Author: Wayne Campbell
-
DevSecOps Governance (Part 3): Implementing Dynamic Application Security Testing (DAST) in Build Pipelines
Introduction Following on from my original blog ‘When “Shift‑Left” Leaves the Back Door Open: Why Governance Matters More Than Ever‘ this is part 3 of a 3 part follow up series where ill discuss examples of tools and strategies I’ve used to implement some of the security considerations I outlined in the aforementioned post. In…
-
DevSecOps Governance (Part 2): Static Analysis Software Testing (SAST), Software Composition Analysis (SCA) and Build Pipelines
Introduction following on from my original blog ‘When “Shift‑Left” Leaves the Back Door Open: Why Governance Matters More Than Ever’ this is part 2 of a 3 part follow up series where ill discuss examples of tools and strategies I’ve used to implement some of the security considerations I outlined in the aforementioned post. In…
-
DevSecOps Governance (Part 1): Tooling, Secret Scanning, and Branch Protection Strategies
Introduction following on from my original blog ‘When “Shift‑Left” Leaves the Back Door Open: Why Governance Matters More Than Ever’ this is part 1 of a 3 part follow up series where ill discuss examples of tools and strategies I’ve used to implement some of the security considerations I outlined in the aforementioned post. In…
-
When “Shift‑Left” Leaves the Back Door Open: Why Governance Matters More Than Ever
Intro For years, DevOps has been the crucial link between development and operations — powering automation, continuous delivery, and secure, fast‑moving engineering. But as organizations push developers to become full‑stack and embrace shift‑left practices, the traditional DevOps role is becoming diluted. Developers are now expected to build features, deploy them, and manage pipelines, often without…
-
The Human Side of Engineering: Why It Matters
Understanding people, building confidence, and creating space for growth Intro One of the hardest lessons in tech leadership isn’t about cloud architecture, security configuration, or frameworks—it’s about people. Every colleague brings their own mix of confidence, fear, enthusiasm, and experience. If you want the best from them, you have to understand what makes them tick.…
-
Creating and deploying Azure cloud infrastructure using C#
Introduction So I was tasked with writing a pro-code solution to generate Azure Resource groups using C#. What I ended up with is a simple, scalable function that takes in a parameter object and automatically creates a resource group within an Azure subscription. Although limited to creating Resource Groups this solution has the potential to…
-
AbilityNet – Tech enablement in the community
Since early 2025, I’ve been volunteering with AbilityNet, and it’s been a hugely rewarding experience. Before you even start helping clients, AbilityNet ensures you’re prepared with a comprehensive training program—covering accessibility, security, and best practices for supporting people who might feel overwhelmed by technology. This is an invaluable foundation. What I Do The work is…
-
The Cert Sprint: Lessons from a Year of Microsoft Exams
I’ve completed a number of certs and applied skills over the last 12 months. Its been quite a ride balancing it all whilst 100% committed to client delivery. That said I’m sure this isn’t a patch on what some of you cert machines have achieved out there! Anyway, here’s the lineup: The Reality Check Was…
-
Build an Azure PostgreSQL Server and create a sample database.
Introduction The aim of this article is to provide an overview of how to build a PostgreSQL Server, create a test database and populate it with sample data using a SQL dump file. This can come in really handy if you performing Proof of concepts e.g. AI data engineering or data obfuscation etc or if…
-
Deploying Sentinel to multiple environments using Bicep in VS Code
Introduction The aim of this article is describe the process of deploying Sentinel instances to multiple environments* in Azure using Bicep for Infrastructure as Code. We’ll walkthrough creating and onboarding the Sentinel instance as well as adding diagnostic settings to capture Sentinel Logs in a Log Analytics workspace. *in this demo separate environments refers to…