Microsoft Security Best Practices

Microsoft Security Best Practices (formerly known as the Azure Security Compass or Microsoft Security Compass) is a collection of best practices that provide clear actionable guidance for security related decisions. This is designed to help you increase your security posture and reduce risk whether your environment is cloud-only, or a hybrid enterprise spanning cloud(s) and on-premises data centers. This guidance was formerly referred to as Azure Security Compass and is now increasing in scope to encompass all Microsoft security guidance and capabilities, including Microsoft 365.

In this guidance:

This guidance is presented in a series of videos. To download the PowerPoint slides associated with these videos, click download presentation slides.

Example slide

Security design principles for cloud architecture

Security reference architectures and design

Next steps

For additional security guidance from Microsoft, see Microsoft security documentation.