Posts

Following Microsoft Ignite in Nov 2023, Defender for DevOps has now become DevOps security. In practice this means that a lot of the features which were previously in public preview are now generally available. But first… what is DevOps security in Defender for Cloud? DevOps Security This feature of Defender for Cloud provides end-to-end security for code-based deployments from the well-known major source code repositories available in the market. These can be selected from the environment settings of the DevOps security blade in Defender for Cloud with GitLab being the most recent addition to the environment list. ...

The Challenge Ok so the challenge is end-to-end infrastructure security with IaC using only the Microsoft technology stack. Do I really need any third party tooling or does Microsoft have the products to support securing the entire DevSecOps process? Bicep Lets start with your IaC configuration files. Microsoft launched its own IaC declarative languages tool called Bicep on August 31, 2020. It is a domain specific language (DSL) for infrastructure deployments in Azure. ...