The Azure Security Podcast

This week, Michael, Mark and Gladys talk to Anthony Shaw about some of the best practices and tooling for securing Infrastructure as Code (IaC) solutions. Sarah is away in Singapore, presenting at BlackHat.We also cover security news about DDoS, Cosmos DB, Microsoft Defender for APIs, Load Balancer, Zero Trust and discovering Internet-facing devices.

In this episode Michael, Sarah, and Mark talk with guest Negar Shabab. We also discuss Azure Security news about new Confidential Computing VMs, SQL Server, T-SQL Parsing, Auditing in Azure SQL DB, Sentinel and more.Make sure you go to The Microsoft Azure Security Podcast (azsecuritypodcast.net), because Mark ordered pizza during the recording.

In this episode Michael, Sarah, Gladys, and Mark talk with a good friend of the Podcast, Yuri Diogenes, about the latest Microsoft Defender for Cloud news.We also discuss Azure Security news about Trusted VM Launch, Chaos Studio, Azure SQL DB, DDoS protection, Confidential Containers, Firewall and more.

Michael and Mark talk to Kemley Nieva from the Azure Governance team about some of the recent updates and improvements to Azure Policy. We also cover the latest Azure security news covering Microsoft Security Copilot, Azure Functions, SQL Managed Instance, Azure Backup, Ephemeral OS disks, Azure Cache for Redis, Azure SQL Database, Azure Monitor, API Management, Azure Maps and Storage.

In this episode Michael and Gladys talk with guests Sean Wesonga and Bojan Magusic about using Infrastructure as Code (IaC) with Microsoft Defender for Cloud. We also discuss Azure Security news about new Azure SQL Database migration abilities for authentication and Transparent Data Encryption (TDE).

In this episode Michael, Sarah, Gladys and Mark interview each other! The Podcast is almost three years old, and things have changed for each of us, so we thought we'd re-introduce ourselves, reflect, give career advice, and talk about what's top of mind for each of us!We also discuss Azure Security news about SQL Server and Azure SQL DB, MFA and AAD, AAD and IPv6, new SC-100 study guide and more.

In this special episode, Michael sits down with Pieter Vanhove about a new addition to the SQL Server 'Always Encrypted' family. The new addition, Virtualization-Based Security Enclaves (VBS), is now in Preview and allows for more scalability and lower cost when using secure enclaves compared to the current SGX-based enclaves.

In this episode Michael and Sarah talk with guests Beau Faull and Lou Mercuri about some new features and updated naming in Microsoft Purview. Beau and Lou are also co-hosts of the Coast2Coast Podcast on YouTube.We also discuss Azure Security news about Trusted Boot VMs, Sentinel and Defender for Cloud.

In this episode, Michael and Mark talk to Adrian Diglio about Software Bill of Materials and its role in helping secure the software supply chain.We also have news items about SQL Server, Azure SQL DB, Azure Database for PostgreSQL, Azure Database for MySQL and Application Secure Groups and Private Endpoints. Mark goes over MCRA, Immutable Laws of Cybersecurity and Security Architecture Design.

Michael sits down with Ajay Jagannathan who is the Principal Group PM Manager for SQL Server. Michael also covers a couple of SQL Server related news items.

Michael and Sarah talk to Bronwyn Mercer from Microsoft Australia about Privileged Access as well as some ideas and processes to help you succeed. Also, the latest security news about Managed HSM, Defender for DevOps, TLS and ARM, SQL Server 2022, Application Gateway.Finally, 'Designing and Developing Secure Azure Solutions' is now available. https://azsec.tech/get

In this episode Michael, Sarah and Mark talk with guest Joey Snow about Workload Identities in Azure. We also chat about least privilege and privileged accounts in general. Finally, the latest Azure Security news about: Azure Front Door, Log Analytics, Web Application Firewall and AKS SSH keys.

EDIT: Nov 11th, there was an error at around 27m; Gladys and Rijuta were talking over each other. In this episode Michael, Sarah, Gladys and Mark talk with guests Rijuta Kapoor and Brandon about Microsoft Defender for Threat Intelligence. We also discuss Azure Security news about Azure Service Bus and TLS, PostgreSQL, VMs, SQL Server and Confidential VMs, Azure SQL DB, Workload Identities, Microsoft Entra and other security news from Ignite.

In this special, out of band episode, Michael talks to Andreas Wolter about the SQL Server and Azure SQL Database permission model. To many, the model is a mystery, but Andreas explains how it works as Michael poses security challenges.

In this episode we talk to Nick Wryter about Microsoft Entra Permissions Management. We also cover the latest security news about Azure Firewall, Azure Database for MySQL, NetApp files, ADLS Gen2, AKS, Conditional Access and Identity Federation.

In this episode, Josh Bregman discusses a critically important feature in MDE - Tamper Protection which helps prevent unwanted changes to your security and essential functions.We also cover the latest security news about Synapse SQL, Service Bus, Storage, Redis, Azure SQL, MySQL, AKS, Managed Disks and Microsoft Defender.

