Episoder
-
Come learn about the Microsoft Learn Student Ambassadors program! This program is aimed at students who are interested in technology and have a passion for sharing their knowledge with others. The program provides students with the opportunity to learn about new Microsoft products, engage with like-minded peers, and receive training and resources to help them become successful technology leaders on their campuses. The Microsoft Student Partner program is a similar program that is a global group of on-campus ambassadors who are eager to help fellow students, lead in their local tech community, and develop technical and career skills for the future.
Show Notes/Links
* Microsoft Learn Student Ambassadors: https://mvp.microsoft.com/studentambassadors
* Nicklas' blog: https://www.learnintune.net/
* MVP Program: https://mvp.microsoft.com/
* Microsoft Student Innovator: https://developer.microsoft.com/en-us/reactor/series/S-1386/
* Steve Hosking - Microsoft MMD Team: https://steven.hosking.com.au/
* The Future of Cybersecurity: Leveraging AI to Secure Your Organization: https://msevents.microsoft.com/event?id=2106510487
* Microsoft Sentinel pricing: https://azure.microsoft.com/en-us/pricing/details/microsoft-sentinel/
* Microsoft Purview Data Loss Prevention: https://www.microsoft.com/en-us/security/business/information-protection/microsoft-purview-data-loss-prevention
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join is this episode as we welcome Microsoft royalty: Nishan DeSilva. Learn what's it's like leading a team of Principal Product People Manager Leads, Principal Product Managers, Developers and Senior Product Managers across globe.
Show Notes/Links
* Nishan’s LinkedIn profile: https://www.linkedin.com/in/nishandesilva/
* Microsoft Copilot for Security: https://www.microsoft.com/en-us/security/business/ai-machine-learning/microsoft-copilot-security
* Microsoft Purview: https://www.microsoft.com/en-us/security/business/microsoft-purview
* Secure your data to confidently take advantage of Generative AI with Microsoft Purview: https://techcommunity.microsoft.com/t5/security-compliance-and-identity/secure-your-data-to-confidently-take-advantage-of-generative-ai/ba-p/4127335
* Afternoon Cyber Tea with Ann Johnson - The Role of Data and AI in Modern Cybersecurity: https://thecyberwire.com/podcasts/afternoon-cyber-tea/99/notes
* Security above all else—expanding Microsoft’s Secure Future Initiative: https://www.microsoft.com/en-us/security/blog/2024/05/03/security-above-all-else-expanding-microsofts-secure-future-initiative/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Manglende episoder?
-
Join us this episode as we welcome the illustrious Mark Simos, lead cybersecurity architect at Microsoft - and inventor of the super famous Microsoft Cybersecurity Reference Architecture (MCRA).
Notes/Links
* Mark's LinkedIn profile: https://www.linkedin.com/in/marksimos/
* Mark's List of Cybersecurity Resources frequently sent to customers and colleagues: https://aka.ms/markslist
* Microsoft Cybersecurity Reference Architectures: https://aka.ms/mcra
* Microsoft Cybersecurity Reference Architectures videos: https://aka.ms/mcra-videos
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Stop by this episode and learn why Performanta has been recommended for the show for its highly innovative and sophisticated solutions. Looking for evidence of how far a partner can push the integration with Copilot for Security? This is it!
Show Notes/Links
* Jose’s LinkedIn Profile: https://www.linkedin.com/in/jose365/
* Jose’s Blog:
* Torvald’s LinkedIn Profile: https://www.linkedin.com/in/torvald-johnson/
* Azure classic subscription administrators: https://learn.microsoft.com/en-us/azure/role-based-access-control/classic-administrators?tabs=azure-portal
* Taking a Snapshot of Existing Tenant: https://microsoft365dsc.com/user-guide/get-started/snapshot-of-existing-tenant/
Watch the live replay…
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we continue our Passion to Profession month as we welcome Arielle Cireseanu-Acevedo, Cybersecurity Governance, Risk and Compliance Analyst.
