Welcome!

I’m Craig Forshaw, a Microsoft MVP specializing in cloud security and Azure Infrastructure as Code (IaC). I’m also an organizer of the Microsoft Security User Group, and I’m passionate about helping organizations build secure, scalable cloud solutions.

What You’ll Find Here

This blog is my space to share insights, tutorials, and real-world experiences from working with:

• Microsoft Defender for Cloud - Security posture management and DevOps security
• Azure Security - Best practices and implementation guides
• Infrastructure as Code - Secure IaC with Bicep, Terraform, and ARM templates
• DevSecOps - Integrating security into your development workflows
• Cloud Architecture - Designing secure and efficient Azure solutions

Why This Blog?

Security in the cloud is constantly evolving, and staying ahead requires continuous learning and sharing knowledge. Through this blog, I aim to:

• Share practical, hands-on guidance that you can apply immediately
• Demystify complex security concepts and features in Azure
• Showcase real-world scenarios and solutions
• Build a community of security-minded cloud professionals

Let’s Connect

Whether you’re just starting your cloud security journey or you’re a seasoned professional, I hope you’ll find valuable insights here. Feel free to reach out with questions, suggestions, or just to connect!

Stay tuned for deep dives into Microsoft Defender for Cloud, secure IaC practices, and much more.