Talking Security: Insights from Microsoft Security Experts

In this special Talking Security episode, recorded live from Microsoft HQ during the MVP Summit, hosts Frans Oudendorp and Pouyan Khabazi sit down with Ofer Shezaf, the mastermind behind Microsoft Sentinel—the first truly cloud-native SIEM.With over 30 years in cybersecurity, Ofer takes us on a journey through the evolution of InfoSec, shares the origin story of Sentinel, and unpacks what it takes to grow a billion-dollar product. From the early days of SIEM to the role of AI in modern detection and response, this episode is packed with insights, strategy, and a few fun stories along the way.Whether you're a seasoned SOC analyst, a cloud architect, or just curious about how Sentinel became a cornerstone of modern cyber defense—this one’s for you.👉 Topics covered:- Why existing SIEMs weren’t enough—and how Sentinel changed the game- Lessons from building and scaling a $1B+ cybersecurity product- Real vs. perceived risk in product strategy- The role of community and open-source in shaping the future of cyber defense- Ofer’s advice for the next generation of cybersecurity leadersGrab your Favorito drink, and let’s talk security! 🔐

In this episode of the Talking Security Podcast, we sit down with Itai Cohen from the Microsoft Defender for Cloud Apps team to explore the evolution of SaaS Security — from the traditional CASB (Cloud Access Security Broker) model to a broader, more proactive security strategy.We cover:Why CASB isn’t enough anymore and what the future of SaaS Security looks likeThe growing threat of OAuth abuse — and why it’s such a hot target for attackersNew innovations from Microsoft like Attack Path Analysis and Advanced Hunting for OAuth threatsHow Exposure Management is helping organizations proactively reduce SaaS risk🎧 Whether you're a security architect, IT decision-maker, or Microsoft 365 enthusiast, this episode will help you rethink how you protect your SaaS environments.👇 Don’t forget to like, subscribe, and share with your network.📬 Got feedback or topics you'd like us to cover? Let us know in the comments or reach out via TalkingSecurity.nl!Outline of the recording0:00 - Intro0:22 - Introduction of this episode2:05 - Introduction of Itai Cohen - Microsoft2:29 - What was the original goal of Microsoft Defender for Cloud Apps as a CASB solution?4:10 - Why is Microsoft adding more capabilities on top of the traditional CASB model towards a broader SaaS Security approach?6:08 - How do you see today’s SaaS threat landscape compared to when CASB solutions first appeared?10:11 - Why is OAuth has become such an attractive attack vector? 13:53 - What are typical OAuth attack paths, and how do attackers exploit them? 14:50 - Microsoft blog - https://techcommunity.microsoft.com/blog/microsoftthreatprotectionblog/protect-saas-apps-from-oauth-threats-with-attack-path-advanced-hunting-and-more/4395997-, you announced new capabilities to detect OAuth threats. Can you give us an overview of what’s new? 16:16 - How does Attack Path Analysis help customers better understand and mitigate OAuth risks? 19:10 - Advanced Hunting is now available for OAuth threats — how can security teams leverage this capability? 22:36 - What are some common mistakes you see organizations make when it comes to OAuth permissions and consent management? 26:40 - Exposure Management - How does Microsoft Defender for Cloud Apps contribute to a broader exposure management approach, and how can customers use it 31:47 - How do you see the role of SaaS Security evolving within the wider Exposure Management strategy that Microsoft is building?33:09 - How does SaaS Security fit into Microsoft’s broader security strategy, alongside Defender XDR and Entra ID?35:33 - SaaS Security is overlooked? Why?40:42 - If you weren’t working in security, what would you be doing instead?42:20 - Closing the episode43:23 - Outro#SaaSSecurity #MicrosoftDefender #OAuth #CASB #CloudSecurity #TalkingSecurityPodcast

In this episode of Let’s Talk, part of the Talking Security podcast, Frans Oudendorp and Pouyan Khabazi break down the biggest announcements from Microsoft Secure 2025.We explore how Microsoft Sentinel is evolving into an agentic AI platform, the introduction of Sentinel Graph and Model Context Protocol (MCP), and how Security Copilot agents are changing the game for SecOps automation.You’ll also hear about:Graph-based context and why it matters for threat detectionDeveloper extensibility for custom connectors and AI agentsSentinel Data Lake for affordable long-term storageReal-world use cases for agentic AI in security operationsPlus, we share community highlights, upcoming events like YellowHat 2025 and KustoCon, and a fun geeky quiz to wrap things up.👉 Question for you: If you could build your own Security Copilot agent, what would it do? Let us know!🎙️ Stay safe, stay secure, and keep talking security!

