Talking Security - For News About Items Related To Microsoft Security podcast

1
From CASB to SaaS Security: Tackling OAuth Threats with Microsoft Defender for Cloud Apps 43:46

منذ 8 أيام43:46

43:46

In this episode of the Talking Security Podcast, we sit down with Itai Cohen from the Microsoft Defender for Cloud Apps team to explore the evolution of SaaS Security — from the traditional CASB (Cloud Access Security Broker) model to a broader, more proactive security strategy. We cover: Why CASB isn’t enough anymore and what the future of SaaS Security looks like The growing threat of OAuth abuse — and why it’s such a hot target for attackers New innovations from Microsoft like Attack Path Analysis and Advanced Hunting for OAuth threats How Exposure Management is helping organizations proactively reduce SaaS risk 🎧 Whether you're a security architect, IT decision-maker, or Microsoft 365 enthusiast, this episode will help you rethink how you protect your SaaS environments. 👇 Don’t forget to like, subscribe, and share with your network. 📬 Got feedback or topics you'd like us to cover? Let us know in the comments or reach out via TalkingSecurity.nl ! Outline of the recording 0:00 - Intro 0:22 - Introduction of this episode 2:05 - Introduction of Itai Cohen - Microsoft 2:29 - What was the original goal of Microsoft Defender for Cloud Apps as a CASB solution? 4:10 - Why is Microsoft adding more capabilities on top of the traditional CASB model towards a broader SaaS Security approach? 6:08 - How do you see today’s SaaS threat landscape compared to when CASB solutions first appeared? 10:11 - Why is OAuth has become such an attractive attack vector? 13:53 - What are typical OAuth attack paths, and how do attackers exploit them? 14:50 - Microsoft blog - https://techcommunity.microsoft.com/blog/microsoftthreatprotectionblog/protect-saas-apps-from-oauth-threats-with-attack-path-advanced-hunting-and-more/4395997- , you announced new capabilities to detect OAuth threats. Can you give us an overview of what’s new? 16:16 - How does Attack Path Analysis help customers better understand and mitigate OAuth risks? 19:10 - Advanced Hunting is now available for OAuth threats — how can security teams leverage this capability? 22:36 - What are some common mistakes you see organizations make when it comes to OAuth permissions and consent management? 26:40 - Exposure Management - How does Microsoft Defender for Cloud Apps contribute to a broader exposure management approach, and how can customers use it 31:47 - How do you see the role of SaaS Security evolving within the wider Exposure Management strategy that Microsoft is building? 33:09 - How does SaaS Security fit into Microsoft’s broader security strategy, alongside Defender XDR and Entra ID? 35:33 - SaaS Security is overlooked? Why? 40:42 - If you weren’t working in security, what would you be doing instead? 42:20 - Closing the episode 43:23 - Outro #SaaSSecurity #MicrosoftDefender #OAuth #CASB #CloudSecurity #TalkingSecurityPodcast…

1
Let's Talk March Update: Zero Days, OAuth Attacks, and the Latest in Microsoft Security 32:04

منذ 18 يومًا32:04

32:04

Join your hosts Frans Oudendorp and Pouyan Khabazi in this month's episode of "Let's Talk" on the Talking Security podcast. We dive into critical cybersecurity developments from March, including Microsoft's latest Patch Tuesday addressing seven zero-day vulnerabilities ( https://www.bleepingcomputer.com/news/microsoft/microsoft-march-2025-patch-tuesday-fixes-7-zero-days-57-flaws/ ), and emerging OAuth app attack campaigns targeting Microsoft 365 accounts ( https://www.bleepingcomputer.com/news/security/fake-security-alert-issues-on-github-use-oauth-app-to-hijack-accounts/ , https://www.bleepingcomputer.com/news/security/malicious-adobe-docusign-oauth-apps-target-microsoft-365-accounts/ ). We highlight important updates across Microsoft security solutions, such as Microsoft Defender for Office's improved reporting tools, Defender for Identity's Enhanced Identity Inventory (preview) ( https://learn.microsoft.com/en-us/defender-for-identity/identity-inventory ), and Defender for Cloud Apps' new RBAC scoping for behaviors ( https://learn.microsoft.com/en-us/defender-cloud-apps/manage-admins , https://learn.microsoft.com/en-us/defender-cloud-apps/behaviors ). We also discuss the new GA release of on-demand malware scanning in Defender for Storage, capable of scanning blobs up to 50 GB, and introduce the preview of the Defender for Cloud Cost Calculator. Stay informed with our community spotlight featuring Rod Trent's Security Copilot prompts ( https://github.com/rod-trent/Security-Copilot/tree/main/Prompts/Workshop ), and get your calendars ready for upcoming industry events, including the Swiss Microsoft Security Summit, ExpertsLive 2025, Microsoft Secure, and RSAC. Plus, tune in for a fun geeky trivia about the first-ever internet domain! Stay vigilant, stay informed, and let's talk security!…

1
🔒Let's Talk Security - Feb 2025 Update | Safer Internet Day, Defender XDR, DeepSeek Data Leak & More 40:34

