Tag Archives: Security

Enforcing security controls right from CI/CD pipeline with AzSK – Deep Dive

Azure Security Kit  aka AzSK is a framework that is used internally by Microsoft to control & govern their Azure Subscriptions. While some features are overlapping with Azure Security Center, I find a lot of value in the Kit, mostly … Continue reading

Posted in Azure | Tagged , , , , | Leave a comment

Azure policies & Azure firewall

Hi, I recently blogged about the new Azure Firewall that gives you the possibility to control outbound traffic from resources hosted inside of a VNET. At the time of writing, although the firewall is defined at VNET level, it does … Continue reading

Posted in Azure, Security | Tagged , , , | Leave a comment

Azure Connectors, the DMZ 2.0?

Hi, I wanted to write this blog post because I’m often facing hard resistance from customers working with the Cloud and Hybrid Architectures regarding some security aspects. A very well-known way to secure access to on-premises resources is by using … Continue reading

Posted in Azure, Azure Active Directory Proxy | Tagged , , , | Leave a comment

Azure Firewall, a step towards a “managed” NVA?

Hi, Microsoft recently made Azure Firewall available in public preview. This Firewall as a Service offers a new way to protect and control network traffic via both network and application rules. At the time of writing, Azure Firewall is used to … Continue reading

Posted in Azure | Tagged , | 1 Comment

My recipe to build secure applications hosted in Azure

Hi, Here are some tips that might help you building and hosting secure applications in Azure. Application Architecture: Clients and APIs Make sure to make a clear segregation between clients and APIs. I’m not a great fan of MVC where … Continue reading

Posted in Azure, Azure Active Directory, Azure Key Vault, Security | Tagged , , | 2 Comments

Azure Security Cheat Sheet

Hi, Cybersecurity is a concern for everyone today as more and more workloads are connected in a way or another, meaning exposed in a way or another. When it comes to the Cloud, things turn wilder as PaaS, CaaS, FaaS … Continue reading

Posted in Azure | Tagged , , | Leave a comment

Consuming Azure Hosted Web API from SharePoint Online using JavaScript and Office 365 identities

Hi, Consuming a web service from JavaScript has really become a commodity nowadays with the rise of SPA and other JavaScript based UIs. While this is quite easy to achieve in SharePoint On-Premises, it can be more challenging in SharePoint … Continue reading

Posted in Office 365, SharePoint Online | Tagged , , , | 1 Comment