Join your hosts Frans Oudendorp and Pouyan Khabazi in this month's episode of "Let's Talk" on the Talking Security podcast. We dive into critical cybersecurity developments from March, including Microsoft's latest Patch Tuesday addressing seven zero-day vulnerabilities (https://www.bleepingcomputer.com/news/microsoft/microsoft-march-2025-patch-tuesday-fixes-7-zero-days-57-flaws/), and emerging OAuth app attack campaigns targeting Microsoft 365 accounts (https://www.bleepingcomputer.com/news/security/fake-security-alert-issues-on-github-use-oauth-app-to-hijack-accounts/, https://www.bleepingcomputer.com/news/security/malicious-adobe-docusign-oauth-apps-target-microsoft-365-accounts/).We highlight important updates across Microsoft security solutions, such as Microsoft Defender for Office's improved reporting tools, Defender for Identity's Enhanced Identity Inventory (preview) (https://learn.microsoft.com/en-us/defender-for-identity/identity-inventory), and Defender for Cloud Apps' new RBAC scoping for behaviors (https://learn.microsoft.com/en-us/defender-cloud-apps/manage-admins, https://learn.microsoft.com/en-us/defender-cloud-apps/behaviors). We also discuss the new GA release of on-demand malware scanning in Defender for Storage, capable of scanning blobs up to 50 GB, and introduce the preview of the Defender for Cloud Cost Calculator.Stay informed with our community spotlight featuring Rod Trent's Security Copilot prompts (https://github.com/rod-trent/Security-Copilot/tree/main/Prompts/Workshop), and get your calendars ready for upcoming industry events, including the Swiss Microsoft Security Summit, ExpertsLive 2025, Microsoft Secure, and RSAC.Plus, tune in for a fun geeky trivia about the first-ever internet domain!Stay vigilant, stay informed, and let's talk security!

Welcome to another episode of "Talking Security - Let's Talk!" 🚀 This month, we bring you the latest cybersecurity updates, breaking news, and expert insights to keep you informed and ahead of threats.🔹 Topics in this episode:✅ Safer Internet Day 2025 – Promoting a safer online world for everyone✅ DeepSeek Database Leak – Exposing sensitive chat history & backend data✅ Defender for Endpoint & Office – New reporting and security enhancements✅ Defender for Identity – Improved attack path visibility & security updates✅ Microsoft Sentinel Updates – New features & integrations for threat intelligence✅ Community Spotlight – A new detection engine to protect the Netherlands - https://Threathunters.nl✅ Event Roundup – The must-attend cybersecurity events of 2025 - https://www.microsoft.com/en-us/security/blog/2025/02/03/hear-from-microsoft-security-experts-at-these-top-cybersecurity-events-in-2025/✅ Geeky Fun Fact – The first computer virus & its creators📢 Join the discussion! Want to be part of our monthly recordings? Fill out the form on - https://forms.office.com/e/DhYZzQ8t6z👍 Like, share, and subscribe for more cybersecurity insights!🔔 Turn on notifications so you never miss an update!💬 What are your thoughts on this month's cybersecurity updates? Drop a comment below! ⬇️#CyberSecurity #MicrosoftDefender #LetsTalkSecurity #ThreatHunting #MicrosoftSentinel #DataLeak #SIEM #SecurityUpdates

🎧 Welcome to the latest episode of "Talking Security" - Let's Talk series! Join your host, Frans Oudendorp, and co-host Pouyan Khabazi, as they dive into the crucial advancements and developments in cybersecurity over the past two months. 🕵️‍♂️In this episode, we cover:- DORA Giveaway: All about the Digital Operational Resilience Act (DORA), now enforced.- Defender for Office 365 LLM: Breaking down new threat classification details - https://www.linkedin.com/posts/markolauren_defenderforoffice-xdr-mdo-activity-7283818118110470145-6_pp- LDAPNightMare: What has happened in LDAP.- Microsoft Sentinel Updates: From Bicep templates to SOC optimizations and more.- Community Spotlight - https://rogierdijkman.medium.com/detecting-fasthttp-bruteforce-attacks-on-entra-users-42ceb13bf856- Event Roundup - 38C3 - From phishing to Tenant takeover - https://www.youtube.com/watch?v=uowTmPomYcg YellowHat - https://yellowhat.live/ WPNinjaNL Connect / MC2MC Connect - https://wpninjas.nl/connect/- Fun Geeky Element: Trivia challenge - reach out on our LinkedIn page - https://www.linkedin.com/company/talkingsecurity🚀 Don't miss out on these essential updates and expert insights that can help fortify your organization’s defenses. Tune in now, stay informed, and remember - stay safe, stay secure, and let’s keep the conversation going!Thank you for your continued support. Don't forget to like, share, and subscribe for more insights from the world of cybersecurity!

