-
Episode 82: All bad things happen inside the allow rule
Shortly before Thanksgiving, Nic and I had the great pleasure of talking to John Kindervag. I once read about John that he has “forgotten more about technology than most people learn in their careers” and I’m sure after listening to this episode you’ll understand why he is referred to as the Godfather Of Zero Trust. In this episode we discuss the origins of Zero Trust and some of the history behind it. John also talks about why trying to control the attack surface is a fool’s errand and introduces the concept of a protect surface. …
-
Episode 81: Modern Endpoint Management (and dinosaur stories)
We recently had a great conversation with Joe Flynn about modern endpoint management and how the way we manage our devices has changed over the years - we reminisce about the old ways and talk the future of Active Directory. We also discuss management friction, current hybrid work trends and scenarios where technologies like Windows 365 just make sense. …
-
Episode 80: Cyber Security Awareness
It’s Cyber Security Awareness month and in this episode, we talk to Shannon Garcia about the realities of the security industry and have an honest discussion about some of the areas where we could be doing more to raise awareness and educate our organizations, customers and stakeholders. Shannon shares some fundamental guidance, and we discuss how we could and should be learning from highly publicized incidents and breaches that occur far too often these days. …
-
Episode 79: It was DNS!
It’s ALWAYS DNS! We’ve all fallen victim to DNS at some point in our careers. In this episode we are once again joined by Robby Pedrica as we discuss DNS architecture and security - we’ve been deploying DNS the same way for a long time and perhaps it’s time we look at our deployments and consider if they could be more secure. We discuss DNS in large enterprise environments and why monitoring DNS traffic is important, but also look at home use and how DNS can be a valuable privacy tool. …
-
Episode 78: The Modern Admin
Same product, new name - RIP Azure AD/long live Entra ID! In this episode we’re joined by long-time friend of the show Michael Van Horenbeeck to discuss the recent Entra related announcements and Microsoft’s expansion into Security Service Edge (SSE) with two new products – Microsoft Entra Internet Access and Microsoft Entra Private Access. We’ve all heard the TLAs PIM, PAW, and talk of Tier0 configurations, but what are these and how are these relevant to the modern admin? Should we be evolving the way we manage our environments or is it just a matter of buying new technologies to hopefully keep us ahead of bad actors? Michael shares his thoughts. …
-
Episode 77: Open-source
In this episode we’re joined by long-time friend Robby Pedrica as we talk about Open-source software. We asked Robby about Open-source technologies in the enterprise and discussed the history, ins and outs of using Open-source projects in your environment. …
-
Episode 76: Insiders
What is insider risk and how does it differ from an insider threat? Did you know that these are not always bad actors or malicious acts? We were curious about insider risk management, insider threat detection and everything that goes along with it, so we asked Zach Luze to unpack this vast topic for us. …
-
Episode 75: Explaining AI to your parents..
If you were to open your Twitter/LinkedIn/Mastodon feed at the moment, it is undoubtedly filled with AI posts - while some of these might be interesting or even somewhat useful, the majority likely include the words “RIP” and some profession or job function. There is so much AI FUD around right now and we wanted to find out if the hype was worth listening to. Is Skynet going to take over and put us all out of a job? We thought we’d ask an expert and that’s exactly what we did when we recently talked to AI MVP Akanksha Malik. …
-
Episode 74: Llama Cam
In this episode we geek out about home automation, Azure and training cognitive services to recognize llamas. Wait.. sound weird? Maybe, but we had a blast talking to MVP Lars Klint about life on his farm in the high country of Victoria in Australia and how he uses technology to automate (and amuse) …
-
Episode 73: Persistently Vulnerable
Exchange Server 2013 officially reached its end of support on April 11, 2023. What exactly does end of support mean? What should you do if your organization still relies on Exchange 2013 for email? In this episode I’m joined by Microsoft MVP Jeff Guillet, and we attempt to answer these questions and more. We also discuss the recent Microsoft announcement to throttle and block email from persistently vulnerable Exchange servers to Exchange Online …