EMS since 2013 (when it was not really EMS – but the idea of People Centric...

Author: Yuri Diogenes [MSFT] Date: 05/19/2017

Cloud Security can Enhance your Overall Security Posture

This month I took my Microsoft hat off, and wrote a vendor agnostic paper about Cloud Security. In...

Author: Yuri Diogenes [MSFT] Date: 05/11/2017

Next>