Home - vishnupk001/CloudCore-SOC-Build-with-M365 GitHub Wiki

CloudCore SOC Build with M365

CloudCore SOC Build with M365 is a showcase of my end-to-end design and implementation of a secure, cloud-centric organization using the Microsoft 365 ecosystem. This project demonstrates my ability to plan, deploy, and manage a full-stack security architectureโ€”from tenant setup to a fully integrated Security Operations Center (SOC) with automation.

It reflects hands-on experience with enterprise-grade Microsoft technologies, cloud security best practices, and Infrastructure as Code (IaC) with GitHub and Terraform.

Table of Contents

๐Ÿš€ Introduction

๐Ÿข Domain and Tenant Setup

๐Ÿ”‘ License Management

๐Ÿ‘ฅ User and Group Management

๐Ÿ›ก๏ธ CIS benchmarked policies (baseline policies)

๐Ÿ’ป Windows Autopilot

๐Ÿ“ฒ Device Onboarding

๐Ÿ›ก๏ธ Defender for Microsoft Office 365 Setup

๐Ÿ” Secured Entra Access

โš™๏ธ SIEM and Automation

๐Ÿ“ˆ Configured Azure Sentinel

โ˜๏ธ Setting Up Virtual Machines (VMs) Using GitHub and Terraform

๐Ÿง  SOAR Playbook Setup

โœ… Conclusion

Objectives

  • Secure device onboarding using Autopilot.
  • Apply CIS benchmarked security policies via Intune.
  • Integrate Microsoft Defender for Endpoint.
  • Set up SIEM using Azure Sentinel.
  • Automate security operations using SOAR playbooks.