Home - vishnupk001/CloudCore-SOC-Build-with-M365 GitHub Wiki
CloudCore SOC Build with M365
CloudCore SOC Build with M365 is a showcase of my end-to-end design and implementation of a secure, cloud-centric organization using the Microsoft 365 ecosystem. This project demonstrates my ability to plan, deploy, and manage a full-stack security architecture—from tenant setup to a fully integrated Security Operations Center (SOC) with automation.
It reflects hands-on experience with enterprise-grade Microsoft technologies, cloud security best practices, and Infrastructure as Code (IaC) with GitHub and Terraform.
Table of Contents
- Introduction
- Domain and Tenant Setup
- License Management
- User and Group Management
- CIS benchmarked policies (baseline policies)
- Windows Autopilot
- Device Onboarding
- Defender for Microsoft Office 365 Setup
- Secured Entra Access
- SIEM and Automation
- Configured Azure Sentinel
- Setting Up Virtual Machines (VMs) Using GitHub and Terraform
- SOAR Playbook Setup
- Conclusion
Objectives
- Secure device onboarding using Autopilot.
- Apply CIS benchmarked security policies via Intune.
- Integrate Microsoft Defender for Endpoint.
- Set up SIEM using Azure Sentinel.
- Automate security operations using SOAR playbooks.