منذ 9 weeks40:34

40:34

Welcome to another episode of "Talking Security - Let's Talk!" 🚀 This month, we bring you the latest cybersecurity updates, breaking news, and expert insights to keep you informed and ahead of threats. 🔹 Topics in this episode: ✅ Safer Internet Day 2025 – Promoting a safer online world for everyone ✅ DeepSeek Database Leak – Exposing sensitive chat history & backend data ✅ Defender for Endpoint & Office – New reporting and security enhancements ✅ Defender for Identity – Improved attack path visibility & security updates ✅ Microsoft Sentinel Updates – New features & integrations for threat intelligence ✅ Community Spotlight – A new detection engine to protect the Netherlands - https://Threathunters.nl ✅ Event Roundup – The must-attend cybersecurity events of 2025 - https://www.microsoft.com/en-us/security/blog/2025/02/03/hear-from-microsoft-security-experts-at-these-top-cybersecurity-events-in-2025/ ✅ Geeky Fun Fact – The first computer virus & its creators 📢 Join the discussion! Want to be part of our monthly recordings? Fill out the form on - https://forms.office.com/e/DhYZzQ8t6z 👍 Like, share, and subscribe for more cybersecurity insights! 🔔 Turn on notifications so you never miss an update! 💬 What are your thoughts on this month's cybersecurity updates? Drop a comment below! ⬇️ #CyberSecurity #MicrosoftDefender #LetsTalkSecurity #ThreatHunting #MicrosoftSentinel #DataLeak #SIEM #SecurityUpdates…

1
Let's Talk: January Update: Critical Advancements & Key Insights 35:56

منذ 12 weeks35:56

35:56

🎧 Welcome to the latest episode of "Talking Security" - Let's Talk series! Join your host, Frans Oudendorp, and co-host Pouyan Khabazi, as they dive into the crucial advancements and developments in cybersecurity over the past two months. 🕵️‍♂️ In this episode, we cover: - DORA Giveaway: All about the Digital Operational Resilience Act (DORA), now enforced. - Defender for Office 365 LLM: Breaking down new threat classification details - https://www.linkedin.com/posts/markolauren_defenderforoffice-xdr-mdo-activity-7283818118110470145-6_pp - LDAPNightMare: What has happened in LDAP. - Microsoft Sentinel Updates: From Bicep templates to SOC optimizations and more. - Community Spotlight - https://rogierdijkman.medium.com/detecting-fasthttp-bruteforce-attacks-on-entra-users-42ceb13bf856 - Event Roundup - 38C3 - From phishing to Tenant takeover - https://www.youtube.com/watch?v=uowTmPomYcg YellowHat - https://yellowhat.live/ WPNinjaNL Connect / MC2MC Connect - https://wpninjas.nl/connect/ - Fun Geeky Element: Trivia challenge - reach out on our LinkedIn page - https://www.linkedin.com/company/talkingsecurity 🚀 Don't miss out on these essential updates and expert insights that can help fortify your organization’s defenses. Tune in now, stay informed, and remember - stay safe, stay secure, and let’s keep the conversation going! Thank you for your continued support. Don't forget to like, share, and subscribe for more insights from the world of cybersecurity!…

1
Let's Talk: Microsoft Ignite 2024 Security Highlights 49:57

منذ 18 weeks49:57

49:57

Join us for the inaugural episode of "Let's Talk," a new series within the Talking Security podcast, where hosts Pouyan Khabazi and Frans Oudendorp delve into the latest updates from Microsoft Ignite 2024. In this episode, we cover the groundbreaking advancements in Microsoft Security products, including updates to Defender for Cloud, the launch of Defender for APIs, and new capabilities in Microsoft Entra and Microsoft XDR. Discover how these innovations will shape the future of cybersecurity, with discussions on AI advancements, quantum computing partnerships, and enhanced security measures. Tune in for a comprehensive recap of Ignite 2024 and insights into staying ahead in the ever-evolving world of cybersecurity. Don't miss out on the key highlights and expert analysis in this exciting new series! KustoCon Playlist - https://youtube.com/playlist?list=PL9sQKc0RBCiB73e4q-847W02Rzt3qPzbR&si=f0MbGvjGml8SOTxP Ignite 2024 Book of News - https://news.microsoft.com/ignite-2024-book-of-news/…

1
Navigating DevSecOps with GitHub: Insights from April Yoho 43:45

منذ 24 weeks43:45

43:45

In this engaging episode of the TalkingSecurity podcast – DevSecOps series, host Frans Oudendorp, along with co-hosts Pouyan Khabazi and Sander ten Brinke, sits down online with special guest April Yoho from GitHub. Together, they explore April's unique journey in the DevSecOps field, delve into the world of GitHub and GitHub Advanced Security, and discuss the transformative impact of Copilot. Tune in for an insightful conversation packed with practical tips and expert advice, perfect for anyone looking to enhance their knowledge in DevSecOps.…

