Summary

In this module, you learned how security architects specify security requirements across different cloud service models and workload types. You explored how responsibility shifts between Microsoft and customers depending on whether solutions use IaaS, PaaS, or SaaS deployment models.

You learned how to:

• Specify security baselines for SaaS, PaaS, and IaaS services
• Specify security requirements for IoT workloads
• Specify security requirements for web workloads
• Specify security requirements for containers and container orchestration
• Specify security requirements for AI workloads
• Evaluate security for Microsoft Foundry workloads

Learn more

Use these resources to deepen your understanding of the topics covered in this module.

Security baselines and shared responsibility

• Shared responsibility in the cloud
• Security best practices for IaaS workloads in Azure
• Best practices for secure PaaS deployments
• Microsoft Cloud Security Benchmark introduction

IoT workload security

• Azure IoT security best practices
• Microsoft Defender for IoT
• Azure IoT Hub security baseline

Web workload security

• Azure security baseline for App Service
• Azure App Service security best practices
• Azure Web Application Firewall overview

Container and orchestration security

• Azure security baseline for Azure Kubernetes Service
• AKS cluster security best practices
• Microsoft Defender for Containers

AI services security

• Azure security baseline for Azure OpenAI
• Microsoft Foundry security baseline
• Azure AI Content Safety
• Threat protection for AI workloads
• AI shared responsibility model