This repository contains hands-on Azure cloud infrastructure and governance projects demonstrating how to design, deploy and operate secure and reliable Azure environments.
The projects focus on identity and access management, networking, monitoring, governance and automated policy enforcement, reflecting real-world Azure cloud operations.
| Repository | Description |
|---|---|
| conditional-access-mfa | Microsoft Entra ID Conditional Access and MFA implementing Zero Trust identity controls. |
| rbac-jit-vm-access | RBAC and Just-In-Time VM access enforcing least-privilege administration. |
| keyvault-secrets | Secret management using Azure Key Vault with access controls and rotation. |
| secure-vm-nsg-bastion | Hardened Azure VMs using NSGs and secure remote access with Azure Bastion. |
| firewall-app-gateway | Azure networking using Firewall and Application Gateway for traffic control and inspection. |
| storage-security | Azure Storage access control using RBAC and Shared Access Signatures. |
| storage-encryption | Azure Storage encryption at rest and recovery using soft delete. |
| defender-sentinel-threat-detection | Threat detection and response using Microsoft Defender for Cloud and Sentinel. |
| policy-blueprint-governance | Azure governance using Policy and Blueprints for automated compliance enforcement. |
| cost-security-governance | Cost and security governance using Azure monitoring and recommendations. |
These projects were developed for portfolio purposes to demonstrate practical experience with Azure cloud infrastructure, identity, governance, monitoring and troubleshooting in realistic environments.
Maintained by Sebastian Silva C. - Berlin, Germany