1
MVP Insights E06 - Strengthening Community Connections with Pablo Chacon and Katie Ryckman 46:11

منذ 28 weeks46:11

46:11

In the sixth episode of the "Security MVP Insights" series on the TalkingSecurity podcast, hosts Frans Oudendorp and Pouyan Khabazi welcome special guests Pablo Chacon and Katie Ryckman. Both esteemed professionals at Microsoft, Pablo and Katie lead the Customer Connection Program (CCP), playing a pivotal role in fostering collaboration between the community, MVPs, and Microsoft. During this insightful episode, Pablo and Katie delve into their work with the CCP, sharing how they bridge the gap between Microsoft's internal teams and its diverse user community. They discuss the importance of community engagement, the impact of feedback from MVPs, and the initiatives they have implemented to strengthen these connections. Episode Highlights: 0:00 Intro with music 0:28 Introduction of the Episode 1:16 3 questions in 1 1:34 Katie - Journey to the current Role 3:13 Pablo - Journey to the current Role 7:15 The beginning of Intune 8:12 What is the Microsoft Customer Connection Program (CCP) 20:22 Specific challenges or cultural differences that impact the work 28:26 What trends do we foresee in the cybersecurity community 32:47 Advice for IT and Security professionals to get more involved in the community 40:49 Personal or Professional goals 41:26 The goals from Katie 42:20 The goals from Pablo 44:00 Thanks to Katie and Pablo 45:10 Closing the episode 45:39 Outro with music This episode is a must-listen for anyone interested in the dynamics of community building within the tech industry. Subscribe to the "Security MVP Insights" series and stay tuned for more in-depth discussions on bridging the gap between technology providers and their users. Connect with Pablo Chacon - https://www.linkedin.com/in/pjchacon/ - and Katie Ryckman - https://www.linkedin.com/in/katieryckman/ - on LinkedIn to learn more about their work with the Customer Connection Program at Microsoft. Join the CCP Program - https://AKA.MS/joinCCP Stay informed and engaged with the latest trends in cybersecurity and community collaboration by tuning in now!…

1
DevSecOps E07 - Elevating DevSecOps: Mastering Infrastructure and Identity Monitoring 39:14

منذ 31 weeks39:14

39:14

In this compelling follow-up episode of the Talking Security podcast, hosts Sander ten Brinke, Pouyan Khabazi, and Frans Oudendorp delve into the crucial aspects of monitoring infrastructure and identity within the DevSecOps framework. Building on our previous discussion, this episode provides a thorough exploration of best practices for securing your infrastructure and managing identities to maintain a robust security posture. Topics covered in this episode include: - Key components of infrastructure monitoring in a DevSecOps environment - Strategies for effective identity management and monitoring - Techniques for integrating infrastructure and identity monitoring tools - Real-world examples of infrastructure and identity threats and how to mitigate them Tune in to gain valuable insights and practical tips on fortifying your infrastructure and identity monitoring processes. Whether you're enhancing your existing systems or implementing new solutions, this episode offers indispensable guidance to ensure your operations remain secure and resilient. Don’t miss this opportunity to expand your knowledge and expertise in infrastructure and identity monitoring within the dynamic and ever-evolving landscape of DevSecOps.…

1
MVP Insights E05 - Exploring Advanced Cybersecurity Strategies with Mona Ghadiri 47:56

منذ 33 weeks47:56

47:56

In the fifth episode of the "Security MVP Insights" series on the TalkingSecurity podcast, hosts Frans Oudendorp and Pouyan Khabazi engage in a captivating discussion with special guest Mona Ghadiri. Mona, a highly experienced cybersecurity professional, currently holds the position of Director of Product Management at BlueVoyant and is a distinguished Microsoft MVP in Security. In this episode, Mona shares her professional journey, her pivotal role at BlueVoyant, and her significant contributions to the cybersecurity community. With a strong background in product management, Mona discusses the evolution of Managed Detection and Response (MDR) services and the innovative strategies her team employs to safeguard clients against emerging threats. Episode Highlights: 0:00 Intro with music 0:28 Introduction of the Episode 1:51 Welcome Mona 2:03 Introduction of Mona and her background 4:30 The primary areas of expertise within the realm of Microsoft technology and cybersecurity! 5:59 Some examples of Security for Co-Pilot - promptbooks from BlueVoyant! 8:30 Examples of running projects 12:39 SOAR on top of Co-pilot 16:19 Business challenges that were addressed 19:57 Overload / complexity of the configuration of technology 22:19 The biggest cybersecurity challenges on a global scale 26:21 What about the chain of all the pieces of software that we are using 28:46 Collaboration within Security 31:38 Specific regulations that helps driving customers moving forward 37:40 AI Question 40:16 Microsoft Customer Connection Program 41:30 2nd part of the AI Question 43:25 Personal and Professional Goal of Mona 46:10 Thanks to Mona 46:43 Closing the episode 47:26 Outro with music Don't miss this opportunity to gain valuable insights from one of the leading experts in the field. Subscribe to the "Security MVP Insights" series and stay tuned for more thought-provoking discussions on the latest in cybersecurity. Connect with Mona Ghadiri on LinkedIn ( https://www.linkedin.com/in/mona-ghadiri/ ) and explore her work at BlueVoyant. This podcast series is essential listening for IT and security professionals eager to keep pace with the rapidly evolving cybersecurity landscape. Tune in now and elevate your cybersecurity expertise!…

