Loading johnnynguyen.cloud portal
Microsoft Azure · initializing blades
Microsoft Azure Hire me
JOHNNY NGUYEN

Security

Defender-style preview

A mock Microsoft Defender / Azure security blade for the portfolio itself: what is protected, what is planned, and what the project proves.

secureScore 78 /100

Mock score. The point is the story: privacy-by-default content sync now, backend guardrails before AI goes live.

Identity and access

In progress

Entra ID, RBAC, least privilege, and AZ-104 identity objectives are active study areas.

Data protection

Configured

Public-safe content allowlist, phone-number scrub requirement, and explicit vault denylist.

Application security

Planned

Phase 3 keeps Azure OpenAI secrets server-side in Azure Functions, then moves toward managed identity.

Monitoring

Planned

Future Cloudflare Web Analytics or Azure-native telemetry with no invasive tracking.

Recommendations

  • Add managed identity for Azure Functions to call Azure OpenAI without API keys.
  • Add rate limiting before enabling natural-language chatbot requests.
  • Add robots.txt and confirm private paths never ship in dist.
  • Keep the phone-number privacy grep clean before every deploy.