Azure

Practice transferring the AWS job-based cloud map into Azure resources, scopes, callers, and first service choices.

Practice choosing Azure tenant, subscription, resource group, region, and availability-zone placement before resources drift.

Practice using Azure names, resource IDs, resource types, tags, locks, and evidence before changing resources.

Practice mapping Azure service choices to traffic, compute, state, access, signals, operations, cost, and recovery jobs.

Practice reading Azure RBAC through caller identity, object IDs, scope, role assignments, least privilege, and one focused evidence check.

Practice using managed identities for workload access, inspecting runtime identity evidence, and separating identity from permission.

Practice deciding what belongs in Key Vault, inspecting secret metadata and access, and reasoning about rotation, deletion protection, and evidence.

Practice placing an Azure workload in a VNet, reading subnet and route evidence, and choosing safe route fixes.

Practice reading Azure packet rules, priority order, default rules, ASG targets, and effective rule evidence before changing access.

Practice choosing Azure public entry services, reading DNS and TLS evidence, and checking backend health before blaming the app.

Practice reading private endpoint, private DNS, service endpoint, resource firewall, and authorization evidence separately.

Practice matching Azure compute choices to workload shape, then inspect runtime evidence before changing production.

Practice reading the App Service plan, web app settings, identity, slots, health, and runtime evidence before changing a backend.

Practice reading Container Apps environments, images, revisions, ingress, scale rules, secrets, identity, and runtime failure evidence.

Practice deciding when VM control is honest, then inspecting image, size, disk, network, startup, patching, and runtime evidence.

Practice recognizing event-shaped jobs, triggers, function app evidence, retries, and failure modes in Azure Functions.

Practice deciding when Kubernetes is the right Azure operating model, then place node pools, pods, services, ingress, and identity in the cluster story.

Practice choosing Azure data services by data shape, access pattern, operating evidence, and recovery promise.

Practice Blob Storage choices for durable generated files, private access, blob names, tiers, and lifecycle rules.

Practice SQL database evidence for order records, private access, retention, and schema-sensitive releases.

Practice Cosmos DB decisions around item shape, access patterns, partition keys, request units, TTL, and NoSQL fit.

Practice attached disk and shared file path decisions for VM-shaped workloads and legacy migration paths.

Practice separating backup from restore, choosing retention windows, protecting blobs from deletion or overwrite, and reviewing safe deletion.

Practice matching Azure logs, metrics, traces, and alerts to real checkout questions.

Practice diagnostic settings, workspaces, tables, KQL, retention, and access choices for Azure logs.

Practice following requests, dependencies, exceptions, traces, and correlation through one backend failure.

Practice metric selection, dashboard judgment, alert rules, action groups, and alert noise control.

Practice separating artifact, runtime, configuration, traffic, health, and rollback evidence during an Azure release.

Practice using slots, revisions, traffic splitting, direct testing, and rollback targets during Azure releases.

Practice runtime configuration, app settings, secrets, Key Vault references, managed identity, and config rollback decisions.

Practice post-release verification and rollback judgment for Azure by reading production evidence, choosing safe first checks, and avoiding broad changes.

Practice watch windows, health checks, real-traffic evidence, rollback, fix-forward choices, and release records.

Practice pairing Azure cost shapes with failure promises before changing resources.

Practice using Azure Cost Management, Cost Analysis, tags, budgets, Advisor, and workload context before tuning spend.

Practice RTO, RPO, backup versus recovery, data protection, redundancy, recovery strategy, and restore drill judgment.