Based on a true story - building a PCI compliant cloud application Непрерывная поставка
David recently started his own company (XIRUS https://xirus.com.au ) focusing on mainly Microsoft stacks in the cloud, training individuals and companies in all things Microsoft Azure and Azure DevOps (formerly VSTS), and also still doing hands-on consulting and infracoding. He has held a Microsoft MVP award for 5 years and lately got awarded MVP for Azure. A co-organiser of the Melbourne Microsoft Cloud and Datacentre meetup he also regularly speaks at international conferences and combines his interest to travel the world with his passion to share IT stories with the community. David's blog can be found on https://david-obrien.net . In addition to blogging he has also published online training courses on Pluralsight.
You deal with credit card information? Then you have heard the dreaded word - PCI. But what does this actually mean? What do we need to do and what horrendous things do we have to do to make our workload PCI compliant?
This is not your regular true crime story. This is the story of an IT consultant navigating the waters of PCI compliance while making sure that his customer is successful in hosting their business critical application on Microsoft Azure. Come to this session to find out, first hand, what hurdles we had to take to achieve full PCI compliance. What Azure services were used? Which ones did we want to use, but couldn’t? What grotesque workarounds did we have to build to make the application stable? This is a no-holds-barred tale of deploying a real PCI compliant application onto Azure services with lots of drawings and demos.