Florian Lenz
Fractional Principal Architect · Microsoft Azure MVP · Building Azure platforms .NET teams actually love
Fractional Principal Architect · Microsoft Azure MVP · Building Azure platforms .NET teams actually love
Köln, Germany
Actions
Florian Lenz is a Microsoft Azure MVP and Cloud Architect with over 10 years of experience building secure, scalable cloud platforms on Microsoft Azure. He specializes in Azure Landing Zones, DevSecOps, Infrastructure as Code, and cloud-native architectures, and has worked across industries including energy, finance, retail, and software.
As a speaker, author, and content creator, Florian shares practical lessons from real-world projects through conference talks, articles, and his YouTube channel—helping engineers and teams design systems that are secure, maintainable, and built for long-term success.
Florian Lenz ist Microsoft Azure MVP und Cloud-Architekt mit über 10 Jahren Erfahrung in der Entwicklung sicherer, skalierbarer Cloud-Plattformen in Microsoft Azure. Er ist spezialisiert auf Azure Landing Zones, DevSecOps, Infrastructure as Code und Cloud-native Architekturen und hat in verschiedenen Branchen gearbeitet, darunter Energieversorgung, Finanzdienstleistung und Einzelhandel.
Als Redner, Autor und Content Creator teilt Florian praktische Erkenntnisse aus realen Projekten in Konferenzvorträgen, Artikeln und auf seinem YouTube-Kanal und hilft Softwareentwicklern und Teams dabei, sichere, wartungsfreundliche und auf langfristigen Erfolg ausgelegte Systeme zu entwickeln.
Badges
Area of Expertise
Topics
Building Better Azure Systems: The Art of Solution Architecture on Azure en de
On paper, any application can appear to be successful. But what happens when suddenly ten times as many users show up as planned, or an entire region goes down?
This is precisely where it is no longer the architecture of the application that matters, but the architecture of the system.
This presentation focuses on the system architecture of Azure applications, i.e., the layer between software and platform architecture. We look at how different services can be combined in a meaningful way to create solutions that are resilient, scalable, secure, and cost-effective. The focus is on architectural principles and proven patterns rather than a mere list of features. These include high availability through geo-redundant design, elastic scaling during peak loads, security by design with integrated identity and governance, and cost control through conscious architectural decisions.
The target audience is solution architects, senior engineers, and technical decision-makers who not only want to operate systems, but also want to consciously design them. Finally, a live demo shows how these principles work in practice. We deliberately break a system and observe how good architecture keeps it alive.
Building Better Azure Systems: The Art of Solution Architecture on Azure en de
Auf dem Papier kann jede Anwendung erfolgreich wirken. Doch was passiert, wenn plötzlich zehnmal so viele Nutzer auftauchen wie geplant oder eine ganze Region ausfällt?
Genau hier entscheidet nicht mehr die Architektur der Anwendung, sondern die Architektur des Systems.
In diesem Vortrag geht es um die Systemarchitektur von Azure-Anwendungen, also die Ebene zwischen Software- und Plattformarchitektur. Wir betrachten, wie verschiedene Dienste sinnvoll kombiniert werden, sodass Lösungen entstehen, die resilient, skalierbar, sicher und gleichzeitig kosteneffizient sind. Im Mittelpunkt stehen Architekturprinzipien und praxisbewährte Muster statt einer bloßen Aufzählung von Features. Dazu gehören Hochverfügbarkeit durch georedundantes Design, elastische Skalierung bei Lastspitzen, Security by Design mit integrierter Identity und Governance sowie Kostenkontrolle durch bewusst getroffene Architekturentscheidungen.
Die Zielgruppe sind Solution Architects, Senior Engineers und technische Entscheider, die Systeme nicht nur betreiben, sondern bewusst gestalten möchten. Eine Live-Demo zeigt schließlich, wie sich diese Prinzipien konkret auswirken. Wir machen ein System absichtlich kaputt und beobachten, wie gute Architektur es am Leben erhält.
