Logging and monitoring

Missing Alert for Network Security Groups rule editing

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Monitoring for Create or Update Network Security Group Rule events gives insight into network access changes and may reduce the time it takes to detect suspicious activity.
  • Recommended Mitigation

    Under Monitor -> Alerts, create an alert for 'Microsoft.Network/networkSecurityGroups/securityRules/write'