Join us for the inaugural episode of "Let's Talk," a new series within the Talking Security podcast, where hosts Pouyan Khabazi and Frans Oudendorp delve into the latest updates from Microsoft Ignite 2024. In this episode, we cover the groundbreaking advancements in Microsoft Security products, including updates to Defender for Cloud, the launch of Defender for APIs, and new capabilities in Microsoft Entra and Microsoft XDR. Discover how these innovations will shape the future of cybersecurity, with discussions on AI advancements, quantum computing partnerships, and enhanced security measures. Tune in for a comprehensive recap of Ignite 2024 and insights into staying ahead in the ever-evolving world of cybersecurity. Don't miss out on the key highlights and expert analysis in this exciting new series!KustoCon Playlist - https://youtube.com/playlist?list=PL9sQKc0RBCiB73e4q-847W02Rzt3qPzbR&si=f0MbGvjGml8SOTxPIgnite 2024 Book of News - https://news.microsoft.com/ignite-2024-book-of-news/

In this episode of Talking Security – MVP Security Insights, Frans Oudendorp and Pouyan Khabazi sit down with Eric Woodruff—Chief Identity Architect at Semperis and long-time identity expert—to explore his journey from managing Active Directory in the public sector to shaping cutting-edge identity strategies in the cloud era.Eric shares what it means to truly be “in” cybersecurity, the evolving role of Entra ID, and the significance of identity research like the UnOAuthorized project. We also dive into global challenges in identity management, the balance between strong security and business agility, and how community collaboration through IDPro is driving vendor-agnostic progress.Whether you're new to identity or a seasoned expert, this conversation is packed with real-world insights, practical advice, and forward-looking trends shaping the future of identity and access management.⏱️ Topics include:- Career journey and cybersecurity pivot - Challenges guiding identity strategy at Semperis- Identity research, Entra ID, and privilege paths - Cloud-first learning paths and emerging trends- Balancing airtight security with operational flexibility- Community contributions, hobbies, and staying grounded⏱️ Timestamps00:00 – Teaser00:55 – Intro01:24 – Introduction of the podcast07:03 – Eric’s identity journey: From AD in the courts to cybersecurity at Semperis09:28 – Challenges as Chief Identity Architect: Building identity strategy for SaaS14:41 – Global identity security challenges: Public vs. private sector insights19:43 – Research spotlight: The UnOAuthorized project and privilege path exposures25:00 – App Registrations: Risks, visibility, and best practices28:00 – Advice for newcomers to Identity Security30:14 – Can you learn identity with only cloud knowledge?32:23 – Future of Identity and Access Management: Entra ID, trends, and predictions37:35 – Balancing airtight identity security with business agility42:05 – The role of community: IDPro and vendor-neutral collaboration44:32 – QuickFireFun questions46:40 – Closing thoughts and takeaways47:43 – Outro📌 Subscribe for more expert interviews on identity, security, and modern workplace innovation.

