You can use the Govern methodology to help maintain consistent control of your environment and address tangible risks. The Govern methodology provides a structured approach that you can use to establish and optimize governance in Azure. The Govern methodology consists of five steps.
Build a team
Select a small, diverse team to encourage quick decision-making and include various perspectives. Define the functions, authority, and scope of your team. Ensure that your organization supports your cloud governance team so that you can enforce important security policies.
Assess cloud risks
Before you create new policies or update existing policies, you need to assess cloud risks to help define the new or updated policy. To effectively assess risks in the cloud:
- Identify risks and catalog them. Use Azure tools to list cloud assets and discover cloud risks.
- Analyze risks and assign a qualitative or quantitative value to each risk. Prioritize the risks by severity.
- Determine the impact of a risk, for example downtime or cost.
- Document risks, and inform all necessary parties in your organization about the risks.
- Review risks regularly and in response to events to ensure that they remain valid and accurate.
Leave a Reply