This session by Giulio Astori and James P Brotsos at Microsoft Ignite 2025 demonstrates how Microsoft Defender for Cloud secures applications and cloud environments through proactive posture management and DevOps security integration.

Unified Application Security with Microsoft Defender for Cloud

Speakers: Giulio Astori & James P Brotsos

Microsoft Defender for Cloud offers enhanced security for cloud-native and AI workloads through unified visibility and posture management. This session covers:

Key Topics

Security Breach Insights: Understanding breaches and identifying areas of weakness in typical cloud deployments.
Modern Security Challenges: Addressing increasing complexity and sophistication of attacks.
Visibility and Threat Prioritization: Using built-in guardrails and smart mitigation strategies to prioritize threats.
Integrated DevOps Security: Demonstration of integrating Defender for Cloud with GitHub Advanced Security.
Risky Container Deployment Prevention: Steps to prevent vulnerable containers from being deployed by integrating Defender for Cloud CLI during the image build process.
Unified Multi-Cloud Security: Strategies for securing applications across different cloud platforms, with a focus on proactive protection and prevention.

Demo Highlights (By James P Brotsos)

DevOps pipeline security best practices
Using Defender for Cloud CLI for automated image assessment
Examples of configuration to block risky container images

Resources

Takeaways

Proactive security with continuous posture management
Depth integration with development workflows in GitHub and CI/CD
Reducing risk across cloud-native and AI-based applications

This session focuses on actionable security techniques for developers and cloud architects aiming to strengthen application protection using Microsoft Defender for Cloud. For further details, explore the event resources or watch more session replays on the Microsoft Ignite portal.