Platform Engineering on Azure: governance, observability and security for your IDP (Part 2)

Second post in the Azure Platform Engineering series. In Part 1, we built the provisioning layer of the Internal Developer Platform: Dev Center, Azure Deployment Environments, Bicep templates, and shared AKS runtime patterns. That is necessary, but it is not sufficient. An Internal Developer Platform becomes trustworthy when it enforces standards without turning into a bureaucratic cage. That is where governance, observability, and security enter the picture. The platform must make the right path easy, the risky path difficult, and the unsupported path visible. ...

July 13, 2026 · 10 min · Ricardo Martins

Platform Engineering on Azure: building an Internal Developer Platform with AKS and Bicep (Part 1)

First post in a two-part series on Platform Engineering on Azure. If your developers still need tickets, handoffs, or tribal knowledge to get a usable environment, your delivery system is slower than your codebase. Platform Engineering is how you fix that. The goal is not to hide infrastructure from developers. The goal is to package infrastructure, security, and observability into a self-service product developers can trust. On Azure, that means combining Microsoft Dev Center, Azure Deployment Environments, Bicep, and a shared runtime such as AKS. ...

July 13, 2026 · 10 min · Ricardo Martins

Postmortems on Azure: automation with Azure DevOps and learning metrics (Part 2)

Second post in the Azure postmortem series. In Part 1, we built the foundation: blameless culture, a reusable template, KQL-based evidence collection, and Logic Apps automation. Now we move from documentation to operations. A mature postmortem process should leave traces in the engineering system: linked work items, measurable trends, dashboards, and visible feedback into reliability practices such as SLOs, alert tuning, and chaos experiments. If a postmortem ends as a document nobody operationalizes, the process failed. ...

July 13, 2026 · 9 min · Ricardo Martins

Postmortems on Azure: implementing blameless incident analysis with Azure Monitor (Part 1)

First post in a two-part series on Azure postmortems. Incidents are inevitable. Repeat incidents are optional. A lot of teams say they do postmortems, but what they really have is a short meeting, a vague document, and a backlog item nobody revisits. A good Azure postmortem is different: it is blameless, evidence-based, and tightly connected to telemetry. If you already use Azure Monitor, Application Insights, Log Analytics, and Azure Activity Logs, you already have most of the raw material you need. ...

July 13, 2026 · 13 min · Ricardo Martins