Episodios
-
Our original guest had an emergency situation, so you'll just have to sit through listening to your favorite co-hosts' banter for the first time in about a year.
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we introduce Nina Alli. Nina Alli has over 16 years of experience in biotechnology, biomedical, and security with a focus of healthcare. Her work in healthcare has seen her deal with the complexities of modernization of complex legacy systems within the healthcare industry, this included but are not limited to infrastructure, legacy system integration, and EHR (electronic healthcare records). Her passion and work on various advisory boards has seen her work on the Department of Defense (DoD) Technology Transfer Advisory Board in New York City, and Digital Medical (DiMe) Society Strategic Advisory Board in which she weighs in on various elements where technology intersects healthcare. Alli is Executive Director of Biohacking Village at DEFCON.
Show Notes/Links
* Ninaâs LinkedIn Profile: https://www.linkedin.com/in/janineamedina/
* Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files: https://www.microsoft.com/en-us/security/blog/2024/10/29/midnight-blizzard-conducts-large-scale-spear-phishing-campaign-using-rdp-files/?msockid=17ac8e193f12624606ec9abc3ea8636f
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
¿Faltan episodios?
-
Join us for this spine-tingling Halloween special, as the Precision Hunt Team from Microsoft Defender Experts takes you on a thrilling tour through the creepiest corners of the threat landscape. Discover how to battle the cyber beasts and creepy crawlies that are terrorizing networks everywhereâbefore they come knocking on your door.
Show Notes/Links:
* Plan costs and understand pricing and billing - Microsoft Sentinel | Microsoft Learn
* Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files | Microsoft Security Blog
* Introducing the new Microsoft Sentinel simplified pricing.
* Detecting browser anomalies to disrupt attacks early - Microsoft Community Hub
* Integrating Defender EASM With Microsoft Sentinel Guide - CHARBEL NEMNOM - MVP | MCT | CCSP | CISM - Cloud & CyberSecurity
* Save money on your Sentinel ingestion costs with Data Collection Rules - Microsoft Community Hub
* Deploy Microsoft Sentinel using Bicep - Microsoft Community Hub
* Microsoft Defender for Identity: the critical role of identities in automatic attack disruption - Microsoft Community Hub
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome Samantha Gardener, Principal Threat Hunt Lead at Microsoft.
Show Notes/Links
* Mini workshop from MMS: https://aka.ms/MMSKQL
* Coming in December: SC-5004: Defend against cyberthreats with Microsoft Defender XDR: https://techcommunity.microsoft.com/t5/ilt-communications-blog/coming-in-december-sc-5004-defend-against-cyberthreats-with/ba-p/4281365
* Cybersecurity Summit 2024 (Richard Diver): https://www.youtube.com/live/ix4V-xjqEls
* Webinar - Defender Experts: S.T.A.R. Forum - Strategies for Threat Awareness and Response, Episode 1: https://aka.ms/DefenderExpertsWebinar
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome back Microsoft MVP, Craig Fretwell. Craig has changed companies since we last talked. Working now for Rackspace does he fret well? Tune in to find out. Join us live to ask Craig your questions!
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Thomas Naunheim, Cyber Security Architect and MVP. Thomas is here to share some insights of his "EntraOps Privileged EAM" project.
Show Notes/Links
* Thomas Naunheimâs LinkedIn profile: https://www.linkedin.com/in/thomasnaunheim/
* Upcoming Defender Experts Webinar: https://aka.ms/DefenderExpertsWebinar
* Lyrics for Three's Company: https://www.lyricsondemand.com/tvthemes/threescompanylyrics.html
* EntraOps Privileged EAM: https://entraops.com/
Watch the live show replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome back Red Canary to the show. But this time, we'll dig into what Red Canary is doing with Generative AI and specifically as part of the Copilot for Security partners program.
