Securing workloads in azure: CMK for storage encryption

by Alex | February 24, 2023 Do you need to reach compliance by encrypting storage with customer managed keys? I will walk you through the steps to bring your own key if your HSM does not have a native Azure Key Vault integration.... READ MORE

Securing workloads in Azure: Part 2 making connections private

by Alex | July 26, 2022 After putting the WAF in place, the next challenge is to make sure requests from the web are flowing through the WAF and make sure the app service is not accessible from the public anymore. Enter private endpoints.... READ MORE

Securing workloads in Azure: Part 1 setting the scene for network security

by Alex | July 14, 2022 We want to run a website! Choose App services for running the website, SQL database for the backend. And finally: key vault for some secret storage. Yup. We’re secure. But what will the networking guys say? Will we pass inspection by CISO or DPO?... READ MORE