Threat modeling your Azure PaaS application
I recently stumbled across an interesting article in the Azure Security documentation on building PCI compliant Payment Processing environment in Azure. The solution itself was well laid out, but what impressed me was the details in which Microsoft went over the threat model, from data flow diagram right down to the full threat model using the new Azure Threat Model template.
If you are writing applications and deploying to Azure, I encourage you to check out the Azure Security and Compliance Blueprint for PCI environments. It has a wealth of knowledge to help your design and write safer solutions in the Microsoft Cloud.