Skip to main content

Posts

Showing posts from May, 2022

[Post Event] Microsoft Build 2022

This year I had the honour to deliver a session during Microsoft Build . The topic that I talked about was cloud security development inside Microsoft Azure, covering the tools used by local Romanian IT companies to build secure cloud applications.  More content related to my session is available below: Intro : Discover how you can ensure that application secrets are not published to the project repository and what are the tools that can detect and react when this happens. Find out how you can maintain control of governance and security across large deployments using multiple tenants and subscriptions where a central tool is required to scan and manage security and cost economics aspects. Abstract : To increase the application security it is necessary to use scanning tools and educate the development teams. Join us to discover insights from Romanian market and get hands-on example and experience sharing of Romanian MVP Radu Vunvulea on how to develop more secure applications and ho...

[Post Event] Cloud Security Session for UBB Master program

On the 18th of May, I was invited to deliver training for UBB master's degree students in Computer Science. The main topic was cloud and how cloud vendors will influence IT solutions. The topics that were covered together with the students were: Cloud core concepts How cloud evolve in the last 10 years Cloud trends and market needs I hope that you enjoy the cloud workshop. If you have questions, feel free to contact me. 

[Post Event] SQL Day 2022 Poland / May 2022

 In the first part of May, I had the great opportunity to deliver a session during SQLDay 2022 . During my session, I talk about cloud security and the most important things that a company should take to secure their cloud solutions. RBAC, cloud governance and data security are the top 3 priorities that should be part of your cloud strategy. 

Microsoft Build 2022 is here

At the end of this month, I am delighted to deliver a session at Microsoft Build . Build is Microsoft's annual developer conference. During the three days of the conference, Microsoft is announcing the most development news, and updates for developers and Microsoft experts around the globe are sharing their experience and knowledge.  My talk is about developing secure applications inside Microsoft Azure. The insights that I plan to share with the audience cover the tools and mechanisms used by development teams from Romania to ensure that they build secure applications, following Microsoft's best practices and recommendations. For example, how we can ensure that application secrets are not published to the project repository, and what are the tools that can detect and react when something like this is happening. Another important aspect that we talk about is maintaining control of governance and security across large deployments using multiple tenants and subscriptions where a ...

Email one-time passcode (OTP) - Enable guest users without federation or registration

Nowadays, if you use Azure to run your business, there is an 80% chance of using Azure AD as the Identity and Access Management system. The strong integration with on-premises AD tenants, Google, Facebook and Azure AD B2B and Azure AD B2C makes our life much easier.  What if you provide access to an external user that cannot be authenticated using AD, MSA (Microsoft Account) or social identity providers? Or you don't know what kind of IAM the user has. OTP (Email one-time passcode) is your friend in this situation. The feature enables us to share resources or provide access to external users without requesting them to create an account. The only thing that the user needs is an email address and nothing more. The one-time passcode is sent to their email address at the moment in time when they want to access the resource that you shared with them. The passcode is valid for 30 minutes and provides a valid session for the next 24 hours. If the passcode or session expires, there is no p...

Azure Private Link advantages over Azure Service Endpoint

People often ask what they should use to secure the connection between Azure PaaS services and VNETs. Today's article talks about the key differences between Azure Private Link and Azure Service Endpoints and when you should use each of them. What is? Azure Service Endpoint provides a direct and secure connection to Azure PaaS services over the Azure backbone network. Even if the traffic leaves your VNET and hits the public endpoint of the Azure PaaS service, it goes over the Azure backbone. Azure Private Link enables you to have a private IP inside your VNET used to hit the endpoint of your Azure PaaS service. The assigned private IP is part of your VNET and ensures that all traffic will stay within your VNET. What about Azure Private Endpoint? It is part of Azure Private Link, enabling you to configure the private IP address and the peering over VPN or VNET.  If you want to expose your own service over  Private Link, you can do this by using Azure Private Link Servic...

[Post Event] Big Data / Technology Warsaw Summit, April 2022

On the 28th of April, I had the opportunity to deliver a session during Big Data Technology Warsaw Summit . It was a fantastic experience, meeting great people and discovering a lot of interesting technical content. Thank you for having me! The session that I delivered was about cloud security and how things evolved during the 2 years of the pandemic.  Below, you can find a short summary of the session: Title : COVID-19 is a cloud security catalyst Description : Let's discover together how COVID-19 affected the cloud adoption and what are the most common cloud security mistakes that team are doing. #security #cloud #adotion #architecture