Show Notes/Links
* Red Canary's website: https://redcanary.com/
* Cordell BaanHofman's LinkedIn profile: https://www.linkedin.com/in/cordellb/
* Sam Straka's LinkedIn profile: https://www.linkedin.com/in/samstraka10/
* Red Canary Copilot for Security Prompts: https://github.com/rod-trent/Copilot-for-Security/blob/main/Prompts/Plugins/Red_Canary.md
* Microsoft Copilot for Security Achieves HITRUST Certification: https://techcommunity.microsoft.com/t5/microsoft-security-copilot-blog/microsoft-copilot-for-security-achieves-hitrust-certification/ba-p/4262303
* Microsoft Copilot for Security Now Covered by HIPAA Business Associate Agreement (BAA): https://techcommunity.microsoft.com/t5/microsoft-security-copilot-blog/microsoft-copilot-for-security-now-covered-by-hipaa-business/ba-p/4220174
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome Miguel Clarke, Cybersecurity and GRC Evangelist with MISA member Armor Defense. As a trusted partner to more than 1,500 firms in over 40 countries, Armor offers cybersecurity and compliance consulting, professional services, and managed services. Armorâs industry-leading experts leverage non-proprietary frameworks and a 24/7/365 SOC to help organizations tackle the complexities of cybersecurity and compliance at a cloud-scale.
Show Notes/Links
* Armorâs web site: https://www.armor.com/
* Miguel Clarkeâs LinkedIn profile: https://www.linkedin.com/in/miguel-a-clarke/
* David Fatovic's LinkedIn profile: https://www.linkedin.com/in/davidfatovic/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Come learn about the Microsoft Learn Student Ambassadors program! This program is aimed at students who are interested in technology and have a passion for sharing their knowledge with others. The program provides students with the opportunity to learn about new Microsoft products, engage with like-minded peers, and receive training and resources to help them become successful technology leaders on their campuses. The Microsoft Student Partner program is a similar program that is a global group of on-campus ambassadors who are eager to help fellow students, lead in their local tech community, and develop technical and career skills for the future.
Show Notes/Links
* Microsoft Learn Student Ambassadors: https://mvp.microsoft.com/studentambassadors
* Nicklas' blog: https://www.learnintune.net/
* MVP Program: https://mvp.microsoft.com/
* Microsoft Student Innovator: https://developer.microsoft.com/en-us/reactor/series/S-1386/
* Steve Hosking - Microsoft MMD Team: https://steven.hosking.com.au/
* The Future of Cybersecurity: Leveraging AI to Secure Your Organization: https://msevents.microsoft.com/event?id=2106510487
* Microsoft Sentinel pricing: https://azure.microsoft.com/en-us/pricing/details/microsoft-sentinel/
* Microsoft Purview Data Loss Prevention: https://www.microsoft.com/en-us/security/business/information-protection/microsoft-purview-data-loss-prevention
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join is this episode as we welcome Microsoft royalty: Nishan DeSilva. Learn what's it's like leading a team of Principal Product People Manager Leads, Principal Product Managers, Developers and Senior Product Managers across globe.
Show Notes/Links
* Nishanâs LinkedIn profile: https://www.linkedin.com/in/nishandesilva/
* Microsoft Copilot for Security: https://www.microsoft.com/en-us/security/business/ai-machine-learning/microsoft-copilot-security
* Microsoft Purview: https://www.microsoft.com/en-us/security/business/microsoft-purview
* Secure your data to confidently take advantage of Generative AI with Microsoft Purview: https://techcommunity.microsoft.com/t5/security-compliance-and-identity/secure-your-data-to-confidently-take-advantage-of-generative-ai/ba-p/4127335
* Afternoon Cyber Tea with Ann Johnson - The Role of Data and AI in Modern Cybersecurity: https://thecyberwire.com/podcasts/afternoon-cyber-tea/99/notes
* Security above all elseâexpanding Microsoftâs Secure Future Initiative: https://www.microsoft.com/en-us/security/blog/2024/05/03/security-above-all-else-expanding-microsofts-secure-future-initiative/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome the illustrious Mark Simos, lead cybersecurity architect at Microsoft - and inventor of the super famous Microsoft Cybersecurity Reference Architecture (MCRA).