In this episode we speak to Elizabeth Stephens about practices and philosophies for protecting OT. We also cover news about SQL MI, Private Endpoints, Load Testing, TLS 1.3, AKS and Confidential VMs and Azur Firewall.Also, this is the first episode to use the phrase "things that are not supposed to blow up!"

In this episode, we talk to Safeena about Begun about Microsoft Defender for Cloud to monitor multi-cloud environments including Azure, on-prem, AWS and GCP. We also talk about changes coming to Azure's root CA certificates, Microsoft Entra and more.

In this episode Michael and Sarah talk to Mark about the newly version of the CISO Workshop. We also have news about Confidential Ledger, Gateway Load Balancer (new!), Azure Database for MySQL and Trust Launch.

In this episode, Michael talks to Run Cai and Vikas Bhatia about some of the latest Confidential Computing services available on Azure including new Confidential VMs from AMD.

In this episode, Michael, Sarah and Mark talk to Roey Ben Chaim about Microsoft Sentinel Content Hub. We also cover the latest security news about Exchange Online, Microsoft Entra Permissions Manager, MSTICPy, Purview DLP, Azure Monitor, Backup and App Insights.

Michael sits down with Michael Melone to discuss hunting for adversaries using Microsoft 365 Defender's Advanced hunting capabilities.Azure security news this week includes Azure Advisor for MySQL, using custom CAs with AKS, App Gateway Private Link, continuous backup in Cosmos DB, and API Management CSP and CORS support.

Michael and Sara talk to Matt Soseman about his take on practical Zero Trust and Michael goes on a rant about Zero Trust's Assume Breach pillar. We also cover Azure news about Azure SQL DB, Container Apps, Bastion, Sentinel and Microsoft Entra.

In this episode Michael talks to Sravani Saluru who is a Senior Program Manager in the Azure Data Platform, about Azure SQL Managed Instance and Windows authentication support which is in preview. We talk about where SQL MI fits in the SQL family, as well as how to configure SQL MI so your one-prem client can access SQL MI in Azure seamlessly.

In this special episode Sarah and Michael talk to Pieter Vanhove about Azure SQL Database Ledger.Ledger is a new feature built into Azure SQL DB and SQL Server 2022. that helps protect data from tampering from attackers or high-privileged users, including database administrators (DBAs), system administrators, and cloud administrators.

In this episode we talk to Shay Amar about Microsoft Defender for Containers, we go into the weeds in places! Also, Azure security news about Confidential Compute VMs, Azure Arc, Sentinel and Ransomware. Michael and Sarah also discuss their experiences with the AZ-500 exam refresh.

In this episode we speak to Thomas Weiss from the Azure Data team about new security capabilities in CosmosDB, specifically Always Encrypted and data-plane RBAC. We also have security news about Confidential Compute, Azure Data Explorer, Load Balancer, DNS Reservations, ZLoader malware, Azure Monitor, MSTICPy and NIST SP 800-40.

In this special episode, Mark chats about the MCRA as well as the Cloud Adoption Framework (CAF), and various related topics. We shied away from the news this week to focus on Mark's topic, but Michael couldn't resist talking about the fact that CosmosDB now supports Always Encrypted.

Gladys and Michael talk to Jason Zann, VP, Head of Platform about RiskIQ, a recent Microsoft acquisition. We also cover the latest security news about API Management, Azure Monitor, Defender for Cloud, Identity Protection and Sensitivity labels.

We chat with Al Eardley about Compliance, Security and Microsoft Compliance Manager, as well as news about CosmosDB, Azure Load Testing, CodeQL, Azure Active Directory, Zero Trust, Sentinel and new cyber blog from Microsoft.

We talk to Chris Hallum about all things Microsoft Defender for IoT. He also discusses IoT security in detail, as well as some new features on the horizon. Also, we cover the news for Microsoft Sentinel, Azure Active Directory, Azure SQL DB, new Azure Learning resources, Azure Monitor and Payment HSM.

In this episode we speak to Matt Egen about how Microsoft Sentinel can pull in telemetry and threat intel data from various sources. He talks about the new Codeless Connectors as well as his views on IP-based filtering.

We talk to Kristin Burke about some of the lessons learned and best practices when moving to Zero Trust and how that affects the Security Operations Center or SOC.Lots of news too: Azure Cache for Redis, API Management, Kubernetes, PostgreSQL, Sentinel, KQL and Confidential Compute.

In this episode we talk to Jess Dodson about some of the basic security practices she sees Azure users do well and could improve. We also discuss the latest news about Log4j, Azure Key Vault and automatic key rotation, Storage and AD and ABAC and new security training.

In this episode Michael, Sarah, Gladys and Mark talk to Liz Kim about the innards of Azure Policy as well as best practices for effective deployment of Policy. She also outlines some of the exciting new features coming soon.We also discuss news about App Service and Azure Functions, new Confidential Compute VMs, Azure Bastion, Microsoft Defender for Cloud, AKS, ExpressRoute and more.

