The client has a development team that performs regular testing of its cloud infrastructure. This has always been a manual task which is slow and prone to error. 

Automated testing using the Pester PowerShell module was introduced to perform a series of tests and report the results. The Pester code was then added to an Azure DevOps pipeline to run on a regular schedule. A comprehensive set of actions involving reading and updating Azure resources was separately run in the context of different security roles, highlighting if members of an Azure Active Directory security group had acquired unnecessary permissions or lost access to perform approved functionality. 

This provided enormous benefit of conducting comprehensive and frequent routine testing with minimal intervention. It also reduced the chances of human error over testing manually. The tests are extremely flexible and can be easily expanded e.g. to ensure that Azure resource configuration options are as expected. 

  • Minimal intervention  
  • Reduction of human error 
  • Flexibiliy  
  • Scalability  
  • Security enhanced  

The next steps are to develop further tests to support the implementation of enterprise-scale Azure landing zones to ensure the integrity of the resource and security model. 

If you enjoyed this story, or have an upcoming project in mind, please don’t hesitate to contact us via enquiries@risual.com or 0300 303 2044. Alternatively, you can submit an enquiry here  Contact – risual   

About the author