Notes/Links
* Mark's LinkedIn profile: https://www.linkedin.com/in/marksimos/
* Mark's List of Cybersecurity Resources frequently sent to customers and colleagues: https://aka.ms/markslist
* Microsoft Cybersecurity Reference Architectures: https://aka.ms/mcra
* Microsoft Cybersecurity Reference Architectures videos: https://aka.ms/mcra-videos
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Stop by this episode and learn why Performanta has been recommended for the show for its highly innovative and sophisticated solutions. Looking for evidence of how far a partner can push the integration with Copilot for Security? This is it!
Show Notes/Links
* Joseâs LinkedIn Profile: https://www.linkedin.com/in/jose365/
* Joseâs Blog:
* Torvaldâs LinkedIn Profile: https://www.linkedin.com/in/torvald-johnson/
* Azure classic subscription administrators: https://learn.microsoft.com/en-us/azure/role-based-access-control/classic-administrators?tabs=azure-portal
* Taking a Snapshot of Existing Tenant: https://microsoft365dsc.com/user-guide/get-started/snapshot-of-existing-tenant/
Watch the live replayâŠ
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we continue our Passion to Profession month as we welcome Arielle Cireseanu-Acevedo, Cybersecurity Governance, Risk and Compliance Analyst.
Show Notes/Links
* Arielleâs LinkedIn profile: https://www.linkedin.com/in/arielle-cireseanu-acevedo/
* Accelerate your observability journey with Azure Monitor pipeline (preview): https://techcommunity.microsoft.com/t5/azure-observability-blog/accelerate-your-observability-journey-with-azure-monitor/ba-p/4124852
* Download the Azure Monitor pipeline deck: https://github.com/The-Microsoft-Security-Insights-Show/ShowCode/blob/main/Docs/Arc%20Jumpstart%20deck.pdf
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we continue our Passion to Profession month as we welcome Hatim Othman, Information Security Leader at Cisco Meraki.
Show Notes/Links
* Morten's blog link: https://mortenknudsen.net/?p=3200
* Reddit: https://old.reddit.com/r/sysadmin/comments/1eqziiy/patch_tuesday_megathread_20240813/li5kt6n/
* Bay Area Coffee Roasters: https://hdehal.github.io/coffee-maps/?fbclid=IwAR1RlnylrsBIaLhe8jPbRSAEwhIZs70MopkBMpbhF4k0REW6gJx0szedfWQ
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Angela Brown. Continuing our Passion to Profession month.
Show Notes/Links
* Angelaâs LinkedIn profile: https://www.linkedin.com/in/angsec/
* Partner training on CfS: Copilot for Security (microsoft.github.io)
Microsoft 365 Message Center Archive (merill.net) â M365 updates (including security updates)
https://merill.net
â Awesome site and blog for Entra and AD tools and news
Entra ID has announced a new User Risk detection focused on Attacker in the Middle (AiTM). Click Here to Learn More.
Microsoft Research Published a blog about AiTM, describing architecture patterns that step in to block this using defense in depth strategies. Here is the blog
The NIST Zero Trust Implementation Guide featuring Microsoftâs Security Capabilities. This is the first industry wide effort that provides customers with a guide on how to implement Zero Trust security from a trusted âneutralâ source (NIST) that tries to showcase how to implement the user cases using the different security vendors out there. Microsoftâs Security products featured prominently and we now have this beautiful mapping that shows that our products across the division can truly cover almost all the required capabilities to satisfy NISTâs requirements. Microsoft security partnered with NIST to announce the publication on our own blogs:Smoother Zero Trust with Microsoft and NIST | Microsoft Security BlogAnd this is the full picture blessed by NIST:
What is this effort?
Since early 2022, I have a lead a team of Zero Trust implementation experts across CXE, DSR and PG to collaborate with NISTâs NCCoE on this publication. After initial reception to their proposed Zero Trust reference architecture was mixed, NIST sought out this lab to make the architecture real by showing how it can be implemented. The lab featured over 20 of the most impactful security vendors in the industry. The lab organized the vendors into four âenterprisesâ each one showcasing a mix of different vendors and trying to implement the same use cases. We were able to both showcase our own capabilities for Microsoft Security as well as show that we play well with others as our âEnterprise 3â features Lookout, Forescout, Appgate and F5, for example.
Why is this important?