1
MVP Insights E04 - Unlocking Cybersecurity, the Insights with Gianni Castaldi 🎉 44:33

منذ 36 weeks44:33

44:33

Join hosts Frans Oudendorp and Pouyan Khabazi in the fourth episode of the "Security MVP Insights" series on the TalkingSecurity podcast for a compelling and informative discussion. This episode features special guest Gianni Castaldi, a renowned cybersecurity expert and Microsoft MVP, who shares his deep insights into the intricacies of today's cybersecurity landscape. In this engaging conversation, Gianni delves into his journey to becoming a Microsoft Security MVP, discusses his primary areas of expertise, and addresses the most pressing cybersecurity challenges on both a global and local scale. From community projects like KustoCon to navigating local regulations in the Netherlands, Gianni provides a wealth of knowledge and practical examples from his work in the field. Episode Highlights: 0:00 Opening with the Intro 2:30 Gianni's Introduction and Background 4:43 The Road to Becoming a Microsoft Security MVP 6:22 Gianni's Primary Area of Expertise 7:36 Key Challenges in Cybersecurity 9:23 Community Projects and KustoCon 12:25 Global Cybersecurity Challenges 16:00 Local Challenges and Regulations 17:55 Specific Regulations in the Netherlands 18:48 Navigating Local Issues 21:08 Examples of Gianni's Current Projects 25:27 Balancing Automation and Rapid Response 28:02 Future Trends in Cybersecurity 32:11 Sharing Sentinel Between Teams 34:35 The Role of AI in Cybersecurity 38:13 The Importance of Community in Cybersecurity 40:34 Personal and Professional Goals 42:58 Thanks to Gianni and Closing Remarks 44:01 Closing Don’t miss this opportunity to enhance your cybersecurity knowledge and stay ahead of the curve. Subscribe to the "Security MVP Insights" series and stay tuned for more expert discussions from the world of cybersecurity. Connect with Gianni Castaldi on https://www.linkedin.com/in/giannicastaldi/ and explore his work at https://kustoking.com . This podcast series is a must-listen for IT and security professionals looking to keep up with the ever-evolving cybersecurity landscape. 🙌 Tune in now and elevate your cybersecurity expertise!…

1
MVP Insights E03 - How Airbrush Boosts Mattias Borg in CyberSecurity! 🚀 49:35

منذ 38 weeks49:35

49:35

Join hosts Frans Oudendorp and Pouyan Khabazi for the third episode of the "Security MVP Insights" series on the TalkingSecurity podcast. This time, they are joined by the esteemed cybersecurity expert and Microsoft MVP, Mattias Borg, for an in-depth exploration of today's cybersecurity landscape. In this episode, Mattias shares his expertise and insights, offering listeners a deeper understanding of the complexities and challenges faced in the cybersecurity field. From his journey as a Microsoft MVP to his hands-on experiences and projects, Mattias provides valuable perspectives that will benefit IT and security professionals. This episode contains: 0:00 Intro 0:29 Starting the episode with an awesome intro 1:58 Introduction of Mattias 3:09 Security Dojo podcast 4:08 The technical background an how to become an MVP 11:36 Primary areas of expertise in Cybersecurity 15:56 Another fun thing to show SOAR is working 19:45 It's time to investigate in the SOAR and how you advise customers on this? 26:07 What do you see as the biggest cybersecurity challenges on a global scale today? 27:03 How is AI helping the missing human part 32:22 How do you approach the balance between rapid response times and automation in cybersecurity? 35:03 What trends do you foresee in the cybersecurity landscape over the next few years? 37:38 Do you think that nation attacks will grow coming period 40:34 AI Question 43:06 How important is community collaboration in the field of cybersecurity? 46:50 What are your personal or professional goals for the coming period? 48:19 Thanks to Mattias 48:34 Closing words 49:02 Outro You can reach out and connect with Mattias via - https://www.linkedin.com/in/matteborg82/ This series is an invaluable resource for IT and security professionals aiming to stay ahead in the ever-evolving field of cybersecurity. 🙌 Tune in now and enhance your cybersecurity knowledge!…

1
#38 - MVP Security Insights - Thijs Lecomte 41:40

منذ 40 weeks41:40

41:40

In the second episode of the "Security MVP Insights" series on the TalkingSecurity podcast, hosts Frans Oudendorp and Pouyan Khabazi are back with another insightful discussion. This time, they are joined by Thijs Lecomte, a distinguished cybersecurity expert and Microsoft MVP, to delve into the complexities of today's cybersecurity environment. Don’t miss this engaging and informative conversation with Thijs. Subscribe to our podcast and stay tuned for more episodes in the "Security MVP Insights" series, where we bring you the latest from the world of cybersecurity. Tune in now to stay ahead of the curve and enhance your cybersecurity knowledge! This episode contains: 0:00 Opening with the Intro 2:20 Introduction of Thijs 3:09 Thijs shares his background and how he became a MVP 5:00 Thijs his primary area of expertise in Microsoft Technology 7:15 The projects where Thijs is working on 9:08 Microsoft Technologies that are used 11:13 Explanation of Exposure Management 12:30 What challenges are there in Thijs his area 15:05 What are the biggest Cybersecurity challenges at global scale 16:48 Making cybersecurity accessible 18:51 Region (Belgium) challenges within Cybersecurity 20:46 Balance between rapid response times and automation 27:10 What are the trends within Cybersecurity landscape 30:40 AI Question for Thijs 34:24 Community collaboration and the importance of that 35:56 How Microsoft MVP's play a role in the community of Cybersecurity 37:38 Personal/Professional goal for Thijs 38:53 How to enroll in Cybersecurity as a professional 40:15 Closing note of the epsiode 41:07 Outro This series promises to be an invaluable resource for IT and security professionals aiming to stay ahead in the ever-changing world of cybersecurity. 🙌 You can reach out and connect with Thijs via - https://www.linkedin.com/in/thijslecomte and his blog https://365bythijs.be/…

