Baking Security in Platform Engineering

Security has been increasingly been talked about, and even more so with the advent of generative AI models.While we mostly hear about security from a developer/devops perspective, this talk aims to discuss how it can be architected within our cloud infrastructure.

• How can we make good design decisions so we can lower our security risk?
• How can this lower the alerts/vulnerabilities so we are not stuck being reactive?
• How can we set up the right monitoring?

As platform engineers, we have an opportunity to be proactive and set the standards. I would like to discuss some ways of doing this from both a technical and a cultural perspective.(Might contain some Azure examples)