The intention of this course is to teach attendees how to design an Azure network with a Zero Trust architecture.
Ransomware and advanced persistent threats (APTs) have proven how vulnerable traditional network designs are to attack and data theft. Azure offers the opportunity to implement a Zero Trust network architecture. Zero Trust assumes that a breach will happen. With this acceptance, we focus on limiting the ability of the attacker to move, detecting their presence as early as possible, and limiting the damage that they can do.
This two-day course teaches the fundamental concepts of Zero Trust in the networking context. We will go back over the theory of how Azure networking really works so that designs will be based on reality rather than perception. Then we will build up the layers of the network and the defences.
Course Agenda
The training course runs for two days. Each day the class will run as follows:
| Local Time (Dublin if Online) | |
| Start | 09:30 |
| Break (This is flexible) | 10:30-10:45 |
| Lunch | 12:00-13:00 |
| Break (This is flexible) | 14:30-14:45 |
| Finish | 16:00 |
Content
The following content is covered:
- Why do we go to the cloud
- Revisiting the basics
- Routing
- Network Security Groups
- Legacy network designs
- Microsoft Zero Trust
- Secure networks with Zero Trust
- Zero Trust – outside of networking
- Zero Trust hub
- Zero Trust spoke
- Application Gateway / Web Application Firewall (WAF)
- Front Door / Web Application Firewall (WAF)
- DNS
- Network security governance
- Security monitoring
- Encryption in transit
- Multiple hub & spokes
- The complete design
Note that the course is updated to include new content and to improve the delivery of knowledge.
Course Content
Each attendee will get this content:
- The presentation that is used in the class
Cloud Mechanix 