diff --git a/azure-pipelines/microbuild.after.yml b/azure-pipelines/microbuild.after.yml
index d3e51b44..3d918d17 100644
--- a/azure-pipelines/microbuild.after.yml
+++ b/azure-pipelines/microbuild.after.yml
@@ -44,3 +44,5 @@ steps:
       /additionalCodexArguments:$(Build.ArtifactStagingDirectory)/build_logs
   condition: and(succeeded(), eq(variables['Build.SourceBranch'], 'refs/heads/master'))
   continueOnError: true
+
+- template: secure-development-tools.yml
diff --git a/azure-pipelines/secure-development-tools.yml b/azure-pipelines/secure-development-tools.yml
new file mode 100644
index 00000000..12a1a021
--- /dev/null
+++ b/azure-pipelines/secure-development-tools.yml
@@ -0,0 +1,13 @@
+ steps:
+
+ ### Check for checked in credentials.
+- task: securedevelopmentteam.vss-secure-development-tools.build-task-credscan.CredScan@2
+  displayName: 'Run CredScan'
+  inputs:
+    debugMode: false
+
+ ### Run PoliCheck to check for disallowed terms. targetType: F indicates we're searching files and folders.
+- task: securedevelopmentteam.vss-secure-development-tools.build-task-policheck.PoliCheck@1
+  displayName: 'Run PoliCheck'
+  inputs:
+    targetType: F