Security

Posts touching on Security in various angles lives in this category.

Enforce authentication when sending Application Insights telemetry

Enforce authentication when sending Application Insights telemetry
Members Public

Microsoft recently announced the capability, and public preview, of authenticated requests to Application Insights. This is an important update for a wide range of reasons. In this post, we'll explore how to configure your Application Insights instance to reject requests that aren't authenticated and with the correct authorization, and also

Tobias Zimmergren
Tobias Zimmergren
Azure, Application Insights, Security
Establish your organizational compliance readiness

Establish your organizational compliance readiness
Members Public

Wading through organizational change can be a challenge. Critical aspects of some of the challenges I've faced lately are security and compliance, and how to stay on top of sensible practices that can be applied across your organization. While there are great built-in capabilities and tools provided by Microsoft -

Tobias Zimmergren
Tobias Zimmergren
Compliance, Security
Discover sensitive Key Vault operations with Azure Sentinel

Discover sensitive Key Vault operations with Azure Sentinel
Members Public

Microsoft's Azure Key Vault Security workbook helps you structure the explorations of sensitive operations in your Azure Key Vaults. Using this workbook, we can cut the diagnostic and troubleshooting time down by a lot.

Tobias Zimmergren
Tobias Zimmergren
Azure, cybersecurity, Security, Azure Sentinel
Securing Microsoft Teams

Securing Microsoft Teams
Members Public

Recently, Microsoft Teams adoption in organizations world-wide has skyrocketed. To keep up with this pace, here's a post about securing the Collaboration Experience, configuring Compliance, and a look at Security options!

Tobias Zimmergren
Tobias Zimmergren
Microsoft Teams, Azure, cybersecurity, Security
Passing AZ-500: Microsoft Certified Azure Security Engineer Associate

Passing AZ-500: Microsoft Certified Azure Security Engineer Associate
Members Public

The AZ-500 is a great certification if you work with security and compliance. In this article I'm outlining my experiences in taking this exam online from my home office, as well as free official Microsoft documentation around the areas you'll be tested on.

Tobias Zimmergren
Tobias Zimmergren
Azure, Certification, Security
GitHub Actions for Security Code Analysis

GitHub Actions for Security Code Analysis
Members Public

Performing code analysis and security scans on your code is imperative to software craftsmanship. Over the years, I have had plenty of options for performing security scans, both with third-party vendors and open-source tools. I want to highlight some of my favorite GitHub Actions to run code analysis with a

Tobias Zimmergren
Tobias Zimmergren
github, github actions, code analysis, cybersecurity, Security
Use the Microsoft Application Inspector to analyze your source code

Use the Microsoft Application Inspector to analyze your source code
Members Public

Use the Microsoft Application Inspector to learn more about your code. Discover what types of algorithms, APIs, sensitive data and more that you make use of in the code base.

Tobias Zimmergren
Tobias Zimmergren
code analysis, Security, Tools
Get notified of changes in Azure Key Vault by using Event Grid

Get notified of changes in Azure Key Vault by using Event Grid
Members Public

There are numerous ways to secure and audit your Azure Key Vault setup and usage. In 2019, I wrote Who accessed my Azure Key Vault?, which is still relevant. In this article, I want to talk about how to set up automatic notifications when something change related to your secrets.

Tobias Zimmergren
Tobias Zimmergren
Azure, Key Vault, Security
Page 1 of 5 Next