Victoria Almazova, Cloud Security Architect, Microsoft
Azure provides a set of security and governance controls to ensure that your environment is secure and complaint. Learn how to implement security on the subscription level, develop your applications securely, securely deploy, periodically scan production for compliance and security, and get a single security dashboard.
4. DevOps is the union of people,
process, and technology to enable
continuous delivery of value to your
end users
DevOps
Monitor
&
learn
Develop &
TestPlan &
Track
Build
&
Release
Continuous
delivery
7. Pre-commit stage
✘ Threat modeling
✘ IDE Security plugins
✘ Pre-commit hooks
✘ Secure coding standards
✘ Peer review
Goal: fix security from the first line of a code
8. Commit stage
✘ Static code analysis
✘ Security unit tests
✘ Dependency management
Goal: provide fast feedback to developers
9. Acceptance stage
✘ Infrastructure as Code
✘ Security scanning
✘ Cloud configuration
✘ Security acceptance testing
Goal: comprehensive check of the application and infrastructure
10. Production stage
✘ Security smoke tests
✘ Configuration checks
✘ Penetration testing
Goal: ensure that setup follows security traditions