Session
A Fresh Look at Securing Applications and APIs in Azure
Securing modern applications and APIs in the cloud goes far beyond authentication—it's about building layered defenses that support a Zero Trust architecture. This session offers a practical look at security patterns in Azure, weaving together identity, token lifecycle management, and platform services into a cohesive, end-to-end security strategy.
Topics will include:
* Authentication and session management patterns using Microsoft Entra ID and OpenID Connect, including integration with external identity providers
* OAuth 2.0 flows for securing APIs, covering both delegated and app-only access
* Best practices for token lifetimes, refresh strategies, and session boundaries
* Defense-in-depth using Azure API Management as a central policy enforcement point
* Secure, credential-free service-to-service communication using Managed Identities
* Designing for Zero Trust with segmentation and least privilege
Whether you’re building new cloud-native apps, modernizing legacy systems, or enabling secure B2B and B2E integrations, you’ll leave this session with actionable patterns to strengthen the security of your applications and APIs across the Azure ecosystem.

Michele Leroux Bustamante
CEO, Solliance Inc; Founder PolicyServer; Cloud / Security Architect; Microsoft RD
San Diego, California, United States
Links
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top