Show Notes/Links
* Arielle’s LinkedIn profile: https://www.linkedin.com/in/arielle-cireseanu-acevedo/
* Accelerate your observability journey with Azure Monitor pipeline (preview): https://techcommunity.microsoft.com/t5/azure-observability-blog/accelerate-your-observability-journey-with-azure-monitor/ba-p/4124852
* Download the Azure Monitor pipeline deck: https://github.com/The-Microsoft-Security-Insights-Show/ShowCode/blob/main/Docs/Arc%20Jumpstart%20deck.pdf
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we continue our Passion to Profession month as we welcome Hatim Othman, Information Security Leader at Cisco Meraki.
Show Notes/Links
* Morten's blog link: https://mortenknudsen.net/?p=3200
* Reddit: https://old.reddit.com/r/sysadmin/comments/1eqziiy/patch_tuesday_megathread_20240813/li5kt6n/
* Bay Area Coffee Roasters: https://hdehal.github.io/coffee-maps/?fbclid=IwAR1RlnylrsBIaLhe8jPbRSAEwhIZs70MopkBMpbhF4k0REW6gJx0szedfWQ
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Angela Brown. Continuing our Passion to Profession month.
Show Notes/Links
* Angela’s LinkedIn profile: https://www.linkedin.com/in/angsec/
* Partner training on CfS: Copilot for Security (microsoft.github.io)
Microsoft 365 Message Center Archive (merill.net) – M365 updates (including security updates)
https://merill.net
– Awesome site and blog for Entra and AD tools and news
Entra ID has announced a new User Risk detection focused on Attacker in the Middle (AiTM). Click Here to Learn More.
Microsoft Research Published a blog about AiTM, describing architecture patterns that step in to block this using defense in depth strategies. Here is the blog
The NIST Zero Trust Implementation Guide featuring Microsoft’s Security Capabilities. This is the first industry wide effort that provides customers with a guide on how to implement Zero Trust security from a trusted “neutral” source (NIST) that tries to showcase how to implement the user cases using the different security vendors out there. Microsoft’s Security products featured prominently and we now have this beautiful mapping that shows that our products across the division can truly cover almost all the required capabilities to satisfy NIST’s requirements. Microsoft security partnered with NIST to announce the publication on our own blogs:Smoother Zero Trust with Microsoft and NIST | Microsoft Security BlogAnd this is the full picture blessed by NIST:
What is this effort?
Since early 2022, I have a lead a team of Zero Trust implementation experts across CXE, DSR and PG to collaborate with NIST’s NCCoE on this publication. After initial reception to their proposed Zero Trust reference architecture was mixed, NIST sought out this lab to make the architecture real by showing how it can be implemented. The lab featured over 20 of the most impactful security vendors in the industry. The lab organized the vendors into four “enterprises” each one showcasing a mix of different vendors and trying to implement the same use cases. We were able to both showcase our own capabilities for Microsoft Security as well as show that we play well with others as our “Enterprise 3” features Lookout, Forescout, Appgate and F5, for example.
Why is this important?
* NIST’s Zero Trust Reference Architecture is likely to be the blueprint used by other organizations and regulatory bodies to guide enterprise customers in how to deploy Zero Trust Access and security end to end. Having Microsoft represented shows our thought leadership as well as our desire to play well with others.
* Having all our capabilities on full display helps customers who decide to with the better together Microsoft story build the comfort that our suite of products covers all if not most of their needs.
* We were also able to influence many of the use cases themselves and add to them to showcase capabilities unique to the Microsoft story or better with the Microsoft story. For example, authentication context, authentication strength, access revocation and data security use cases were all added based on our feedback.
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Thomas Marsh, Cybersecurity Analyst at Telstra. Continuing our Passion to Profession month, Thomas has an interesting story to tell about his journey and his experience as a newbie in Cybersecurity.
Show Notes/Links
* (GA) You can now release or move email messages from quarantine back to the user's inbox directly from Take actions in advanced hunting and in custom detections. https://learn.microsoft.com/en-us/defender-xdr/custom-detection-rules#actions-on-emails
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Robert Disney returns to the show to continue his demo of AI driven development. Code writing code to make the code better!
