8 - Azure Security
Moving to Azure? Security has to come first. Chris is joined by cybersecurity expert Andrew Nathan to explore how organisations can build a strong security posture in the cloud. They cover:
- Azure Security Center & Secure Score — getting immediate visibility into misconfigurations and threat vectors
- Identity strategy — understanding the critical difference between Azure AD and Azure RBAC, managing stale credentials, and enforcing MFA for privileged accounts
- Threat modelling — identifying high-value assets, high-value identities, and building appropriate alerting
- Azure Policy and Management Groups — using governance controls to audit and control your cloud environment
- Red team / Blue team war gaming — evolving your security operations so you’re always testing your own defences
Whether you’re starting your cloud journey or course-correcting an existing environment, this episode helps you understand where to begin — and how to keep improving over time.
Related Content
5 - The API Economy
APIs are the connective tissue of modern cloud architectures — but poor API design compounds into technical debt that is expensive to unwind. In this episode, Chris Reddington and Peter Piper explore the full lifecycle of API design: defining versioning contracts up front, modernising legacy APIs using the Strangler and Façade patterns, and securing APIs with JWT tokens, OAuth 2.0, and OIDC. They also cover Azure API Management patterns, circuit breakers, throttling, key rotation with Azure Key Vault, and the DevSecOps practices that keep an API estate healthy at scale.
2 - Cost Control
Moving to the cloud shifts infrastructure spend from capital expenditure (CapEx) to operational expenditure (OpEx)—but only if you think about cost correctly from the start. This episode covers the cloud cost mindset: right-sizing, auto-scaling (scale out vs scale up), compute resource consolidation, governance through resource tagging and policy, pricing calculators, reserved instances, and how to build cost awareness into your architecture from day one.
There are no clear architecture patterns for the Cloud? (Azure Mythbusters)
Cloud design patterns are abundant and well-documented on the Azure Architecture Center — from established patterns like cache-aside and materialized view to cloud-native ones like circuit breaker and health endpoint monitoring. This Azure Mythbusters episode tours the full pattern catalogue and deep-dives four key patterns: cache-aside, circuit breaker (open/half-open/closed states), health endpoint monitoring, and materialized view in CQRS/event sourcing scenarios.