1
#37 - MVP Security Insights - Sanna Diana Tomren 42:40

منذ 42 weeks42:40

42:40

Welcome to the premiere episode of "Security MVP Insights," where we sit down with leading Microsoft Security MVPs from around the world to explore the dynamic landscape of cybersecurity. In this first episode, we are thrilled to feature Sanna Diana Tomren, a distinguished Microsoft Security MVP known for her extensive expertise and innovative approach to tackling cybersecurity challenges. Join us as Sanna shares her journey in the field of cybersecurity, shedding light on the pressing global and local threats that organisations face today. We will delve into her expert perspectives on the latest trends in cybersecurity, discussing both current issues and future developments that professionals need to be aware of. This episode contains: 0:00 Opening with the Intro 1:58 Sanna's introduction 2:44 Sanna's background and road to MVP 14:18 Sanna's primary area's of expertise 16:03 Current projects and challenges 21:54 Regional challenges or regulations that are impacting the work 25:08 Examples of security solutions and how it's impacting customers 29:26 Trends in the cybersecurity landscape 32:36 AI's question for Sanna 37:04 The impact of community 39:12 Personal/Professional goal for the coming period 40:13 Closing off this episode This series promises to be an invaluable resource for IT and security professionals aiming to stay ahead in the ever-changing world of cybersecurity. 🙌 You can reach out and connect with Sanna via - https://www.linkedin.com/in/sanna-diana-tomren/…

1
#36 - DevSecOps Series - Mastering the Monitor Phase for Robust Security 42:51

منذ 44 weeks42:51

42:51

In this insightful episode of the Talking Security podcast, we turn our focus to the Monitor phase of the DevSecOps cycle. Hosts Sander ten Brinke, Pouyan Khabazi, and Frans Oudendorp guide you through the intricacies of continuous monitoring, providing an in-depth analysis of how to effectively observe and respond to threats in real-time. This episode of our DevSecOps series will cover: An overview of the Monitor phase in DevSecOps Strategies for setting up robust monitoring systems Techniques for real-time threat detection and response Balancing proactive and reactive security measures Join us as we dissect the tools and practices that ensure your software remains secure post-deployment. Whether you’re fine-tuning your current security protocols or building them from the ground up, this episode is packed with essential knowledge to keep your operations secure and agile. Don’t miss out on the expertise shared in this episode to elevate your security monitoring to the next level in the dynamic field of DevSecOps. Links that are mentioned in this episode: https://learn.microsoft.com/en-us/devops/devsecops/enable-devsecops-azure-github https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-devops-introduction…

1
#35 - DevSecOps Series – How to release Software Securely in a DevSecOps Pipeline? 34:17

منذ 47 weeks34:17

34:17

In this episode of the Talking Security podcast, we delve into the essentials of release code securely within a DevSecOps pipeline. Join hosts Sander ten Brinke, Pouyan Khabazi, and Frans Oudendorp as they explore key strategies and best practices for integrating security into every stage of software development and deployment. As part of our DevSecOps series, this episode covers: - The fundamentals of DevSecOps - Critical security measures for code release - Tips for maintaining security without compromising speed or efficiency Whether you're a seasoned professional or new to the world of DevSecOps, this discussion offers valuable insights and practical advice for enhancing your software release processes. Tune in to stay informed and ahead in the ever-evolving landscape of software security!…

Talking Security - for news about items related to Microsoft Security

1
#34 - DevSecOps Series – Demystifying the Test Process 33:06

منذ 50 weeks33:06

33:06

Welcome to the latest episode of the TalkingSecurity podcast, where we delve into the world of DevSecOps. In this episode, “Demystifying the Test Process,” we unpack the essentials of testing and its significance in the DevSecOps pipeline. 🔍 What’s Inside: - Automated Testing: Discover the transformative power of automation in testing. - Security Integration: Learn how to weave security seamlessly into your test processes. - Expert Advice: Hear from industry veterans about navigating the challenges of DevSecOps testing. 🎧 Listen and Learn: Whether you’re a DevSecOps newbie or a seasoned practitioner, this episode is packed with actionable information to help you elevate your test processes. 👉 Tune in now to enhance your understanding and skills in DevSecOps testing! #DevSecOps #Testing #CyberSecurity #Podcast In this DevSecOps series, Sander ten Brinke, Pouyan Khabazi and Frans Oudendorp talk about various topics related to DevSecOps and things related to that.…

Talking Security - for news about items related to Microsoft Security

1
#33- DevSecOps series - Secure your build process and build environment 1:00:52

منذ 1 year1:00:52

1:00:52

Code Security is not only about writing secure code, but also about build it securely. In this episode, three experts from different domains and perspectives share their knowledge and experience on how to secure the Build Process and the Build Environment. hether you are a developer, a security analyst, or a DevSecOps enthusiast, you will find this episode useful and enlightening. Tune in and learn more about Code Security from Sander ten Brinke, Pouyan Khabazi, and Frans Oudendorp. In this DevSecOps series, Sander ten Brinke, Pouyan Khabazi and Frans Oudendorp talk about various topics related to DevSecOps and things related to that.…

