Introduction In today's digital age, securing sensitive information and managing access to critical systems is paramount. One aspect of this security is the management of local administrator passwords on Windows devices. Microsoft recognized the need for a secure solution to manage local administrator passwords and introduced the Local Administrator Password Solution (LAPS) a few years … Continue reading Introducing Local Administrator Password Solution (LAPS) via Microsoft Entra ID and Intune
The crazy IMPACT of the Data Lake
When we began building the security data lake solution, we had no idea that this solution would evolve and meet so many important needs for the enterprise. Most importantly, we found the solution is changing the way we approach security engineering. We didn't anticipate that we would be able to bring together multiple IT silos … Continue reading The crazy IMPACT of the Data Lake
The crazy IMPACT of the Data Lake
When we began building the security data lake solution, we had no idea that this solution would evolve and meet so many important needs for the enterprise. Most importantly, we found the solution is changing the way we approach security engineering. We didn't anticipate that we would be able to bring together multiple IT silos … Continue reading The crazy IMPACT of the Data Lake
Configure and use Intune Remote Help
This article will walk you through the steps to configure and use Intune Remote Help.
Install the Microsoft Defender for Identity sensor on Active Directory Certificate Services
Microsoft released a new Microsoft Defender for Identity (MDI) sensor type for Active Directory Certificate Services (ADCS). This article demonstrates the steps to deploy the sensor on your ADCS Servers.
Download the Microsoft Defender for Identity sensor
The Microsoft Defender for Identity (MDI) sensor can be downloaded from the Microsoft 365 Defender portal. The MDI sensor installation package is the same for Domain Controllers, ADFS and ADCS. If you have previously downloaded the package, you can use this for the installation, although I would recommend downloading the latest version for any new deployments.
Big Lake = Big Value
“Getting value out of your data lake” For the first time in the security industry, we are seeing security operations teams and data analytics teams working together. This positive development illustrates that security data has value to everyone and can be shared throughout a company. It is important to take control of your data destiny, … Continue reading Big Lake = Big Value
Data Transformers to the Rescue
ETL vs Log Forwarding - Why your security future depends on it! We are now officially in a new era of security engineering. This era is characterized by big data analytics encompassing AI, machine learning, and data warehousing. In our previous posts, we discussed the need for security operations to have greater visibility into log … Continue reading Data Transformers to the Rescue
How to deploy Microsoft Defender for Identity
Are you planning on deploying Microsoft Defender for Identity (MDI), but you are not sure how to? No worries, this blog will walk you through the deployment steps. What is Microsoft Defender for Identity MDI Leverages your on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed … Continue reading How to deploy Microsoft Defender for Identity
Automate your SOC – All in One
Solution Series for the SOC Automation Series Welcome to the SOCAUTOMATORS series on automating your security operations center. This series of blog posts will help you understand the value of assigning scores to your incidents and serves as an introduction to the Microsoft Sentinel Triage Assistant solution. 88 percent of organizations receive up to 500 … Continue reading Automate your SOC – All in One
You must be logged in to post a comment.