What is Azure Sentinel?

Azure Sentinel is a security information event management (SIEM) and security orchestration automation response (SOAR) solution.

Sentinel is a cloud-native solution.

How it works

Sentinel sits on top of Log Analytics.

Features and benefits

What it provides, features and benefits:

• It provides intelligent analytics about different threats in IT solutions.
• It provides threat detection and response.

Use Cases

Architecture

Security, monitoring, and compliance

Availability and costs

Differences to other products

What is Azure Security Center?

Azure Security Center is an infrastructure security hygiene tool. It has a lot of recommendations around security hygiene.

Features and Benefits

Azure Security Center Standard has threat protection built-in for the resources that it monitors.

What is Azure Defender?

Azure Defender is an infrastructure security thread alert solution.

What is Azure Kubernetes Service (AKS)?

Azure Kubernetes Service is a fully managed container orchestration service based on the open-source Kubernetes system, available on the Microsoft Azure public cloud.

What is Azure Kubernetes Service (AKS)? (techtarget.com)

Log Analytics is part of the larger Azure Monitor platform.

What is Azure Resource Graph?

Azure Resource Graph is a service in Azure that is designed to extend Azure Resource Management by providing efficient and performant resource exploration with the ability to query at scale across a given set of subscriptions so that you can effectively govern your environment.

These queries provide the following features:

• Ability to query resources with complex filtering, grouping, and sorting by resource properties.
• Ability to iteratively explore resources based on governance requirements.
• Ability to assess the impact of applying policies in a vast cloud environment.
• Ability to detail changes made to resource properties (preview).

What is Azure Resource Graph?

Azure Purview is a unified data governance service that helps you manage and govern your on-premises, multi-cloud, and software-as-a-service (SaaS) data. Easily create a holistic, up-to-date map of your data landscape with automated data discovery, sensitive data classification, and end-to-end data lineage. Empower data consumers to find valuable, trustworthy data.

Azure Purview

Azure Logic Apps is a cloud service that helps you schedule, automate, and orchestrate tasks, business processes, and workflows.

Azure Monitor Private Link Scope (AMPLS) connects private endpoints (and the VNets contained in) to one or more Azure Monitor resources - Log Analytics workspaces and Application Insights components.

Azure Arc simplifies governance and management by delivering a consistent multi-cloud and on-premises management platform. Azure Arc enables you to:

• Manage your entire environment, with a single pane of glass, by projecting your existing non-Azure, on-premises, or other cloud resources into Azure Resource Manager.
• Manage virtual machines, Kubernetes clusters, and databases as if they are running in Azure.
• Use familiar Azure services and management capabilities, regardless of where they live.
• Continue using traditional ITOps, while introducing DevOps practices to support new cloud-native patterns in your environment.
• Configure Custom Locations as an abstraction layer on top of Azure Arc enabled Kubernetes cluster, cluster connect, and cluster extensions.

Today, Azure Arc allows you to manage the following resource types hosted outside of Azure:

• Servers - both physical and virtual machines running Windows or Linux.
• Kubernetes clusters - supporting multiple Kubernetes distributions.
• Azure data services - Azure SQL Managed Instance and PostgreSQL Hyperscale services.
• SQL Server - enroll instances from any location.

For further information visit Azure Arc overview.

Azure Key Vault is a cloud service for securely storing and accessing secrets. A secret is anything you want to tightly control access to, such as API keys, passwords, certificates, or cryptographic keys. Key Vault service supports two types of containers: vaults and managed hardware security module(HSM) pools. Vaults support storing software and HSM-backed keys, secrets, and certificates. Managed HSM pools only support HSM-backed keys. See Azure Key Vault REST API overview for complete details.

Application Insights can monitor Azure cloud service apps for availability, performance, failures, and usage by combining data from Application Insights SDKs with Azure Diagnostics data from your cloud services. With the feedback you get about the performance and effectiveness of your app in the wild, you can make informed choices about the direction of the design in each development lifecycle.

Application Insights, a feature of Azure Monitor, is an extensible Application Performance Management (APM) service for developers and DevOps professionals. Use it to monitor your live applications. It will automatically detect performance anomalies and includes powerful analytics tools to help you diagnose issues and understand what users actually do with your app. It's designed to help you continuously improve performance and usability. It works for apps on various platforms, including .NET, Node.js, Java, and Python hosted on-premises, hybrid, or any public cloud. It integrates with your DevOps process and has connection points to a variety of development tools. It can monitor and analyze telemetry from mobile apps by integrating with Visual Studio App Center.

Log Analytics is a tool in the Azure portal used to edit and run log queries with data in Azure Monitor Logs. You may write a simple query that returns a set of records and then use features of Log Analytics to sort, filter, and analyze them. Or you may write a more advanced query to perform statistical analysis and visualize the results in a chart to identify a particular trend. Whether you work with the results of your queries interactively or use them with other Azure Monitor features such as log query alerts or workbooks, Log Analytics is the tool that you're going to use to write and test them.

For further details, visit Overview of Log Analytics in Azure Monitor.

What is App Service

Azure App Service is an HTTP-based service for hosting web applications, REST APIs, and mobile back ends. You can develop in your favorite language, be it .NET, .NET Core, Java, Ruby, Node.js, PHP, or Python. Applications run and scale with ease on both Windows and Linux-based environments.

App Service not only adds the power of Microsoft Azure to your application, such as security, load balancing, autoscaling, and automated management. You can also take advantage of its DevOps capabilities, such as continuous deployment from Azure DevOps, GitHub, Docker Hub, and other sources, package management, staging environments, custom domain, and TLS/SSL certificates.

With App Service, you pay for the Azure compute resources you use. The compute resources you use are determined by the App Service plan that you run your apps on. For more information, see Azure App Service plans overview.

For further information visit App Service overview