While deploying applications on Azure's public backbone is straightforward, it often leaves the applications vulnerable to various attack vectors. Additionally, recent changes to Azure App Service mean that built-in regional failover is no longer provided.

This session aims to deepen your understanding of Azure's networking and security services to help you build private, secure, resilient applications.

During the session, we will explore fundamental architectures like hub-and-spoke models and the use of primary and secondary regions for high availability.

You'll gain insights into implementing security measures such as service endpoints and private endpoints to safeguard your applications.

You'll also learn about several secure network ingress tools/services including Azure Bastion, Azure Firewall, Site-to-Site and Point-To-Site VPN connections, Azure Front Door, and Web Application Gateway so you can know how to make the correct choice for your application and organizational needs.

Furthermore, the session will address how to integrate automated deployment practices while ensuring robust perimeter security.

By the end of this session, you will have a comprehensive overview of Azure tools and strategies to deploy applications with enhanced security, reduced attack surfaces, regional resiliency, and secure network communications.

This talk addresses a very big problem in the Azure cloud space where many teams are just deploying to the public backbone. By the end of the talk, attendees will have a better understanding of the Azure Networking resources they should be in command of to deploy an application that has network perimeter security.