Cloud Migration Mindset

How to Build Compliance Reports in Microsoft Azure

Step 1: Access Azure Security and Compliance Center

  • Sign into the Azure Portal.
  • Depending on what you require, either navigate to (Microsoft Purview portal) (“Azure Security center”).

Step 2: Determine your compliance requirements

  • Identify any relevant standards of compliance (e.g. HIPAA, ISO 27001 or GDPR).
  • Azure resources need to be aligned according to these standards.

Step 3 : Enable Azure Security Center / Microsoft Purview

  • Activate Azure Security Center :
    • Select , “Security Center”,.
    • Enable standard for advanced assessments.
  • Or enable Microsoft Purview for deeper compliance management:
    • Search for “Microsoft Purview” within the portal.
    • Develop relevant compliance strategies

Step 4: Use built-in compliance dashboards

  • In Security Center Or Purview
    • Click on to “Assessments”.
    • Choose relevant assessment templates in line with your compliance requirements.
    • Use assessments to assess your environment.

Step 5: Collecting data

  • Integrate the resources.
    • Enable Azure policy to enforce compliance.
    • Enable Azure Monitor’s activity logging.
    • Configure Azure System Center recommendations.

Step 6: Generating compliance reports

  • Use Azure Security Center :
    • Go to , “Security Policy & Recommendations“.
    • Select and “Export” to receive report data.
  • Use Azure Monitor Logs Log Analytics :
    • Search logs in order to obtain relevant compliance data.
  • Use Microsoft Compliance Manager :
    • Access to Microsoft Purview via.
    • Download assessments with compliance scores.

Step 7: Automate and customize reporting

  • Create custom Power BI dashboards:
    • Connect Power BI and Azure Log Analytics data or exported data.
    • Build visual dashboards that show compliance.
  • Automate report generation:
    • Schedule report deliveries via email or other channels with Azure Logic Apps.

Step 8: Review and update regularly

  • Review compliance on a regular basis.
  • Update policies, assessments and standards as standards change.
  • Organize periodic reports in order to monitor improvements or issues.

In

,
, , , , , , , , , , , , ,