0%

Plan, build, and maintain highly secure Azure applications and workloads

As business-critical applications and workloads move to the Microsoft Azure cloud, they must stand up against dangerous new threats. That means you must build robust security into your designs, use proven best practices across the entire development lifecycle, and combine multiple Azure services to optimize security. Now, a team of leading Azure security experts shows how to do just that. Drawing on extensive experience securing Azure workloads, the authors present a practical tutorial for addressing immediate security challenges, and a definitive design reference to rely on for years. Learn how to make the most of the platform by integrating multiple Azure security technologies at the application and network layers taking you from design and development to testing, deployment, governance, and compliance.

About You

This book is for all Azure application designers, architects, developers, development managers, testers, and everyone who wants to make sure their cloud designs and code are as secure as possible.

Discover powerful new ways to:

  • Improve app / workload security, reduce attack surfaces, and implement zero trust in cloud code

  • Apply security patterns to solve common problems more easily

  • Model threats early, to plan effective mitigations

  • Implement modern identity solutions with OpenID Connect and OAuth2

  • Make the most of Azure monitoring, logging, and Kusto queries

  • Safeguard workloads with Azure Security Benchmark (ASB) best practices

  • Review secure coding principles, write defensive code, fix insecure code, and test code security

  • Leverage Azure cryptography and confidential computing technologies

  • Understand compliance and risk programs

  • Secure CI / CD automated workflows and pipelines

  • Strengthen container and network security

Table of Contents

  1. Cover Page
  2. Title Page
  3. Copyright Page
  4. Pearson’s Commitment to Diversity, Equity, and Inclusion
  5. Dedication Page
  6. Contents at a glance
  7. Contents
  8. Acknowledgments
  9. About the Authors
  10. Foreword
  11. Introduction
  12. Part I: Security principles
  13. Part II: Secure implementation
  14. Appendix A. Core cryptographic techniques
  15. Index
  16. Code Snippets