Talking Security - for news about items related to Microsoft Security

1
#32- DevSecOps series - Code security from a developer perspective 46:16

منذ 1 year46:16

46:16

Code Security is a crucial aspect of software development, especially in the era of DevSecOps. In this episode, three experts from different backgrounds and roles share their insights and experiences on how to code securely, what are the common pitfalls and best practices, and what tools and techniques can help developers and security analysts work together more effectively. Whether you are a developer, a security analyst, or a DevSecOps enthusiast, you will find this episode informative and inspiring. Tune in and learn more about Code Security from Sander ten Brinke, Pouyan Khabazi, and Frans Oudendorp. In this DevSecOps series, Sander ten Brinke, Pouyan Khabazi and Frans Oudendorp talk about various topics related to DevSecOps and things related to that.…

Talking Security - for news about items related to Microsoft Security

1
#31- DevSecOps series - Introduction and Securing the Developer Workplace 50:48

منذ 1 year50:48

50:48

In this new series, Sander ten Brinke, Pouyan Khabazi and Frans Oudendorp talk about various topics related to DevSecOps and things related to that. In this recording, we kick off this series with an introduction about what's ahead in the next episodes. Then we talk about developers' workstations and how to secure them properly so that everyone is happy.…

Talking Security - for news about items related to Microsoft Security

1
#30- DfC series - Defender for API 43:22

منذ 2 years43:22

43:22

In this episode, we (Frans Oudendorp and Pouyan Khabazi) are joined by Ajinkya Gore to talk about Defender for API. Ajinkya is a Principal Product Manager at Microsoft, focused on Defender for API. In this episode, we talk, for example, about how Defender for API helps to secure API's, what the risks are and much more.…

Talking Security - for news about items related to Microsoft Security

1
#29 - DfC series - DevOps Security 45:30

منذ 2 years45:30

45:30

Explore the world of DevSecOps with David Trigano, Senior Product Manager at Microsoft. Learn how Microsoft Defender for Cloud transforms security by providing insights, enhancing collaboration, and preventing issues

Talking Security - for news about items related to Microsoft Security

1
#28 - DfC series - Defender for Servers 36:15

منذ 2 years36:15

36:15

In this episode, we (Frans Oudendorp and Pouyan Khabazi) are joined by Tom Janetscheck to talk about Defender for Servers. Tom is a Senior Program Manager at Microsoft Cloud Security, focused on Azure Security Center. Before that, he spent nearly 20 years in various internal IT and consulting roles, with a strong focus on cloud infrastructure, architecture and security. In this episode, we talk, for example, about how Defender for Servers fits into the Defender for Cloud suite, what it is and how it differs from Defender for Endpoint. We also talked about the different plans and how it can be used in other Cloud and hybrid environments. And, of course, we set up an appointment for later this year ;). Tom mentioned a blog post about REST API Call's in this recording. See below for the URL to this post: https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/defender-for-servers-plan-2-now-integrates-with-defender-for/ba-p/3527534…

Talking Security - for news about items related to Microsoft Security

1
#27 - DfC series - Introduction to Defender for Cloud 51:15

منذ 2 years51:15

51:15

In this episode, we kick off a new series about Defender for Cloud, Microsoft’s comprehensive solution for protecting cloud workloads and hybrid environments. I’m joined by my new co-host Pouyan Khabazi, a cloud security expert and MVP. We chat with Rod Trent, a Cloud Security Advocate at Microsoft, about what cloud computing means for security and how Defender for Cloud can help you monitor, detect and respond to threats across your cloud resources. We also discuss how Sentinel, Microsoft’s cloud-native SIEM, can integrate with Defender for Cloud to provide a unified view of your security posture. And of course, we don’t forget to talk about Pop Tarts, Rod’s favorite snack. Tune in and learn how to defend in a modern cloud world with Defender for Cloud.…

Talking Security - for news about items related to Microsoft Security

1
#26 - about Microsoft 365 Security and onboarding 41:42

منذ 2 years41:42

41:42

An episode of Talking Security about Microsoft 365 Security and onboarding all the pieces in a good way. In this one Dennis van Doorn, Michael Thelen and Sibren van Anrooij have joined me to talk about these specific topics. What are the most important things to keep in mind when enabling all the security products within the Microsoft 365 Security Suite? Listen and you will know this.…

Talking Security - for news about items related to Microsoft Security

1
#25 - about Microsoft Defender for Endpoint Evaluation Labs 26:12

منذ 2 years26:12

26:12

An episode of Talking Security about Microsoft Defender for Endpoint. This is the fourth part of the Defender for Endpoint series and specifically Evaluation Labs. What is Evaluation Labs, how can it be used and how can it be configured? This time again together with my friend Dennis van Doorn who has a lot of knowledge about this part of MDE.…

Talking Security - for news about items related to Microsoft Security

1
#24 - Jan Bakker and Pim Jacobs about Microsoft Entra - Identity Governance 21:53

منذ 3 years21:53

21:53

An episode of Talking Security about Microsoft Entra. In this one Jan Bakker en Pim Jacobs have joined me to talk about Microsoft Entra - Identity Governance. They delivered a session about this topic on ExpertsLive Netherlands 2022 and we talked about it. The new feature - LifeCycle Workflows - has been discussed.…

Talking Security - for news about items related to Microsoft Security

1
#23 - about Microsoft Defender for Endpoint Threat and Vulnerability Management 44:11

منذ 3 years44:11

44:11

An episode of Talking Security about Microsoft Defender for Endpoint. This is the third part of the Defender for Endpoint series and specifically TVM or Threat and Vulnerability Management. What is TVM, how can it be used and how can it be configured? This time together with my friend Dennis van Doorn who has extensive knowledge about this part of MDE.…

Talking Security - for news about items related to Microsoft Security

1
#22 - about Microsoft Defender for Endpoint Configuration 19:55

منذ 3 years19:55

19:55

An episode of Talking Security about Microsoft Defender for Endpoint. This is the second part of the Defender for Endpoint series and specific the configuration. What methods can be used and how can it be configured?

