Microsoft Azure Governance Guide
Introduction to Microsoft Azure Governance:
The purpose of this guide is to document Cloud Governance concepts, recommendations, and how-to guides to implement recommended strategies and policies.
Each area of Cloud resource management is a continuous succession over the lifespan of a resource. This resource life-cycle starts with the initial deployment/configuration, through continued operation, upgrades, backups, and finally when retired.
The following sections briefly describe the different management areas:
Monitor
Monitoring is the act of collecting and analyzing data to audit the performance, health, and availability of your resources. An effective monitoring strategy helps you understand the operation of components and to increase your uptime with notifications.
Configure – Deployment
Configure refers to the initial deployment and configuration of resources and ongoing maintenance. Automation of these tasks allows you to eliminate redundancy, minimizing your time and effort and increasing your accuracy and efficiency. Azure Automation provides the bulk of services for automating configuration tasks.
Govern
Governance provides mechanisms and processes to maintain control over your applications and resources in Azure. It involves planning your initiatives and setting strategic priorities. Governance in Azure is primarily implemented with two services. Azure Policy allows you to create, assign, and manage policy definitions to enforce rules for your resources. This feature keeps those resources in compliance with your corporate standards. Azure Cost Management allows you to track cloud usage and expenditures for your Azure resources.
Secure
Manage the security of your resources and data by assessing threats, collecting and analyzing data, and verifying compliance. Security monitoring and threat analysis are provided by Azure Security Center
Protect – High Availability
Protection refers to keeping your applications and data available, even with outages that are beyond your control. Protection in Azure is provided by two services. Azure Backup provides backup and recovery of your data, either in the cloud or on-premises. Azure Site Recovery provides business continuity and immediate recovery during a disaster.
Migrate
Migration refers to transitioning workloads currently running on-premises to the Azure cloud. Azure Migrate is a service that helps you assess the migration suitability of on-premises virtual machines to Azure. Azure Site Recovery migrates virtual machines from on-premises. Azure Database Migration assists you in migrating database sources to Azure Data platforms.