Defender-for-Cloud
Lessons from the field. Always landing on my feet.
All
Cloud Security
AI Security
Identity Security
Microsoft Sentinel
Detection Engineering
Container Security
DevSecOps
Microsoft Defender
Threat Detection
Zero Trust
Agentic AI
Infrastructure as Code
Microsoft Entra
2 posts
Scan Every Blob, Trace Every Read: Defender for Storage + Sentinel
Storage is where malware waits. A blob uploaded to ingest/ by a pipeline step, a partnerβs SFTP connector, or a misconfigured Logic App sits quietly until something downstream opens it β a Data Factory copy, a Function app, a Synapse notebook, a β¦
AKS Runtime Security: Binary Drift, Anti-Malware & Gated Deployment with Defender for Cloud
In December, I published a post on securing the container supply chain β SBOM generation, image signing, and build provenance with GitHub Actions. That covered build-time security: making sure the image you ship is the image you built. But what β¦