Comprehensive Azure and SIEM Deployment
Denis Aptula
Cloud Infrastructure Architect
Cloud Security Engineer
Cybersecurity
Azure
Overview
This project transitioned the client’s infrastructure to a secure Azure cloud environment while implementing AD Audit Plus for advanced monitoring. The goal was to establish a scalable, compliant cloud setup with centralized logging and visibility into Active Directory activities, ensuring enhanced control and security.
Project Scope
Focused on three key objectives:
Cloud Transition: Migrating critical infrastructure to Azure.
Cloud Security: Securing Azure with robust configurations, including VMs and NSGs.
Monitoring Solution: Deploying and configuring AD Audit Plus for real-time logging and actionable insights.
Key Deliverables
Azure Cloud Migration: Seamlessly transitioned infrastructure to Azure with secure Windows Server VMs, ensuring scalability and operational continuity.
Cloud Security Hardening: Configured Network Security Groups (NSGs), enforced Network Level Authentication (NLA), and secured RDP ports to block unauthorized access.
AD Audit Plus Deployment: Installed and configured AD Audit Plus to monitor Active Directory activities and detect unauthorized access.
Centralized Monitoring: Integrated logs with Azure Event Hub and set up SMTP servers for real-time notifications.
Results Achieved
Seamless Migration: Delivered a secure, scalable Azure cloud environment.
Enhanced Monitoring: Enabled real-time tracking of Active Directory activities with AD Audit Plus.
Improved Security: Strengthened defences with NSGs, NLA, and proactive logging.
Compliance Ready: Delivered audit-ready reports aligned with GDPR and industry standards.
