Implement a configuration management strategy for application infrastructure, including IaC
Define an IaC strategy, including source control and automation of testing and deployment
Design and implement desired state configuration for environments, including Azure Automation State Configuration, Azure Resource Manager, Bicep, and Azure Automanage Machine Configuration
Monitor pipeline health, including failure rate, duration, and flaky tests
Optimize pipelines for cost, time, performance, and reliability
Analyze pipeline load to determine agent configuration and capacity
Design and implement a retention strategy for pipeline artifacts and dependencies
Implement and manage service connections
Implement and manage personal access tokens
Implement and manage secrets, keys, and certificates by using Azure Key Vault, GitHub secrets, and Azure Pipelines secrets
Design pipelines to prevent leakage of sensitive information
Design and implement a strategy for managing sensitive files during deployment
Automate analysis of source code by using GitHub code scanning, GitHub secrets scanning, pipeline-based scans, and SonarQube
Automate security scanning, including container scanning and OWASP ZAP
Automate analysis of licensing, vulnerabilities, and versioning of open-source components by using Mend Bolt and GitHub Dependency Scanning
Configure and integrate monitoring by using Azure Monitor