Microsoft Defender for Cloud

From ITAF to Azure Controls: Operationalizing an IT Audit Framework on Microsoft Cloud

An audit framework tells you what to assure. It does not tell you how to enforce it in a live cloud. Here is how I map the IT Audit Framework onto concrete Azure controls, Azure Policy, Defender for Cloud, and Purview, so assurance objectives become running enforcement instead of a spreadsheet.

June 13, 2026 · 4 min · Yogesh Thanvi

Mapping CSPM to Microsoft Defender for Cloud: From Findings to Enforcement

Defender for Cloud is excellent at telling you what is misconfigured. A finding is not a fix. Here is how I turn cloud security posture management on Azure from a dashboard of alerts into enforcement that blocks and remediates, using Azure Policy deny effects and admission-time control on AKS.

June 13, 2026 · 4 min · Yogesh Thanvi