https://yogeshthanvi.com/ Recent content on Yogesh Thanvi Hugo en-us Mon, 08 Jun 2026 00:00:00 +0000 https://yogeshthanvi.com/posts/enforcing-pod-security-aks-azure-policy/ Mon, 08 Jun 2026 00:00:00 +0000 https://yogeshthanvi.com/posts/enforcing-pod-security-aks-azure-policy/ Detecting insecure pods on Azure Kubernetes Service is not the same as preventing them. Here is how Azure Policy and OPA Gatekeeper move enforcement to admission time, so a misconfigured workload never reaches the cluster. https://yogeshthanvi.com/posts/engineering-trust/ Mon, 08 Jun 2026 00:00:00 +0000 https://yogeshthanvi.com/posts/engineering-trust/ In cloud-native and AI-driven systems, compliance can no longer be a periodic activity. It has to be continuously demonstrated. Here is the architecture for engineering that trust. https://yogeshthanvi.com/posts/from-detection-to-enforcement/ Mon, 08 Jun 2026 00:00:00 +0000 https://yogeshthanvi.com/posts/from-detection-to-enforcement/ Most Cloud Security Posture Management tools detect misconfigurations and stop there. Detection without enforcement leaves the exposure in place. Here is what changes when policy-as-code blocks and remediates at admission time. https://yogeshthanvi.com/posts/incident-aware-cicd/ Mon, 08 Jun 2026 00:00:00 +0000 https://yogeshthanvi.com/posts/incident-aware-cicd/ Every production incident is a lesson the system has already paid for. Most teams capture that lesson in a postmortem document and then reintroduce the same failure months later. Here is how to convert incidents into automated controls that make a failure mode impossible to repeat. https://yogeshthanvi.com/posts/securing-ai-workloads-on-azure/ Mon, 08 Jun 2026 00:00:00 +0000 https://yogeshthanvi.com/posts/securing-ai-workloads-on-azure/ Generative AI on Azure introduces control points that traditional application security never had to handle. Here are practical governance patterns for Azure OpenAI and AI Foundry workloads, mapped to where the real risks live. https://yogeshthanvi.com/about/ Mon, 01 Jan 0001 00:00:00 +0000 https://yogeshthanvi.com/about/ Cloud security and DevSecOps leader with 14+ years securing internet-scale distributed infrastructure. https://yogeshthanvi.com/contact/ Mon, 01 Jan 0001 00:00:00 +0000 https://yogeshthanvi.com/contact/ Get in touch with Yogesh Thanvi for talks, collaboration, or professional inquiries. https://yogeshthanvi.com/service/ Mon, 01 Jan 0001 00:00:00 +0000 https://yogeshthanvi.com/service/ Standards development, peer review, and judging across ISACA, IEEE, and industry. https://yogeshthanvi.com/publications/ Mon, 01 Jan 0001 00:00:00 +0000 https://yogeshthanvi.com/publications/ Peer-reviewed research on DevSecOps governance, cloud security, Kubernetes, and AI risk. https://yogeshthanvi.com/speaking/ Mon, 01 Jan 0001 00:00:00 +0000 https://yogeshthanvi.com/speaking/ Conference talks and panels on cloud security, DevSecOps governance, and trusted AI infrastructure.