Talking Security - for news about items related to Microsoft Security

1
#21 - about Microsoft Defender for Endpoint Onboarding 29:54

منذ 3 years29:54

29:54

An episode of Talking Security about Microsoft Defender for Endpoint. This is the first part of the Defender for Endpoint series and specific the onboarding. What does it take to onboard? And what decisions do we need to take? Phases to onboard - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/deployment-phases?view=o365-worldwide iOS zero-touch onboarding - https://jeffreyappel.nl/deploying-defender-for-endpoint-on-ios-with-zero-touch-onboarding/ Please see below the overview including the links to the Microsoft documentation: Start onboarding MDE - 1:30 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/deployment-phases?view=o365-worldwide Onboarding Windows 10/11 - 7:50 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints?view=o365-worldwide#endpoint-onboarding-tools Onboarding Windows 7/8.1 - 14:10 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints?view=o365-worldwide#endpoint-onboarding-tools Onboarding MacOS - 17:06 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-mac?view=o365-worldwide Onboarding Linux - 18:55 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-linux?view=o365-worldwide Onboarding Android - 20:42 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/android-intune?view=o365-worldwide Onboarding iOS - 22:16 - https://jeffreyappel.nl/deploying-defender-for-endpoint-on-ios-with-zero-touch-onboarding/ Onboarding Servers - 24:00 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints?view=o365-worldwide#endpoint-onboarding-tools Offboarding - 27:52 - https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-server-endpoints?view=o365-worldwide#offboard-windows-servers…

Talking Security - for news about items related to Microsoft Security

1
#20 - about Log4J 2 months later with Maarten Goet and Jeroen Niesen 25:50

منذ 3 years25:50

25:50

An episode of Talking Security with Maarten Goet and Jeroen Niessen. We talked about Log4J and 2 months later. We looked back what happened, what we've done, what Microsoft has realized because of this, and what we can learn from this.

Talking Security - for news about items related to Microsoft Security

1
#19 - Ronny de Jong about Security @ Microsoft Ignite 2021 Autumn 38:30

منذ 3 years38:30

38:30

An episode of Talking Security with Ronny de Jong (Microsoft Security TSP). We talked about the security announcements at Ignite 2021 Autumn edition and what that means for you.

Talking Security - for news about items related to Microsoft Security

1
#18 - Freek Berson about Azure Virtual Desktop & Security 48:52

منذ 4 years48:52

48:52

An episode of Talking Security with Microsoft MVP Freek Berson. We talked about Azure Virtual Desktop and how we can secure those environments. Windows Virtual Desktop Handbook: Security Fundamentals https://azure.microsoft.com/en-us/resources/windows-virtual-desktop-handbook-security-fundamentals/ Getting started with Bicep: Infrastructure as code on Azure https://medium.com/wortell/new-book-getting-started-with-bicep-now-available-bfdfa28ee7e4…

Talking Security - for news about items related to Microsoft Security

1
#17 - Alex, Maarten and Olaf about Advanced Hunting within the Microsoft Security Solutions 43:28

منذ 4 years43:28

43:28

An episode of Talking Security with 3 Microsoft MVPs - Olaf Hartong, Maarten Goet, and Alex Benoit. We talked about PrintNightMare and the Kaseya hack. What can we expect from that sort of attack and how can we detect them. We also discussed the Microsoft Hunting stack, what we can do with it, what the learnings are and how we can use it. Please see the "Secure the software development lifecycle with machine learning" - https://www.microsoft.com/security/blog/2020/04/16/secure-software-development-lifecycle-machine-learning/…

Talking Security - for news about items related to Microsoft Security

1
#16 - Nimrod Aldaag about Azure Defender for IoT 30:35

منذ 4 years30:35

30:35

An episode of Talking Security with Nimrod Aldaag about Azure Defender for IoT. We have talked about Operational Technology (OT), the Internet of Things (IoT), and what are the differences with Information Technology (IT). We discussed the problems related to unmanaged devices, security risks, and what are real-life problems with the OT and IoT environments. Also in this recording is what Azure Defender for IoT is, how it's integrated into the whole Microsoft ecosystem and what the benefits are for you.…

Talking Security - for news about items related to Microsoft Security

1
#15 - Corina Feuerstein about Microsoft 365 Defender 34:08

منذ 4 years34:08

34:08

An episode of Talking Security with Corina Feuerstein about Microsoft Defender. We have talked about what the team is doing, why there is a converged approach, about the new features such as Threat Analytics and Learning, and about the future regarding attacks and such.

Talking Security - for news about items related to Microsoft Security

1
#14 - Daniel Naim about Microsoft Defender for Identity 32:48

منذ 4 years32:48

32:48

An episode of Talking Security with Daniel Naim about Microsoft Defender for Identity. We have talked about the product, what it is and how it fits into the Microsoft 365 Defender solutions.

