Explains Microsoft Azure Sovereign Landing Zones (SLZ), a framework for building compliant, controlled cloud foundations for regulated and sovereign workloads.
Microsoft Intune's Multi Admin Approval feature now secures critical device actions like wipe, retire, and delete, requiring a second admin's approval.
A critique of the bureaucratic and low-agency culture hindering tech entrepreneurship in Europe, arguing for personal responsibility over resignation.
Explains Azure Policy for automated cloud governance, covering policy definitions, assignments, and enforcement effects like deny and audit.
A guide to implementing essential security auditing for databases, using Microsoft SQL Server as a practical example to demonstrate configuration and importance.
An engineer critiques the poor security practices in many software companies, highlighting willful neglect and developer resistance to basic safeguards.
Explains how to implement sovereign controls in Azure using policies for data residency, encryption, and confidential computing.
Creating custom Azure Policies to secure Azure Monitor Action Groups by restricting notifications and actions to authorized targets.
Microsoft completes its EU Data Boundary initiative, enabling European customers to store and process cloud data within the EU/EFTA regions.
Overview of the European Accessibility Act (EAA) requirements for websites and apps, covering scope, compliance timeline, and benefits.
A guide to help large organizations decide whether to use Datadog's multi-org feature, covering key factors like company structure, data correlation, and cost.
Explains the List-Unsubscribe-Post email header for one-click unsubscribes, its RFC specification, and implementation tips for compliance.
A .NET product manager explains the compliance-driven shutdown and transfer of several personal .NET microsites to Microsoft.
How to use PowerShell to automate compliance and security tasks in Microsoft Azure, including policy management and security monitoring.
GitHub executive Ben Balter shares insights on effective communication strategies used by engineers at the world's largest software development platform.
Introduces cdk-nag, an open-source tool for automated security and compliance checks in AWS CDK infrastructure-as-code projects.
A developer's script to replace Google Fonts for GDPR compliance, addressing a German court ruling on data privacy.
A German court ruled that using Google Fonts violates GDPR by sharing user IP addresses, leading to fines and requiring user consent.
A technical guide on troubleshooting and resolving Azure Policy non-compliance issues, specifically for diagnostic settings on AKS clusters.
A guide to building a comprehensive cloud security program, covering strategy, maturity levels, and controls based on the NIST framework.
