Matthew Koozer

Infrastructure Architect + FinOps practitioner sharing practical playbooks for cloud, cost, and AI ops.

DevOps

+11

Secret Rotation Ownership: Who Rotates, Who Approves, Who Validates?

Jun 9, 2026

•

5 min read

Secret Rotation Ownership: Who Rotates, Who Approves, Who Validates?

A RACI framework for keeping Azure secrets, app dependencies, approvals, and evidence from turning into a last-minute scramble.

Matthew Koozer

Azure Landing Zones

+18

May 15, 2026

•

7 min read

Key Vault Patterns That Scale

A practical CloudLoom guide for designing Azure Key Vault across apps, teams, and network boundaries

Matthew Koozer

Platform Engineering

May 14, 2026

•

4 min read

Secrets Sprawl Is a Platform Tax

3 warning signs your cloud estate is paying for unmanaged credentials

Matthew Koozer

Azure Landing Zones

+13

From Deny to Deploy: Choosing the Right Azure Policy Effect

Apr 29, 2026

•

6 min read

From Deny to Deploy: Choosing the Right Azure Policy Effect

A CloudLoom decision framework for using Audit, Modify, and DeployIfNotExists without turning Azure governance into deployment friction.

Matthew Koozer

DevOps

+11

Exception workflows that keep platform teams sane

Apr 28, 2026

•

5 min read

Exception workflows that keep platform teams sane

A practical Azure governance guide for using exclusions, exemptions, and review cadence without turning edge cases into permanent drift.

Matthew Koozer

FinOps

Renewal reviews finance will actually trust

Apr 11, 2026

•

7 min read

Renewal reviews finance will actually trust

A practical cadence and scorecard for cloud, platform, and tooling renewals before they quietly harden into waste

Matthew Koozer

Apr 9, 2026

•

6 min read

Commitment runway in Azure

A playbook for coverage, utilization, expiration, and renewal before savings quietly turn back into spend.

Matthew Koozer

Savings Plans

Apr 3, 2026

•

4 min read

Savings Plans Do Not Fix Bad Ownership. They Amplify It.

Three rules for getting commitment discounts under control without turning shared cloud spend into a political mess.

Matthew Koozer

FinOps

Mar 25, 2026

•

6 min read

Chargeback without a revolt

A practical framework for ownership tiers, exception paths, and finance alignment in Azure and shared cloud platforms

Matthew Koozer

FinOps

Mar 20, 2026

•

10 min read

Shared cost allocation in Azure

Split platform, app, and overhead without chaos

Matthew Koozer

Log Analytics

+11

Mar 11, 2026

•

10 min read

Log Analytics cost controls:retention, tables, DCR basics

A CloudLoom Studio operator guide for beginners who want lower Azure Monitor costs without flying blind

Matthew Koozer

FinOps

Cost-efficient observability: what to collect, where, and why - Playbook for beginners

Mar 5, 2026

•

7 min read

Cost-efficient observability: what to collect, where, and why - Playbook for beginners

A practical operator guide to keeping telemetry useful without letting logging bills drift into the red.

Matthew Koozer

FinOps

Mar 3, 2026

•

7 min read

Logging costs are architecture costs

Operator notes on Azure observability + FinOps (so your observability stays useful and your bill stays explainable)

Matthew Koozer

Azure Landing Zones

+14

Feb 27, 2026

•

5 min read

Prevent 80% of Private Endpoint Outages

Simplify DNS for Reliable Private Endpoints

Matthew Koozer

Platform Engineering

Standardizing network patterns across many VNets (without replatforming everything)Pattern Pack

Feb 27, 2026

•

10 min read

Standardizing network patterns across many VNets (without replatforming everything)Pattern Pack

Private endpoints fail for one reason. DNS ownership is unclear.

Matthew Koozer

Incident Response

If your automation can’t be rolled back, it’s a risk

Feb 20, 2026

•

7 min read

If your automation can’t be rolled back, it’s a risk

No matter how smart it looks in a PR, a notebook, or a chat window.

Matthew Koozer

DevOps

+14

Automation Maturity Ladder: From Scripts to Agentic Operations

Feb 20, 2026

•

8 min read

Automation Maturity Ladder: From Scripts to Agentic Operations

Scripts → Workflows → Agentic Operations

Matthew Koozer

DevOps

+10

AI-assisted ops: where LLMs actually reduce toil (and where they don't)

Feb 19, 2026

•

11 min read

AI-assisted ops: where LLMs actually reduce toil (and where they don't)

A field guide for platform, SRE, and cloud ops teams who want fewer tickets, fewer surprises, and safer automation.

Matthew Koozer

AI Ops isn’t a bot. It’s better questions + safer automation.

Feb 19, 2026

•

6 min read

AI Ops isn’t a bot. It’s better questions + safer automation.

A practical operator’s view of what “AI for operations” should actually do, and how to roll it out without creating new failure modes.

Matthew Koozer

FinOps

The fastest Azure SQL savings are usually boring

Feb 13, 2026

•

6 min read

The fastest Azure SQL savings are usually boring

Three moves that cut spend without heroics (and how to validate them).

Matthew Koozer

FinOps

Right-sizing SQL without breaking performance

Feb 12, 2026

•

7 min read

Right-sizing SQL without breaking performance

A decision-tree framework for Azure SQL Database, elastic pools, and Managed Instance

Matthew Koozer

FinOps

Allocating Cost Inside an Azure SQL Elastic Pool

Feb 11, 2026

•

7 min read

Allocating Cost Inside an Azure SQL Elastic Pool

Practical options that get you to showback or chargeback without pretending the numbers are perfect

Matthew Koozer

FinOps

Allocating cost inside an Azure SQL elastic pool (practical options)

Feb 8, 2026

•

9 min read

Allocating cost inside an Azure SQL elastic pool (practical options)

Chargeback and showback that does not devolve into guesswork

Matthew Koozer

SQL cost clarity: separating “platform” spend from “app” spend

Feb 6, 2026

•

8 min read

SQL cost clarity: separating “platform” spend from “app” spend

Matthew Koozer

Platform Engineering

Feb 4, 2026

•

5 min read

Elastic pools hide the truth

One insight about Azure SQL elastic pools, and why it matters more than most teams think

Matthew Koozer