In this episode of our MVP Security Insights series, we sit down with Stefan Schörling—a cybersecurity veteran with over 25 years of experience, SANS-certified professional, and Microsoft MVP.🔍 What you’ll learn in this episode:- His journey from sysadmin to CTO of a cybersecurity-focused MSSP- Hands-on insights into Microsoft Defender XDR and Unified Security Operations (USX)- Balancing fast incident response with deep, automated defense- Real-world security innovations that made a difference- Current trends in threat intelligence and managed security- The value of community collaboration in modern cybersecurity🎯 Stefan also shares valuable advice for professionals looking to thrive in the Microsoft Security ecosystem.⏱️ Timestamps:0:00 Teaser0:45 Intro1:15 Introduction of this episode3:10 Introduction of Stefan5:23 Monitoring as a foundation6:42 primary areas of expertise, and the passion for threat intelligence, incident response, and Defender XDR10:22 Key projects as a CTO17:55 Global and industry-specific challenges24:10 Security innovations that drive impact30:11 Trends shaping the future of security operations35:32 Advice for starting security professionals 38:36 AI Question.... One tip Stefan would give his younger self41:26 Why community matters in cybersecurity46:18 The role of the MVP program49:13 Personal goals and what drives him51:12 Quickfire Fun Questions52:30 Closing of this episode54:14 Outro🔔 Subscribe for more interviews with MVPs, security leaders, and Microsoft experts sharing insights from the frontlines.#Cybersecurity #MicrosoftDefender #MVPInsights #XDR #IncidentResponse #ThreatIntelligence #MicrosoftSecurity #StefanSchörling

In this episode of MVP Security Insights (Season 2, Episode 2), we sit down with Michael van Horenbeeck, Microsoft MVP for 14 consecutive years and renowned expert in identity, cloud security, and compliance.We dive deep into:* His journey into Microsoft Security and MVP life* Top security challenges in regulated industries* The impact of NIS2, ISO 27001, and the speed of change* Trends shaping the future—AI, CoPilot agents, Zero Trust* A fun twist: If Zero Trust were a Krav Maga move… what would it be?* The value of community and staying grounded in a fast-moving world🔐 Whether you're a seasoned security pro or just stepping into the world of identity and cloud security, this episode is packed with insights you won't want to miss.👉 Chapters: 00:37 Intro01:06 Introduction of this episode03:26 Michael's introduction06:00 Background & Microsoft MVP journey08:02 Why focus on identity, cloud security, and compliance?11:04 Security in regulated sectors14:15 Regulations & governance challenges17:53 Speed of change21:02 Global cybersecurity threats26:40 Future trends & AI29:08 CoPilot and phishing defense34:10 Zero Trust as Krav Maga37:11 Community & collaboration40:21 Personal goals & what's next44:59 Closing this episode46:04 Outro🔗 Follow Michael on [https://www.linkedin.com/in/mvanhorenbeeck/]🎙️ Hosted by Frans Oudendorp and Pouyan Khabazi📢 Learn more: https://talkingsecurity.nl#MicrosoftMVP #CyberSecurity #ZeroTrust #AI #IdentitySecurity #TalkingSecurity #MVPInsights

In the first episode of Season 2 of our MVP Security Insights series on the Talking Security podcast, we explore the ever-evolving landscape of cloud security and delve into practical strategies with our distinguished guest, Microsoft Security MVP Truls Dahlsveen. Truls brings deep expertise in security monitoring, SIEM, and Endpoint Detection and Response (EDR), providing valuable insights gained from real-world experiences. Throughout the episode, we address significant cybersecurity trends, discuss innovative solutions, and highlight the essential role of community engagement in bolstering security practices.Episode Outline:0:26 - Intro0:55 - Introduction of this episode2:10 - Background and Expertise: Truls shares his journey to becoming an MVP and highlights his expertise in cloud security monitoring, SIEM, and EDR solutions.5:35 - What are your primary areas of expertise within the realm of Microsoft technology and cybersecurity?7:25 - Tools that are be used in the day job.9:32 - Blogpost - https://www.infernux.no/5YearsOfSentinel - JOIN CCP - aka.ms/joinccp12:36 - Current Projects and Focus: Discussing ongoing initiatives and how Microsoft technologies enhance security.17:18 - How are you leveraging Microsoft technologies to enhance security in your current work?23:15 - Global and Local Challenges: Examining major cybersecurity challenges globally and locally, including regulatory impacts.30:30 - Future Trends and Advice: Insights into emerging cybersecurity trends and practical advice for professionals.36:11 - Community and Collaboration: Importance of community collaboration featuring experiences from HackTheBox and TryHackMe.42:30 - Question of AI: Creative reflections on cybersecurity roles and ultimate 'power-ups'.45:18- Personal Insights and Goals: Truls shares his motivations and future objectives.48:40 - What are your personal or professional goals for the coming period?50:48 - Closing this episode52:00 - OutroJoin us to gain actionable advice and inspiration from one of the community's leading cybersecurity experts.