In this episode Michael and Mark talk to Dave Lubash about Azure Monitor. We also cover news about Zero Trust Commandments, Azure SQL DB, Logic Apps, Confidential Computing, AKS and Log Analytics.

In this episode we chat with Abbas Kudrati about the latest security news and announcements from the recent Microsoft Ignite event. There were numerous announcement including naming changes for some of the products you know and love.

We speak to Julie Koesmarno about Jupyter Notebooks on Azure generally, and specifically about using them to help with Incident Response. We also cover security news about .NET 6.0, Azure Monitor, HDInsight, Azure Static Web Apps, Azure Key Vault, Kubernetes, Firewall, Sentinel, Ransomware, IoT Solutions and more!

We talk to Mark McIntyre about the recent Microsoft Digital Defense Report. The two Marks discuss at length the report as well as cyber-crime, ransomware, digital currencies and more. We also cover security news about Azure Security Center, Windows 11, OWASP Top 10 2021 and the OWASP 20th anniversary, the recent 2.4Tbps DDoS against Azure Sentinel and Mark updates his 'Mark's List'

In this episode we talk to Daniel Wood about Conditional Access in Azure Active Directory, some best practices and a few hints about future updates,We also discuss security news about Azure disks, Purview, Site Recovery, Azure SQL DB, Defender for IoT, Ransomware and more.Daniel and Michael discuss 'Do no Harm' in Security...

In this episode we talk to Roberto Rodriguez about a Microsoft open source tool to help researchers understand how attackers attack and compromise systems. Simuland lets you deploy labs to reproduce and learn from attack techniques and test your own detection and prevention tooling.We also have awesome news about NSG and UDR support in Private Link, Azure Virtual Desktop, SMB 3.1.1, Azure Monitor and Azure Data Explorer, Azure Security Center, Windows 11 and Microsoft Cloud Reference Architectures.

Michael and David Trigano of the Azure Defender for SQL Vuln Assessment geek out about SQL security. Gladys discusses the ramifications of the recent Executive Order on Cybersecurity and Mark describes some new MS Cybersecurity Reference Architecture material. Sarah is still taking a break, but she'll be back soon.

In this episode we talk to Michael Makhlevich about Azure Defender for SQL - Threat Protection. Michael Howard and our guest geek out about common SQL security issues and MichaelM gives some interesting philosophical insights into securing SQL databases - it's not just the data! We also cover security news from Managed Hardware Security Module (MSH), App Config, Sentinel, Machine Learning, Azure Security Center and much more.

This episode is a little different; no news! Michael talks with Yuri Diogenes and Sarah about the various Azure Security certifications, and Sarah and Yuri talk about their upcoming study guide for SC-200: Microsoft Security Operations Analyst.

In this episode Michael, Sarah, Gladys and Mark talk with guest Carmichael Patton, a Senior Security Architect in the Digital Security and Resiliency group at Microsoft about Microsoft's journey to Zero Trust and some of the lessons learned along the way.We also discuss Azure Security news about: Azure Sentinel, Azure Automation, Azure SQL DB and Always Encrypted withe Secure Enclaves, App Insights, App Service and Functions, Azure Active Directory, Azure Firewall, Azure Kubernetes Service, Azure Security Center, Azure Bastion. Mark also talks about some Open Group actitivites and recent Microsoft security acquisitions.

In this episode Michael, Sarah, Gladys and Mark talk with guest Rin Ure about the Azure Sentinel SOC Process Framework Workbook. We also discuss Azure Security news about Azure Web Application Firewall, Azure Front Door, Azure SQL DB, Azure Sphere, Confidential Compute VMs and episode 2 of the Spanish Azure Security Podcast is now out.

In this episode we talk to Nicholas DiCola about automating security tasks in Azure. We also cover security news about Azure Monitor, Confidential Computing, Azure Key Vault, Visual Studio Code, Azure Sentinel, Azure Defender for MySQL, MariaDB, PostgreSQL and IoT, and more. Make a point of listening to Mark's comments about the state of Human-operated Ransomware.

In this episode we interview Pete Bryan from the Microsoft Threat Intelligence Center - MSTIC - about lessons learned from the recent highly-public nation-state attacks on US infrastructure. We also cover news about GitHub, CosmosDB, Storage account key rotation, Azure Functions, SimuLand, Gladys also announces that there is now a Spanish edition of the Azure Security Podcast.

In this episode Michael, Sarah, Gladys and Mark talk with Minni Walia about Azure Data Explorer, a fast and highly scalable data exploration service for log and telemetry data. We also discuss Azure Security news about Bicep, VPN Gateway, Azure Backup, Azure Security Center, AKS, Azure Sentinel, IoT Hub, API Management, SimuLand and Microsoft Cybersecurity Reference Architectures and Microsoft Cloud Adoption Framework.

In this episode Michael, Gladys and Mark talk with guests Gopal Shankar and Arvind Chandaka discuss a new data governance product Azure Purview. We also discuss Azure Security news for the following: Azure Monitor, Storage, cryptography, Zero Trust, Incident Response, Azure Information Protection, Ransomware and more.