Platform
This section describes the design decisions associated with platform components such as identity management, service connectivity, endpoint management, and platform security for system(s) built using ASD's Blueprint for Secure Cloud.
Estimated reading time: 0 minutes
Identity and Access Management
This section describes the design decisions associated with Microsoft Entra ID which is the cloud based Authentication and Authorisation service for system(s) built using ASD's Blueprint for Secure Cloud.
Endpoint Management
This section describes the design decisions associated with device enrolment, configuration, application management, security and updates for system(s) built using ASD's Blueprint for Secure Cloud.
Platform Security
This section describes the design decisions associated with security components of platform services such as identity, data and overarching platform monitoring threat detection and response, Endpoint security monitoring and protection, security of Hosted Services including IaaS and PaaS workloads across cloud platform providers (Azure, AWS, etc.), and Web Services (SaaS workloads) including both Microsoft 365 and other third party cloud apps for system(s) built using ASD's Blueprint for Secure Cloud.
Backup and Operational Management
This section describes the design decisions associated backup and operational management configuration for system(s) built using ASD's Blueprint for Secure Cloud.
System Administration
System Administration is the process of managing, troubleshooting, and maintaining the solution. To complete this, system administrators are granted permissions over the solution. The allocation of permissions to administrators should align with the administrator's role within the organisation and the principle of least privileged access. The allocation of permission to the administrator's role is captured within the RBAC policy.