Show Notes/Links:
* Robert’s LinkedIn profile: https://www.linkedin.com/in/robertdisney/
* FauxPilot: https://github.com/robdisney/fauxpilot
* Copilot for Security: https://learn.microsoft.com/en-us/copilot/security/get-started-security-copilot
* The Perils of AI Self-Replication: Averting a "Model Collapse" https://rodtrent.substack.com/p/the-perils-of-ai-self-replication
* Jupiter Notebooks: https://jupyter.org/
*
Watch the live replay...
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome the authors of The Definitive Guide to KQL from Microsoft Press, Mark Morowczynski, Matthew Zorich, and Rod Trent. Learn about the writing process. Hear how this book was put together, why it’s such an important release, and learn how this is not just a book, but a community collaboration. It takes a village.
Show Notes/Links
* Definitive Guide to KQL on Amazon: https://amzn.to/46ix0tX
* Definitive Guide to KQL on Microsoft Press: https://www.microsoftpressstore.com/store/definitive-guide-to-kql-using-kusto-query-language-9780138293383
* Definitive Guide to KQL GitHub repo: https://github.com/KQLMSPress/definitive-guide-kql
* Definitive Guide to KQL Copilot for Security Plugin: https://github.com/KQLMSPress/definitive-guide-kql/tree/main/Other/CfSPlugin
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Michael Melone, Cyber Threat Hunter at Microsoft. Michael Melone is a cybersecurity professional with over 20 years of experience, specializing in determined human adversary incident response, security operations, and KQL. As a principal security researcher for Microsoft's Defender Experts for XDR, Michael works as part of a team of analysts overseeing security operations for its customers and drives product design for the software used in its delivery. Prior to this role, he spent over 7 years investigating targeted attack incidents at customers across the globe as well as 3 years helping large enterprise customers onboard and operationalize the Microsoft 365 Defender XDR suite. Michael holds an executive MBA from USF, a Master of Science in IT Management specializing information assurance and security from Capella University, as well as being a long-time holder of the CISSP certification and a variety of other IT industry certifications. Michael is also the author of the books Designing Secure Systems and Think like a Hacker.
Show Notes/Links
* Michael Melone's LinkedIn profile - https://www.linkedin.com/in/mjmelone/
* Michael’s YouTube channel: https://www.youtube.com/channel/UCm4mtCNoTEVSPoxUhO4ssbg
* Michael's blog: https://melone.co/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome Heike Ritter, Principal Product Manager at Microsoft! Many of you already know (or have heard of) Heike, but this episode we get her all to ourselves to talk about how in her role at Microsoft she is leading knowledge building through the Virtual Ninja Training series, among other things.
Show Notes/Links
* Defender News: https://aka.ms/DefenderNews
* Ninja Training: https://aka.ms/NinjaTraining
* The Ninja Show: https://aka.ms/NinjaShow
* Sword of the Shattered Kingdoms: Ancient Crystal of Eldoria: https://amzn.to/3LfKKME
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us as we have a hosts-only show leading up to Independence Day. Independence Day, known colloquially as the Fourth of July, is a federal holiday in the United States commemorating the Declaration of Independence, which was ratified by the Second Continental Congress on July 4, 1776, establishing the United States of America.
EXTRA: Rod is out sick. Brodie is doing new daddy things. So, it’s up to Raae and Edward to celebrate the US holiday.
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
We have a treat this week! You've heard about it. Many of you have used it and swear by it. Now hear directly from ...drum roll, please... Cribl!
Show Notes/Links
* Cribl’s website: https://cribl.io/
* Aldo Dossola’s LinkedIn profile: https://www.linkedin.com/in/aldo-dossola/
* Kam Amir’s LinkedIn profile: https://www.linkedin.com/in/kamiloamir/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
In this episode, our good friends from Difenda will drop by to talk about stories from the MSSP trenches, how they help customers accelerate cyber maturity via Microsoft Security technologies (including Copilot for Security), who they think will take home the Stanley Cup, and any other topics we throw at them. Joining us from the Difenda team will be Andrew Hodges and Kyle Link, two guys with plenty of infosec scar tissue, and as a result, an equal number of pragmatic solutions.
