🔥 3-day streak
Microsoft Cybersecurity Architect Expert143 / 158
Question 143 of 158

A financial services company is adopting the Azure Well-Architected Framework and Cloud Adoption Framework to standardize how new landing zones are provisioned. Platform engineers deploy all Azure resources through Bicep templates in a CI/CD pipeline. Recently, a misconfigured storage account with public blob access was deployed to production and later exploited. The security architect must design a DevSecOps control that prevents insecure infrastructure definitions from ever reaching production, while giving developers feedback early in the workflow. Which approach best aligns with WAF security and DevSecOps shift-left principles?

Reviewed for accuracy · Report an issueNext question