CloudSecOps

DevOps

+11

Secret Rotation Ownership: Who Rotates, Who Approves, Who Validates?

Jun 9, 2026

•

5 min read

Secret Rotation Ownership: Who Rotates, Who Approves, Who Validates?

A RACI framework for keeping Azure secrets, app dependencies, approvals, and evidence from turning into a last-minute scramble.

Matthew Koozer

Azure Landing Zones

+18

May 15, 2026

•

7 min read

Key Vault Patterns That Scale

A practical CloudLoom guide for designing Azure Key Vault across apps, teams, and network boundaries

Matthew Koozer

Platform Engineering

May 14, 2026

•

4 min read

Secrets Sprawl Is a Platform Tax

3 warning signs your cloud estate is paying for unmanaged credentials

Matthew Koozer

Azure Landing Zones

+13

From Deny to Deploy: Choosing the Right Azure Policy Effect

Apr 29, 2026

•

6 min read

From Deny to Deploy: Choosing the Right Azure Policy Effect

A CloudLoom decision framework for using Audit, Modify, and DeployIfNotExists without turning Azure governance into deployment friction.

Matthew Koozer

DevOps

+11

Exception workflows that keep platform teams sane

Apr 28, 2026

•

5 min read

Exception workflows that keep platform teams sane

A practical Azure governance guide for using exclusions, exemptions, and review cadence without turning edge cases into permanent drift.

Matthew Koozer

Azure Landing Zones

+14

Feb 27, 2026

•

5 min read

Prevent 80% of Private Endpoint Outages

Simplify DNS for Reliable Private Endpoints

Matthew Koozer

Platform Engineering

Standardizing network patterns across many VNets (without replatforming everything)Pattern Pack

Feb 27, 2026

•

10 min read

Standardizing network patterns across many VNets (without replatforming everything)Pattern Pack

Private endpoints fail for one reason. DNS ownership is unclear.

Matthew Koozer

Incident Response

If your automation can’t be rolled back, it’s a risk

Feb 20, 2026

•

7 min read

If your automation can’t be rolled back, it’s a risk

No matter how smart it looks in a PR, a notebook, or a chat window.

Matthew Koozer

DevOps

+14

Automation Maturity Ladder: From Scripts to Agentic Operations

Feb 20, 2026

•

8 min read

Automation Maturity Ladder: From Scripts to Agentic Operations

Scripts → Workflows → Agentic Operations

Matthew Koozer

DevOps

+10

AI-assisted ops: where LLMs actually reduce toil (and where they don't)

Feb 19, 2026

•

11 min read

AI-assisted ops: where LLMs actually reduce toil (and where they don't)

A field guide for platform, SRE, and cloud ops teams who want fewer tickets, fewer surprises, and safer automation.

Matthew Koozer

CloudSecOps

Secret Rotation Ownership: Who Rotates, Who Approves, Who Validates?

Key Vault Patterns That Scale

Secrets Sprawl Is a Platform Tax

From Deny to Deploy: Choosing the Right Azure Policy Effect

Exception workflows that keep platform teams sane

Prevent 80% of Private Endpoint Outages

Standardizing network patterns across many VNets (without replatforming everything)Pattern Pack

If your automation can’t be rolled back, it’s a risk

Automation Maturity Ladder: From Scripts to Agentic Operations

AI-assisted ops: where LLMs actually reduce toil (and where they don't)

CloudLoom Studio