In the sixth episode of the "Security MVP Insights" series on the TalkingSecurity podcast, hosts Frans Oudendorp and Pouyan Khabazi welcome special guests Pablo Chacon and Katie Ryckman. Both esteemed professionals at Microsoft, Pablo and Katie lead the Customer Connection Program (CCP), playing a pivotal role in fostering collaboration between the community, MVPs, and Microsoft.During this insightful episode, Pablo and Katie delve into their work with the CCP, sharing how they bridge the gap between Microsoft's internal teams and its diverse user community. They discuss the importance of community engagement, the impact of feedback from MVPs, and the initiatives they have implemented to strengthen these connections.Episode Highlights:0:00 Intro with music0:28 Introduction of the Episode1:16 3 questions in 11:34 Katie - Journey to the current Role3:13 Pablo - Journey to the current Role7:15 The beginning of Intune8:12 What is the Microsoft Customer Connection Program (CCP)20:22 Specific challenges or cultural differences that impact the work28:26 What trends do we foresee in the cybersecurity community32:47 Advice for IT and Security professionals to get more involved in the community40:49 Personal or Professional goals41:26 The goals from Katie42:20 The goals from Pablo44:00 Thanks to Katie and Pablo45:10 Closing the episode45:39 Outro with musicThis episode is a must-listen for anyone interested in the dynamics of community building within the tech industry. Subscribe to the "Security MVP Insights" series and stay tuned for more in-depth discussions on bridging the gap between technology providers and their users.Connect with Pablo Chacon - https://www.linkedin.com/in/pjchacon/ - and Katie Ryckman - https://www.linkedin.com/in/katieryckman/ - on LinkedIn to learn more about their work with the Customer Connection Program at Microsoft.Join the CCP Program - https://AKA.MS/joinCCPStay informed and engaged with the latest trends in cybersecurity and community collaboration by tuning in now!

In the fifth episode of the "Security MVP Insights" series on the TalkingSecurity podcast, hosts Frans Oudendorp and Pouyan Khabazi engage in a captivating discussion with special guest Mona Ghadiri. Mona, a highly experienced cybersecurity professional, currently holds the position of Director of Product Management at BlueVoyant and is a distinguished Microsoft MVP in Security.In this episode, Mona shares her professional journey, her pivotal role at BlueVoyant, and her significant contributions to the cybersecurity community. With a strong background in product management, Mona discusses the evolution of Managed Detection and Response (MDR) services and the innovative strategies her team employs to safeguard clients against emerging threats.Episode Highlights:0:00 Intro with music0:28 Introduction of the Episode1:51 Welcome Mona2:03 Introduction of Mona and her background4:30 The primary areas of expertise within the realm of Microsoft technology and cybersecurity!5:59 Some examples of Security for Co-Pilot - promptbooks from BlueVoyant!8:30 Examples of running projects12:39 SOAR on top of Co-pilot16:19 Business challenges that were addressed19:57 Overload / complexity of the configuration of technology22:19 The biggest cybersecurity challenges on a global scale26:21 What about the chain of all the pieces of software that we are using28:46 Collaboration within Security31:38 Specific regulations that helps driving customers moving forward37:40 AI Question40:16 Microsoft Customer Connection Program41:30 2nd part of the AI Question43:25 Personal and Professional Goal of Mona46:10 Thanks to Mona46:43 Closing the episode47:26 Outro with musicDon't miss this opportunity to gain valuable insights from one of the leading experts in the field. Subscribe to the "Security MVP Insights" series and stay tuned for more thought-provoking discussions on the latest in cybersecurity.Connect with Mona Ghadiri on LinkedIn (https://www.linkedin.com/in/mona-ghadiri/) and explore her work at BlueVoyant.This podcast series is essential listening for IT and security professionals eager to keep pace with the rapidly evolving cybersecurity landscape. Tune in now and elevate your cybersecurity expertise!

