When it is possible to provision or delete an entire application or even virtual datacenter in the cloud with a single line of code inadvertently, we must rethink the traditional way of managing resources. Therefore, new paradigms regarding cloud technologies are necessary to provision, adopt, manage, and govern cloud resources in the right and secure way.

That is the moment when governance comes into place. For an organization it is essential to provide compliance rules as guardrails on the organizations’ tenant to secure all cloud workloads, avoid misconfiguration and being compliant.

In this session Stefan will explain on an Azure real-life scenario, which capabilities must be considered (also from a developer perspective) regarding cloud workloads to keep the cloud resources compliant and secure. We will go more into detail in the following Azure management areas:

- How to structure the hierarchy.
- Why naming conventions are essential.
- Force configurations using policies.
- How to implement role-based access control.
- Track costs and manage budget alerts.
- Strategies of tagging and locking.
- Deployment of Azure Governance using HashiCorp Terraform

The session will cover frameworks, tools and best practices that can be used to bring governance to the organizations’ Azure tenant the fast and easy way. Moreover, Stefan will show how to deploy governance resources using the IaC (“Infrastructure as Code”) approach.