Azure Resource Manager is a new way to deploy and manage virtual machines and cloud services. It’s part of the “infrastructure as code” movement – which allows you to declare your infrastructure components using text files instead of having to manaually configure storage, networking and compute components.
However, security is still key. The devops movement is a potentail securty minefield – and made more so by unfettered automation without due diligence security reviews. Microsoft is aware of this problem and has provided the “Secuirty Considerations for Azure Resource Manager” white paper. You can learn more about it at http://blogs.msdn.com/b/azuresecurity/archive/2015/07/21/security-considerations-and-best-practices-for-azure-resource-manager.aspx