With Cloudforce always aiming to be cognizant of the latest emerging tech and services that Microsoft has to offer, our Champions Department constantly has its ear to the ground for the next training session or conference. In March, Microsoft held its latest conference – Microsoft Secure. As you can guess by the title, this conference focused on how Microsoft can better enhance the security posture of those that utilize its products (Microsoft 365, Azure, and all related services). With how quickly businesses have recently accepted Cloud Adoption (Microsoft 365 – Microsoft Adoption and Microsoft Cloud Adoption Framework for Azure), it shouldn’t be a surprise that malicious actors have kept pace.
Over the last two years password attacks have increased from 579 to 1,287 per second. Currently, once an attacker makes it inside of your environment, it only takes about two hours for them to move across your network. The cost of dealing with these incidents hasn’t slowed down either – in 2022, companies wound up spending about $4.35 million per breach.
It isn’t all doom and gloom, though, as during the session, “How Do Executive Leaders Make Big Security Bets for Their Businesses?,” Bret Arsenault, Corporate Vice President and Chief Information Security Officer (CISO) at Microsoft, and Emma Smith, Cyber Security, Technology Assurance and Strategy Director of Vodafone, discussed their current cybersecurity approaches. It should go without saying that organizations of this size are under constant threat and failure to institute proper security policy would undoubtedly lead to a successful cyberattack at some point.
Even for companies not the size of Microsoft or Vodafone, these concerns are universal:
The “Brilliant Basics,” as Bret called them, are nothing short of that – security fundamentals that consistently raise the functional level of your security stance and help you deal with the abovementioned issues. Cloudforce is often brought in to assist with security audits, and from personal experience I can tell you that a majority of the audit topics are focused on these fundamentals (regardless of compliance or the governing body that the audit is issued from).
The basics that every company should never let up on are:
Being able to better handle all of these topics is where the cutting-edge part comes in. AI and machine learning are hot topics right now universally, but in the security realm it means this: the ingestion and processing of more data. If you were to manually go about checking systems for patch levels or trying to figure out which connections to your network are valid, it would take ages and human error is always a concern.
With security platforms like Microsoft Defender and Sentinel continuing to improve on these data ingestion and processing tasks, it helps to shift companies from a reactionary to a preventative stance. Often, we put security measures in place and wait for something to happen. With advancing AI and machine learning, systems are constantly analyzing more data and shifting in real time to prevent these breaches from happening in the first place. The goal of any company is to have its talent working on what matters most and these tools greatly aid in that. As Bret said near the end of the session, we’re rounding a corner, and for the first time in a while, the good people are starting to have an advantage.
A present day renaissance man and self-professed nerd, after spending nearly a decade in the health and fitness industry, Chris transitioned into IT in 2016. Computers had always been a life long hobby, but now they are a professional passion. Starting in the trenches of an IT support call center, Chris has since progressed from Help Desk Technician, to Managed Services Consultant (NOC) and is now a Cloud Solutions Engineer at Cloudforce. He owes his success to never being afraid of asking questions, being humble, and learning in the fires of "Well….lets see if anything breaks." situations.
When we look back on 2024 regarding technology advancements and changes, there is likely one prevalent topic that will continue to pop up: AI. This year has been defined--and perhaps even...
Artificial Intelligence (AI) isn’t the future; it’s happening now—like RIGHT now. From virtual assistants to algorithms powering the apps we use every day, AI is reshaping EVERYTHING around us...
AI—it's arguably the single largest paradigm shift in technology since the mobile boom almost 20 years ago. In fact, with the capability and capacity to redefine how organizations, entities, and...
