Azure policy extends its reach to NSG Flow Logs , it’s a journey that doesn’t have an end.
Azure Monitor / Log Analytics limits the data retention to 2 years. This doesn’t cover all the needed scenarios especially in terms of compliance. There are solutions to overcome this limitation exporting the logs to low cost blob storage. But then querying the data becomes more difficult and not well integrated. Now with cross resource query between Azure Monitor and Azure Data Explorer, not only you can cross query between the two, but you can also include data exported in blob storage in your query. Cool indeed.
Azure Security Center vulnerability assessment for on-premise and multi-cloud machines is generally available.
Finally Azure Sentinel gets its own powershell official module: Az.SecurityInsights currently in preview.
