Playbook
AKS is becoming the standard runtime and we need governance before it sprawls
Engineering teams are converging on Kubernetes as the application runtime. The platform team wants a paved-road AKS pattern with central security, networking, and policy before per-team clusters multiply beyond what platform engineering can support.
Trigger — Multiple AKS clusters spinning up without standards; security concerned.
Good outcome — Central AKS platform with policy guardrails, namespace governance, and Defender for Containers baseline.