Blue Square Security
"Blue Square Security" is a Microsoft Security focused podcast that explores the latest trends and best practices in cybersecurity, led by the Microsoft Digital Security team including in-depth discussions with experts from multiple industry experts and Microsoft partners. Each episode will delve into a different topic, such as cloud security, threat intelligence, or identity and access management, providing listeners with practical insights and actionable advice to help them better protect their organizations from cyber threats. From start to finish - these episodes are 100% Microsoft - all hosts are FT MS employees, we leverage Surface hardware, we record via teams, we edit via Microsoft Clipchamp, we generate thumbnails via CoPilot, we edit artwork via Microsoft Office, multiple questions are generated via CoPilot, guests are scheduled via Office, episode notes are kept in One Note, sound is edited via Windows Sound Recorder, hosts leverage a teams channel for internal idea sharing and real time collaboration.
Blue Square Security
Ep. 11 Microsoft Global Black Belt | Cloud Security & More
· Microsoft Detection and Response Team, DART
· Nashville, Tennessee
· Posture Management
· Top 3 categories of data breach:
o Cloud misconfigurations is number 3
· Scattered Spider
· Adversary in the middle attacks
· Authentication
· Lemon Duck
· Identity compromise
· Moving at the Speed of DevOps
· Security Training
· DevSecOps
· Threat Modeling
· SQL Injection
· Secret Scanning
· Infrastructure As A Code
· Source Code Management – SCM
· Push Protection
· Key Vault
· Log4j
· Polymorphic
· SBOM – Software Bill of Materials
· NotPetya
· 5th Generation attacks
· WAF – Web Application Firewall
· SMBv1
· AI – Artificial Intelligence
· Black Mamba polymorphic malware
· Azure Policy
· NIST
· Framework
· S3Buckets
· Hub and Spoke
· Resource Groups
· Management Groups
· Permissions
· Subscription Management