Blue Square Security
"Blue Square Security" is a Microsoft Security focused podcast that explores the latest trends and best practices in cybersecurity, led by the Microsoft Digital Security team including in-depth discussions with experts from multiple industry experts and Microsoft partners. Each episode will delve into a different topic, such as cloud security, threat intelligence, or identity and access management, providing listeners with practical insights and actionable advice to help them better protect their organizations from cyber threats. From start to finish - these episodes are 100% Microsoft - all hosts are FT MS employees, we leverage Surface hardware, we record via teams, we edit via Microsoft Clipchamp, we generate thumbnails via CoPilot, we edit artwork via Microsoft Office, multiple questions are generated via CoPilot, guests are scheduled via Office, episode notes are kept in One Note, sound is edited via Windows Sound Recorder, hosts leverage a teams channel for internal idea sharing and real time collaboration.
Blue Square Security
Microsoft Sentinel w/ Lightstream_Ep. 7
- Ep. 7: Sentinel with Microsoft partner Lightstream.
- Introductions: Lightstream
- SEIM: Collection > Detection > Investigation > Response
- Investigation: trends, fine tuning SEIM, SOC teams, funding
- Automation: Playbooks, AI, Co-Pilot, does not replace Tier 1
- Attack surface
- Bookmarks
- Multi-Cloud
- Defender for Threat Intelligence
- Ingestion: log collection, Frameworks, garbage in-garbage out
- Detection: dwell time, risk based alerting patterns
- Light Stream Azure Health Check: Security focused, strengthen security posture, documentation, roadmap for success