Microsoft Security Tech Accelerator
Dec 06 2023, 07:00 AM - 12:00 PM (PST)
Microsoft Tech Community

Azure Penetration Testing

Copper Contributor

Our firm has PaaS and IaaS resources deployed on Azure. We're undergoing a security audit by a prospective client who has asked how often Microsoft's security team conducts penetration tests of Azure systems and when the last test was performed. I have found various postings and white papers by Microsoft mentioning the internal penetration testing (,, but none that give specifics that would allow us to answer the audit team's questions. Where could we find answers to these questions?



2 Replies
best response confirmed by Michael Holste (Microsoft)

I would take a look at Microsoft Trust Center:


here is a link to multiple Azure compliance audit reports, including latest pen test:

Most recent penetration testing report is from early 2016 - I would like to see these produced more often (even in our on-premise solutions, we produce these quarterly).