Keeping up with contemporary industry
best practices and the latest cloud services
from CSPs are key to delivering a successful
cloud foundation.
2. Azure Blueprints enable the definition of a repeatable set of Azure resources
that implements and adheres to an organization's standards, patterns and
requirements with respect to identity and access management (IAM), networks
policies, etc. This speeds up development and delivery across multiple subscrip-
tions and environments.
Subscription A
Role-based access
controls
Policy Definitions
Azure Blueprints
Subscription B
Subscription C
ARM Templates
compose
...
manage
scale
Figure 2: Azure Blueprints
3. Azure Policy for DevOps: Azure Policy has been a key component of our Secu-
rity and Governance tenet, ensuring standards and compliance across the envi-
ronment in which it is deployed. Azure Policy now integrates with Azure’s CI/CD
platform (Azure DevOps), ensuring that the policies created are executed pre-de-
ployment. This reduces the number of reactive actions security and governance
teams would need to carry over to ensure compliance within the environment.
4. Building the hardened OS images that meet your organization or industry stan-
dards, such as CIS (Center for Internet Security) and sharing the custom images
within an organization globally is a key part of cloud operations. In the past, it
was a challenge to build a VM image and publish across multiple subscriptions.
But now, Microsoft offers a new service to accelerate identity lifecycle manage-
ment (ILM) - Shared Image Gallery. This service helps you manage custom
images with ease, by building the hierarchy of image-definitions with versioning
support, scaling to different replicas and sharing them across multiple subscrip-
tions or regions.
30 | THE DOPPLER |
WINTER 2019