Join hosts Frans Oudendorp and Pouyan Khabazi in the fourth episode of the "Security MVP Insights" series on the TalkingSecurity podcast for a compelling and informative discussion. This episode features special guest Gianni Castaldi, a renowned cybersecurity expert and Microsoft MVP, who shares his deep insights into the intricacies of today's cybersecurity landscape.In this engaging conversation, Gianni delves into his journey to becoming a Microsoft Security MVP, discusses his primary areas of expertise, and addresses the most pressing cybersecurity challenges on both a global and local scale. From community projects like KustoCon to navigating local regulations in the Netherlands, Gianni provides a wealth of knowledge and practical examples from his work in the field.Episode Highlights:0:00 Opening with the Intro2:30 Gianni's Introduction and Background4:43 The Road to Becoming a Microsoft Security MVP6:22 Gianni's Primary Area of Expertise7:36 Key Challenges in Cybersecurity9:23 Community Projects and KustoCon12:25 Global Cybersecurity Challenges16:00 Local Challenges and Regulations17:55 Specific Regulations in the Netherlands18:48 Navigating Local Issues21:08 Examples of Gianni's Current Projects25:27 Balancing Automation and Rapid Response28:02 Future Trends in Cybersecurity32:11 Sharing Sentinel Between Teams34:35 The Role of AI in Cybersecurity38:13 The Importance of Community in Cybersecurity40:34 Personal and Professional Goals42:58 Thanks to Gianni and Closing Remarks44:01 ClosingDon’t miss this opportunity to enhance your cybersecurity knowledge and stay ahead of the curve. Subscribe to the "Security MVP Insights" series and stay tuned for more expert discussions from the world of cybersecurity.Connect with Gianni Castaldi on https://www.linkedin.com/in/giannicastaldi/ and explore his work at https://kustoking.com.This podcast series is a must-listen for IT and security professionals looking to keep up with the ever-evolving cybersecurity landscape. 🙌Tune in now and elevate your cybersecurity expertise!

Join hosts Frans Oudendorp and Pouyan Khabazi for the third episode of the "Security MVP Insights" series on the TalkingSecurity podcast. This time, they are joined by the esteemed cybersecurity expert and Microsoft MVP, Mattias Borg, for an in-depth exploration of today's cybersecurity landscape.In this episode, Mattias shares his expertise and insights, offering listeners a deeper understanding of the complexities and challenges faced in the cybersecurity field. From his journey as a Microsoft MVP to his hands-on experiences and projects, Mattias provides valuable perspectives that will benefit IT and security professionals.This episode contains:0:00 Intro0:29 Starting the episode with an awesome intro1:58 Introduction of Mattias3:09 Security Dojo podcast4:08 The technical background an how to become an MVP11:36 Primary areas of expertise in Cybersecurity15:56 Another fun thing to show SOAR is working19:45 It's time to investigate in the SOAR and how you advise customers on this?26:07 What do you see as the biggest cybersecurity challenges on a global scale today?27:03 How is AI helping the missing human part32:22 How do you approach the balance between rapid response times and automation in cybersecurity?35:03 What trends do you foresee in the cybersecurity landscape over the next few years?37:38 Do you think that nation attacks will grow coming period40:34 AI Question43:06 How important is community collaboration in the field of cybersecurity?46:50 What are your personal or professional goals for the coming period?48:19 Thanks to Mattias48:34 Closing words49:02 OutroYou can reach out and connect with Mattias via - https://www.linkedin.com/in/matteborg82/This series is an invaluable resource for IT and security professionals aiming to stay ahead in the ever-evolving field of cybersecurity. 🙌Tune in now and enhance your cybersecurity knowledge!

In the second episode of the "Security MVP Insights" series on the TalkingSecurity podcast, hosts Frans Oudendorp and Pouyan Khabazi are back with another insightful discussion. This time, they are joined by Thijs Lecomte, a distinguished cybersecurity expert and Microsoft MVP, to delve into the complexities of today's cybersecurity environment.Don’t miss this engaging and informative conversation with Thijs. Subscribe to our podcast and stay tuned for more episodes in the "Security MVP Insights" series, where we bring you the latest from the world of cybersecurity.Tune in now to stay ahead of the curve and enhance your cybersecurity knowledge!This episode contains:0:00 Opening with the Intro2:20 Introduction of Thijs3:09 Thijs shares his background and how he became a MVP5:00 Thijs his primary area of expertise in Microsoft Technology7:15 The projects where Thijs is working on9:08 Microsoft Technologies that are used11:13 Explanation of Exposure Management12:30 What challenges are there in Thijs his area15:05 What are the biggest Cybersecurity challenges at global scale16:48 Making cybersecurity accessible18:51 Region (Belgium) challenges within Cybersecurity20:46 Balance between rapid response times and automation27:10 What are the trends within Cybersecurity landscape30:40 AI Question for Thijs34:24 Community collaboration and the importance of that35:56 How Microsoft MVP's play a role in the community of Cybersecurity37:38 Personal/Professional goal for Thijs38:53 How to enroll in Cybersecurity as a professional40:15 Closing note of the epsiode41:07 OutroThis series promises to be an invaluable resource for IT and security professionals aiming to stay ahead in the ever-changing world of cybersecurity. 🙌You can reach out and connect with Thijs via - https://www.linkedin.com/in/thijslecomte and his blog https://365bythijs.be/

