Here are some things you should be following with respect to VMs:
- Protect VMs with secure authentication and access control
- Use the ARM Template for consistency in deployment
- Use multiple VMs for better availability, and consider putting them into availability sets
- Integrate VMs into Azure Security Center and use anti-malware
- Leverage Azure Monitor to help with visibility into resource issues
- Encrypt your disks
The following practices should be avoided:
- Do not give everyone admin control, useless you use Azure Privileged Identity Management
- Do not ...