Standard pricing tier is not selected TF-S1019

The "standard" tier in Azure's Security Center enables threat detection for networks and virtual machines. It allows greater (compared to "free" tier) in-depth defense like threat detection for networks and virtual machines, providing threat intelligence, anomaly detection, and behavior analytics. It is highly recommended to opt for the "standard" tier instead of the "free" tier.

There are two different tiers provided by Azure Security Center:

• Free tier: Provides security policy, continuous security assessment, and actionable security recommendations to help protect Azure resources.
• Standard tier: Extends the free tier's capabilities to workloads running in private and other public clouds, providing unified security management and threat protection across hybrid cloud workloads. It also adds vulnerability scanning for your virtual machines and threat protection capabilities. It uses built-in behavioral analytics, threat intelligence, and anomaly detection to identify attacks and zero-day exploits, access, and application controls to reduce network attacks and malware exposure.

Examples

Bad practice

resource "azurerm_security_center_subscription_pricing" "not_recommended" {
    tier = "Free"
}

Recommended

resource "azurerm_security_center_subscription_pricing" "recommended" {
    tier = "Standard"
}

References

• Security Center