Welcome to the premiere episode of "Security MVP Insights," where we sit down with leading Microsoft Security MVPs from around the world to explore the dynamic landscape of cybersecurity. In this first episode, we are thrilled to feature Sanna Diana Tomren, a distinguished Microsoft Security MVP known for her extensive expertise and innovative approach to tackling cybersecurity challenges.Join us as Sanna shares her journey in the field of cybersecurity, shedding light on the pressing global and local threats that organisations face today. We will delve into her expert perspectives on the latest trends in cybersecurity, discussing both current issues and future developments that professionals need to be aware of.This episode contains:0:00 Opening with the Intro1:58 Sanna's introduction2:44 Sanna's background and road to MVP14:18 Sanna's primary area's of expertise16:03 Current projects and challenges21:54 Regional challenges or regulations that are impacting the work25:08 Examples of security solutions and how it's impacting customers29:26 Trends in the cybersecurity landscape32:36 AI's question for Sanna37:04 The impact of community39:12 Personal/Professional goal for the coming period40:13 Closing off this episodeThis series promises to be an invaluable resource for IT and security professionals aiming to stay ahead in the ever-changing world of cybersecurity. 🙌You can reach out and connect with Sanna via - https://www.linkedin.com/in/sanna-diana-tomren/

In this engaging episode of the TalkingSecurity podcast – DevSecOps series, host Frans Oudendorp, along with co-hosts Pouyan Khabazi and Sander ten Brinke, sits down online with special guest April Yoho from GitHub. Together, they explore April's unique journey in the DevSecOps field, delve into the world of GitHub and GitHub Advanced Security, and discuss the transformative impact of Copilot. Tune in for an insightful conversation packed with practical tips and expert advice, perfect for anyone looking to enhance their knowledge in DevSecOps.

In this compelling follow-up episode of the Talking Security podcast, hosts Sander ten Brinke, Pouyan Khabazi, and Frans Oudendorp delve into the crucial aspects of monitoring infrastructure and identity within the DevSecOps framework. Building on our previous discussion, this episode provides a thorough exploration of best practices for securing your infrastructure and managing identities to maintain a robust security posture.Topics covered in this episode include:- Key components of infrastructure monitoring in a DevSecOps environment- Strategies for effective identity management and monitoring- Techniques for integrating infrastructure and identity monitoring tools- Real-world examples of infrastructure and identity threats and how to mitigate themTune in to gain valuable insights and practical tips on fortifying your infrastructure and identity monitoring processes. Whether you're enhancing your existing systems or implementing new solutions, this episode offers indispensable guidance to ensure your operations remain secure and resilient.Don’t miss this opportunity to expand your knowledge and expertise in infrastructure and identity monitoring within the dynamic and ever-evolving landscape of DevSecOps.

In this insightful episode of the Talking Security podcast, we turn our focus to the Monitor phase of the DevSecOps cycle. Hosts Sander ten Brinke, Pouyan Khabazi, and Frans Oudendorp guide you through the intricacies of continuous monitoring, providing an in-depth analysis of how to effectively observe and respond to threats in real-time.This episode of our DevSecOps series will cover:An overview of the Monitor phase in DevSecOpsStrategies for setting up robust monitoring systemsTechniques for real-time threat detection and responseBalancing proactive and reactive security measuresJoin us as we dissect the tools and practices that ensure your software remains secure post-deployment. Whether you’re fine-tuning your current security protocols or building them from the ground up, this episode is packed with essential knowledge to keep your operations secure and agile.Don’t miss out on the expertise shared in this episode to elevate your security monitoring to the next level in the dynamic field of DevSecOps.Links that are mentioned in this episode: https://learn.microsoft.com/en-us/devops/devsecops/enable-devsecops-azure-github https://learn.microsoft.com/en-us/azure/defender-for-cloud/recommendations-reference https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-devops-introduction