Hello,
On a podcast that I do in my personal capacity, we recently covered a question around vulnerability and compliance tool recommendations on Azure (for someone using VMs, Web Apps and blob/table storage). We also spent a bit of time talking about securing Ubuntu instances specifically with things like the CIS tooling, the pre-hardened CIS image and Azure’s Linux security baseline that you can apply with Azure Policy.
You can hear this here:
https://hybridcloudshow.com/hcs06/
from 17:20.
I would be really interested to hear your feedback on how you are hardening Ubuntu and keeping it secure in production environments and whether you have good or bad experiences with particular tools.