I have reviewed Azure security Trust Center documentation. I noted that Azure provides security service such as "Antivirus/Antimalware protection", "Intrusion Detection and DDoS".
Reference: http://azure.microsoft.com/en-us/support/trust-center/security/
We have a few questions regarding Microsoft Azure.
- If we want to setup a SIEM to monitor their VMs on Azure, is Azure allow us to collect log from Azure infrastructure (such as Firewall and IDS, Virtual Network device, etc.)?
- We have setup multiple VMs on Azure. Those VMs are hosting web sites. Is it possible for us to setup a self-owned IPS to monitor/capture network traffic between Internet and those VMs?
- Any best practices on enhancing security of VMs on Azure?
Thanks.
Regards, Steve Wong (Hong Kong)