* NISTâs Zero Trust Reference Architecture is likely to be the blueprint used by other organizations and regulatory bodies to guide enterprise customers in how to deploy Zero Trust Access and security end to end. Having Microsoft represented shows our thought leadership as well as our desire to play well with others.
* Having all our capabilities on full display helps customers who decide to with the better together Microsoft story build the comfort that our suite of products covers all if not most of their needs.
* We were also able to influence many of the use cases themselves and add to them to showcase capabilities unique to the Microsoft story or better with the Microsoft story. For example, authentication context, authentication strength, access revocation and data security use cases were all added based on our feedback.
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Thomas Marsh, Cybersecurity Analyst at Telstra. Continuing our Passion to Profession month, Thomas has an interesting story to tell about his journey and his experience as a newbie in Cybersecurity.
Show Notes/Links
* (GA) You can now release or move email messages from quarantine back to the user's inbox directly from Take actions in advanced hunting and in custom detections. https://learn.microsoft.com/en-us/defender-xdr/custom-detection-rules#actions-on-emails
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Robert Disney returns to the show to continue his demo of AI driven development. Code writing code to make the code better!
Show Notes/Links:
* Robertâs LinkedIn profile: https://www.linkedin.com/in/robertdisney/
* FauxPilot: https://github.com/robdisney/fauxpilot
* Copilot for Security: https://learn.microsoft.com/en-us/copilot/security/get-started-security-copilot
* The Perils of AI Self-Replication: Averting a "Model Collapse" https://rodtrent.substack.com/p/the-perils-of-ai-self-replication
* Jupiter Notebooks: https://jupyter.org/
*
Watch the live replay...
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome the authors of The Definitive Guide to KQL from Microsoft Press, Mark Morowczynski, Matthew Zorich, and Rod Trent. Learn about the writing process. Hear how this book was put together, why itâs such an important release, and learn how this is not just a book, but a community collaboration. It takes a village.
Show Notes/Links
* Definitive Guide to KQL on Amazon: https://amzn.to/46ix0tX
* Definitive Guide to KQL on Microsoft Press: https://www.microsoftpressstore.com/store/definitive-guide-to-kql-using-kusto-query-language-9780138293383
* Definitive Guide to KQL GitHub repo: https://github.com/KQLMSPress/definitive-guide-kql
* Definitive Guide to KQL Copilot for Security Plugin: https://github.com/KQLMSPress/definitive-guide-kql/tree/main/Other/CfSPlugin
Watch the Live Replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we talk with Michael Melone, Cyber Threat Hunter at Microsoft. Michael Melone is a cybersecurity professional with over 20 years of experience, specializing in determined human adversary incident response, security operations, and KQL. As a principal security researcher for Microsoft's Defender Experts for XDR, Michael works as part of a team of analysts overseeing security operations for its customers and drives product design for the software used in its delivery. Prior to this role, he spent over 7 years investigating targeted attack incidents at customers across the globe as well as 3 years helping large enterprise customers onboard and operationalize the Microsoft 365 Defender XDR suite. Michael holds an executive MBA from USF, a Master of Science in IT Management specializing information assurance and security from Capella University, as well as being a long-time holder of the CISSP certification and a variety of other IT industry certifications. Michael is also the author of the books Designing Secure Systems and Think like a Hacker.
Show Notes/Links
* Michael Melone's LinkedIn profile - https://www.linkedin.com/in/mjmelone/
* Michaelâs YouTube channel: https://www.youtube.com/channel/UCm4mtCNoTEVSPoxUhO4ssbg
* Michael's blog: https://melone.co/
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com -
Join us this episode as we welcome Heike Ritter, Principal Product Manager at Microsoft! Many of you already know (or have heard of) Heike, but this episode we get her all to ourselves to talk about how in her role at Microsoft she is leading knowledge building through the Virtual Ninja Training series, among other things.
Show Notes/Links
* Defender News: https://aka.ms/DefenderNews
* Ninja Training: https://aka.ms/NinjaTraining
* The Ninja Show: https://aka.ms/NinjaShow
* Sword of the Shattered Kingdoms: Ancient Crystal of Eldoria: https://amzn.to/3LfKKME
Watch the live replay
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.microsoftsecurityinsights.com - Mostrar más