Terraform like a Pro: From Code to Pipelines with Cost, Security, and Compliance Built In en
Most Terraform projects start messy - ad-hoc scripts, manual applies, and no real structure. That works, until costs explode, audits fail, or someone asks who changed what. Infrastructure as Code is more than just writing a few Terraform scripts and running terraform apply. In this session, Florian will take a practical journey into how to properly develop Terraform projects.
Using Azure as an example, we’ll walk through creating a production-ready infrastructure step by step and then automate its deployment using GitHub Actions. But a modern pipeline does far more than just deploy: it checks costs, scans for security and compliance issues and enforces governance before changes ever reach production.
If you want to design, structure, and run Terraform projects like a pro, this talk gives you the tools and patterns to do it.
Platform Engineering for .NET Teams: Build the Azure Foundation Your Team Will Actually Use en
Most Azure environments didn't get designed; they accumulated. The result is slow deployments, unclear costs, and infrastructure that nobody dares to touch.
In this session, Microsoft Azure MVP Florian Lenz will share a battle-tested blueprint for building a production-ready internal developer platform on Azure that is specifically optimized for .NET teams. You will see real platform-as-a-product patterns, self-service infrastructure provisioning with subscription vending, and developer portals that reduce cognitive load.
Every pattern comes from real-world engagements with companies in the energy, finance, and SaaS industries. You will walk away with a concrete architecture that you can start implementing the week you return home without having to rebuild everything from scratch.
Securing Your Supply Chain Without Slowing Down Your Dev Team en de
This session is not just a theoretical warning.
Over the past year, npm has evolved from a place where supply chain attacks occur to a place where they occur on a schedule. S1ngularity in August: Then, in September, there was Chalk and Debug, which affected 18 packages and involved billions of weekly downloads. Then came Shai-Hulud, a self-replicating worm that scans machines for secrets and publishes them to a public repository.
Security researchers no longer call this a spike. They call it the new baseline.
In nearly every one of these attacks, nothing appeared to be wrong. The pipeline stayed green. The tests passed. Developers had no idea that their CI secrets, cloud credentials, and deployment tokens had already been exfiltrated. Many still don't know if a compromised version is sitting in their lockfile right now.
Every day, millions of developers run npm install without a second thought. It's muscle memory. That's how modern software is built. It's also how attackers get in.
This talk will show you exactly how, with a live demo of a single malicious package silently draining secrets while everything appears normal. Then, we break down the attack vectors.
Finally, Florian present the part that most security talks skip: a practical, actionable playbook for securing an Azure DevOps pipeline using existing tools, with no additional budget and no measurable impact on your team's velocity.
Securing Your Supply Chain Without Slowing Down Your Team en de
Jeden Tag führen Millionen von Entwicklern „npm install“ aus, ohne darüber nachzudenken. Es ist reine Routine. Es geht schnell. So wird moderne Software entwickelt. Und genau so verschaffen sich Angreifer zunehmend Zugang.
Angriffe auf die Software-Lieferkette sind zu einem der effektivsten und am wenigsten beachteten Angriffsvektoren in der Branche geworden. Nicht weil sie besonders ausgeklügelt sind, sondern weil wir unseren gesamten Entwicklungs-Workflow darauf aufgebaut haben, Code zu vertrauen, den wir nicht geschrieben haben, der von Leuten stammt, die wir nie getroffen haben, und der automatisch von Tools installiert wird, die wir kaum konfigurieren.
Diese Session ist keine theoretische Warnung. Es ist eine Live-Demonstration, wie ein einziges bösartiges npm-Paket still und leise Ihre CI-Geheimnisse, Ihre Cloud-Anmeldedaten und Ihre Deployment-Token abzieht, während Ihre Pipeline grün bleibt und niemand etwas bemerkt.
Und dann ist es ein praktischer, sofort umsetzbarer Leitfaden, um das Problem zu beheben.
Techorama 2026 Netherlands Sessionize Event Upcoming
DWX 26 Sessionize Event Upcoming
CodeBuzz 2026 Sessionize Event
Techorama 2025 Netherlands Sessionize Event
DWX - Developer Week '25 Sessionize Event
Experts Live Germany 2025 Sessionize Event
Tech passion day 2025 Sessionize Event
WeAreDevelopers World Congress 2024 Sessionize Event
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top