Introducing Local Administrator Password Solution (LAPS) via Microsoft Entra ID and Intune

Introduction In today's digital age, securing sensitive information and managing access to critical systems is paramount. One aspect of this security is the management of local administrator passwords on Windows devices. Microsoft recognized the need for a secure solution to manage local administrator passwords and introduced the Local Administrator Password Solution (LAPS) a few years … Continue reading Introducing Local Administrator Password Solution (LAPS) via Microsoft Entra ID and Intune

The crazy IMPACT of the Data Lake

When we began building the security data lake solution, we had no idea that this solution would evolve and meet so many important needs for the enterprise. Most importantly, we found the solution is changing the way we approach security engineering. We didn't anticipate that we would be able to bring together multiple IT silos … Continue reading The crazy IMPACT of the Data Lake

The crazy IMPACT of the Data Lake

When we began building the security data lake solution, we had no idea that this solution would evolve and meet so many important needs for the enterprise. Most importantly, we found the solution is changing the way we approach security engineering. We didn't anticipate that we would be able to bring together multiple IT silos … Continue reading The crazy IMPACT of the Data Lake

Download the Microsoft Defender for Identity sensor

The Microsoft Defender for Identity (MDI) sensor can be downloaded from the Microsoft 365 Defender portal. The MDI sensor installation package is the same for Domain Controllers, ADFS and ADCS. If you have previously downloaded the package, you can use this for the installation, although I would recommend downloading the latest version for any new deployments.

Big Lake = Big Value

“Getting value out of your data lake” For the first time in the security industry, we are seeing security operations teams and data analytics teams working together. This positive development illustrates that security data has value to everyone and can be shared throughout a company. It is important to take control of your data destiny, … Continue reading Big Lake = Big Value

Data Transformers to the Rescue

ETL vs Log Forwarding - Why your security future depends on it! We are now officially in a new era of security engineering.  This era is characterized by big data analytics encompassing AI, machine learning, and data warehousing. In our previous posts, we discussed the need for security operations to have greater visibility into log … Continue reading Data Transformers to the Rescue

How to deploy Microsoft Defender for Identity

How to install Microsoft Defender for Identity

Are you planning on deploying Microsoft Defender for Identity (MDI), but you are not sure how to? No worries, this blog will walk you through the deployment steps. What is Microsoft Defender for Identity MDI Leverages your on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed … Continue reading How to deploy Microsoft Defender for Identity

Automate your SOC – All in One

Solution Series for the SOC Automation Series Welcome to the SOCAUTOMATORS series on automating your security operations center. This series of blog posts will help you understand the value of assigning scores to your incidents and serves as an introduction to the Microsoft Sentinel Triage Assistant solution. 88 percent of organizations receive up to 500 … Continue reading Automate your SOC – All in One