Secure by Design: Defending Cloud-Native Apps
Details
With cloud-native apps rapidly becoming the default architecture, securing them is no longer optional—it’s critical. This session explores core pillars of cloud-native security defending APIs, secrets, and CI/CD
session covers:
✅Real-world vulnerabilities in APIs, secrets, and cloud pipelines
✅ How leaked secrets lead to full cloud compromise (and how to stop it)
✅ API protection and least privilege strategies for cloud apps
✅ GitHub Actions for secure deployments
✅ Microsoft Defender for Cloud: Monitoring, detection, and response
Demo:
A simulated breach where an exposed secret in a GitHub repo leads to cloud access, then learn how to prevent it using GitHub Actions, Key Vault, and Microsoft Defender for Cloud in a secure CI/CD workflow.