Show Notes/Links
* Difenda website: https://www.difenda.com/
* Difenda Microsoft Marketplace: https://appsource.microsoft.com/marketplace/partner-dir/987a6d16-1c37-4bcc-b5f5-1a6091c3d7c9/overview
* Microsoft Copilot for Security Adoption ‘Difend’ Accelerator Services: https://appsource.microsoft.com/marketplace/consulting-services/difenda.difenda_copilot_for_security
* Microsoft Copilot for Security Adoption ‘Difend’ Accelerator Brief: https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RW1l1h1
* Partner Learning for CfS: https://securitypartners.transform.microsoft.com/partner-ecosystem
* https://Microsoft365dsc.com - Microsoft365DSC is the most comprehensive and complete solution to have your Microsoft 365 tenant configuration simple and stable. It's an Open-Source initiative hosted on GitHub, led by Microsoft engineers and maintained by the community.
* New Show News section of the site: https://www.microsoftsecurityinsights.com/t/show-news
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we invite and talk with Robert Disney. Robert is doing some amazing things with ChatGPT and security.
NOTE: This is a demo-heavy episode! If you can, watch the live replay below…
NOTE PART 2: As mentioned HERE on the site, we will stop streaming the live show to Twitch. Please instead use YouTube, LinkedIn, or X/Twitter.
Show Notes/Links
* Robert’s LinkedIn profile: https://www.linkedin.com/in/robertdisney/
* FauxPilot: https://github.com/robdisney/fauxpilot
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome, Michael Zambotti, Client CIO at Miles Technologies.
This show was originally scheduled for guest, Akto. Akto is the only Open-Source API Security platform and focuses on GenAI security. Watch for the reschedule.
Show Notes/Links:
* Mike Zambotti LinkedIn profile: https://www.linkedin.com/in/mjzambotti/
* Women in Cybersecurity: https://www.wicys.org/
* Episode 200 - Tuesday, March 26th, 5pm EST - Leticia Gammill, Director, Security Sales Programs @Microsoft | Founder & President at WOMCY, Latam Women in Cybersecurity: https://www.microsoftsecurityinsights.com/p/the-microsoft-security-insights-show
* The Microsoft Security Insights Show - Women in Cybersecurity Month - March 2024: https://www.microsoftsecurityinsights.com/p/the-microsoft-security-insights-show
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Cognni to learn about their solution for data security and how this plays a huge part in securing AI.
Show Notes/Links
* Cognni’s website: https://cognni.ai/
* Connect with Clifford Corney on LinkedIn: https://www.linkedin.com/in/cliffcorney/
* Connect with Oliver Samuel on LinkedIn: https://www.linkedin.com/in/oliver-samuel-227b6a1b6/
Live Show Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
This episode we welcome Drew Nicholas and Mary Lieb to talk all about Extended Security Posture Management (XSPM).
Show Notes/Links
* Mary Lieb LinkedIn profile: https://www.linkedin.com/in/mary-lieb-profile/
* Drew Nicholas LinkedIn profile: https://www.linkedin.com/in/drewnicholas1/
* Review and classify critical assets: https://learn.microsoft.com/en-us/security-exposure-management/classify-critical-assets
* Review security initiatives: https://learn.microsoft.com/en-us/security-exposure-management/initiatives
* Introducing Microsoft Security Exposure Management: https://techcommunity.microsoft.com/t5/security-compliance-and-identity/introducing-microsoft-security-exposure-management/ba-p/4080907
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
This episode we welcome back Chris Stelzer to dig deep into how to develop your own plug-ins for Copilot for Security!
Show Notes/Links
* Chris Stelzer’s LinkedIn profile: https://www.linkedin.com/in/scstelz/
* Official GitHub Repo for Copilot for Security: https://github.com/Azure/Copilot-For-Security/tree/main
* Microsoft Sentinel Triage AssistanT (STAT): https://github.com/briandelmsft/SentinelAutomationModules/tree/main/Deploy
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com - Vis mere
