The need for a mechanism to enforce security standards
As part of its cloud migration strategy this global investment bank needed to be able to define standard security policies then deploy once on a virtual machine to ease future releases and ensure consistency.
To achieve this, there was a need to:
- Set baseline security and best practice for Oracle/Postgres databases
- Codify security policies to be applied to the Azure cloud environment
- Add policies to a CI/CD pipeline with accompanying test framework
- Free developers to deploy databases in Azure without needing to re-create security controls each time