Securing Web Apps in Azure

So you have deployed your web app to Azure. Now, how do you make it more secure and compliant?

In this fast-paced talk we will run through an overview of some of the Azure technologies that you can use to better protect your web applications in Azure - all depending on your required security level, of course. The talk will set out a framework for you to consider which protections you want to put in place and provide you with the awareness of the tools at your disposal.

Prevent

Stop attackers, inside and outside, from getting access in the first place by using Web Application Firewall, VNets, encrypting or masking data and removing credentials from code and config.

Detect

Know when someone is trying to get in by using Log Analytics, Alerts and SQL Azure Threat Detection

Mitigate

Stop ongoing attacks and limit the impact of attacks by blocking their access, partitioning your application, ensuring attackers can’t get at further credentials and limit what data they can get access to.

Instances

I last did this talk at Rg-Dev in Rzeszow, Poland and at DDD 14 in Reading on 12 October 2019.

I give regular talks on a number of topics at various events. If you would like me to talk at an event then please contact me on Twitter or email.

Talks