Implement and manage personal access tokens
Implement and manage secrets, keys, and certificates by using Azure Key Vault, GitHub secrets, and Azure Pipelines secrets
Design and implement a strategy for managing sensitive files during deployment
Design pipelines to prevent leakage of sensitive information
Automate analysis of source code by using GitHub code scanning, GitHub secrets scanning, pipeline-based scans, and SonarQube
Automate security scanning, including container scanning and OWASP ZAP
Automate analysis of licensing, vulnerabilities, and versioning of open-source components by using Mend Bolt and GitHub Dependency Scanning
Configure and integrate monitoring by using Azure Monitor
Configure and integrate with monitoring tools, such as Azure Monitor and Application Insights
Manage access control to the monitoring platform
Configure alerts for pipeline events
Inspect distributed tracing by using Application Insights
Inspect application performance indicators
Inspect infrastructure performance indicators, including CPU, memory, disk, and network
Identify and monitor metrics for business value
Analyze usage metrics by using Application Insights