Talking Security - for news about items related to Microsoft Security

1
#13 - Stefan Schorling about Ignite 2021 - XDRvsSIEM - HAFNIUM and Solorigate 29:39

منذ 4 years29:39

29:39

An episode of Talking Security with Stefan Schorling about Ignite 2021 Spring edition, XDR versus SIEM, HAFNIUM, and Solorigate. We have talked about the updates in the security space on Ignite 2021 Spring edition. Also, Stefan gives us some insights into the common mistakes in configuration and incidents. After that we talked about the impact of Solorigate and HAFNIUM.…

Talking Security - for news about items related to Microsoft Security

1
#12 - Stefan van der Wiele about Azure AD Secure Hybrid Access 24:18

منذ 4 years24:18

24:18

An episode of Talking Security with Stefan van der Wiele about Azure AD Secure Hybrid Access. We have talked about the features within Azure AD Secure Hybrid Access and what it can bring into your environment. Which partners are aligned within this solution.

Talking Security - for news about items related to Microsoft Security

1
#11 - Sebastien Molendijk about Microsoft Cloud App Security and Microsoft Defender 26:19

منذ 5 years26:19

26:19

An episode of Talking Security with Sebastien Molendijk about Microsoft Cloud App Security and Microsoft Defender. We have talked about the features within MCAS and also the integration within the Microsoft Defender landscape including Azure sentinel. We've also discussed the LogicApp created by Sebastien and how this add value in the whole landscape. LogicApp explanation - https://www.youtube.com/watch?v=YZr-New3yCI LogicApp Source - https://github.com/Azure/Azure-Sentinel/tree/master/Playbooks/Get-AlertEntitiesEnrichment…

Talking Security - for news about items related to Microsoft Security

1
#10 - Pawel Partyka about Office 365 ATP, Exchange Online Protection and MTP 33:12

منذ 5 years33:12

33:12

An episode of Talking Security with Pawel Partyka about Office 365 Advanced Threat Protection and Exchange Online Protection. We have talked about the features within Office ATP and also the integration within Microsoft Threat Protection.

Talking Security - for news about items related to Microsoft Security

1
#09 - John Joyner about Okta, Azure Sentinel and Microsoft Cloud App Security 30:09

منذ 5 years30:09

30:09

An episode of Talking Security with John Joyner about Microsoft's Cloud SIEM Solution and the integration with Okta. We've also discussed the relationship with Microsoft Cloud App Security and other security solutions within Microsoft Threat Protection.

Talking Security - for news about items related to Microsoft Security

1
#08 - Stefan van der Wiele about Identity and Microsoft Azure AD 26:22

منذ 5 years26:22

26:22

An episode of Talking Security with Stefan van der Wiele about Microsoft's Cloud Identity solution. Why is the identity so important, how to secure them, and what is a passwordless world. We've also talked about Identity Governance, Identity Protection, and Privileged Identity Management.

Talking Security - for news about items related to Microsoft Security

1
#07 - Maarten Goet and Koos Goossens about #Shitrix, Microsoft CVE-2020-0601 and some hacks 20:02

منذ 5 years20:02

20:02

An episode of Talking Security with Koos Goossens and Maarten Goet about some hot topics like #Shitrix or CVE-2019-19781, Microsoft CVE-2020-0601, Microsoft Support Data breach and the hacks against the University of Maastricht and Travelex.

Talking Security - for news about items related to Microsoft Security

1
#06 - Talking Security - Tudor Damian at ExpertsLiveEU about hackers, Awareness and Governance. 23:31

منذ 5 years23:31

23:31

A new episode of Talking Security with Tudor Damian about ExpertsliveEU, ITCamp, Security Awareness, White-hat hacker, Security and Compliance, Governance and what are the first steps to take to maximize your security posture.

Talking Security - for news about items related to Microsoft Security

1
#05 - Talking Security - Pete Zerger at ExpertsLiveEU about MDATP, Windows 10 and ExpertsLiveUS 18:51

منذ 5 years18:51

18:51

Podcast of TalkingSecurity with Pete Zerger about MDATP, Windows 10, ExpertsLiveUS, ExpertsLiveEU. But we talked also about his book and the LinkedIn Learnings that Pete has publised.

Talking Security - for news about items related to Microsoft Security

1
#04 - Talking Security - Tom Janetscheck at ExpertsLiveEU about Azure Security and Governance 17:57

منذ 5 years17:57

17:57

Podcast of TalkingSecurity with Tom Janetscheck about Microsoft Security, Governance, Azure Security Center and ExpertsLiveEU.

Talking Security - for news about items related to Microsoft Security

1
#02 - Talking Security - Alexander Benoit at ExpertsLiveEU about MDATP and MTP 20:20

منذ 5 years20:20

20:20

Podcast of TalkingSecurity with Alexander Benoit about Microsoft Threat Protection, Defender ATP and ExpertsLiveEU.

Amazon Basics Dog and Puppy Pee Pads with Leak-Proof Quick-Dry Design for Potty Training, Standard Absorbency, Regular Size, 22 x 22 Inches, Pack of 100, Blue & White

Ring Battery Doorbell, Head-to-Toe Video, Live View with Two-Way Talk, and Motion Detection & Alerts (2024 release), Venetian Bronze

Dr. Elsey's Ultra Premium Clumping Cat Litter, 40 pound bag ( Pack May Vary )

المدونة الصوتية تستحق الاستماع