Name: Top AD Security Settings That Admins and Auditors Miss
Start: 2021-04-13T19:01:00Z
End: 2021-04-13T19:01:57.000Z
Location: BrightTALK
Rating: 5

Alsid has joined Tenable! The acquisition combines the complementary strengths of two cybersecurity innovators and marks an important milestone in Tenable’s vision to help organizations understand and reduce cyber risk across the entire attack surface.


Tenable.ad is a new solution leveraging Alsid technology to secure Active Directory environments and disrupt one of the most common attack paths in both advanced persistent threats and common hacks. Future Active Directory content and news will now only be shared on the official Tenable BrightTALK account: https://www.brighttalk.com/channel/7927/


Join the Tenable channel, and subscribe for guides, product reviews, technology news and more.

Risk is calculated as the intersection between threat, vulnerability, and asset value. When it comes to Active Directory risk is extremely high, based on the three components that risk is based on being so high. As Active Directory is responsible for controlling access to most of the corporate assets, it is usually the target for most attacks, making the threat extremely high. Due to the age, lack of knowledge, lack of attention, and many other factors, Active Directory is riddled with vulnerabilities. In this webinar 17X Microsoft MVP will give you clear and direct actions that you can take to reduce your Active Directory security risk. In this webinar you will learn:
-	Where the threat against AD come from
-	Why there are so many vulnerabilities in AD
-	How AD controls access to corporate assets
-	What steps to take to reduce AD security risk

Active Directory Security Risk: How High is the Risk?

En 2014, des chercheurs français de l'ANSII présentent un document de recherche détaillant une approche innovante basée sur la théorie des graphes afin de cartographier les failles de sécurité au sein d'Active Directory. Cette recherche a ensuite été utilisée par des tiers pour développer le produit open-source BloodHound.

Six ans plus tard, les mêmes chercheurs responsables de ces découvertes initiales sont allés encore plus loin afin d’explorer les limites de leur modèle en évoluant vers la théorie des hyper graphes dans l’objectif d’appliquer leurs recherches initiales au monde de l’entreprise.

Rejoignez-nous pour découvrir comment la théorie des hyper graphes peut vous aider à résoudre les problèmes de sécurité AD les plus avancés.

Alsid vous présente cet agenda :

- Quels sont les chemins d'attaque et de contrôle ?
- Evolution des chemins d'attaque et de contrôle
- En quoi la surveillance des changements AD en temps réel est cruciale pour la sécurité du réseau ?
- Survivre aux ransomwares grâce au suivi des changements de GPO
- Naviguer dans le paysage complexe de la sécurité AD
- Découvrir les changements cachés et les backdoors

BloodHound est un bon outil, mais vous méritez mieux !

Risk is calculated as the intersection between threat, vulnerability, and asset value. When it comes to Active Directory risk is extremely high, based on the three components that risk is based on being so high. As Active Directory is responsible for controlling access to most of the corporate assets, it is usually the target for most attacks, making the threat extremely high. Due to the age, lack of knowledge, lack of attention, and many other factors, Active Directory is riddled with vulnerabilities. In this webinar 17X Microsoft MVP will give you clear and direct actions that you can take to reduce your Active Directory security risk. 

In this webinar you will learn:
-	Where the threat against AD come from
-	Why there are so many vulnerabilities in AD
-	How AD controls access to corporate assets
-	What steps to take to reduce AD security risk

La vie d’une infrastructure Active Directory n’est pas un long fleuve tranquille. Quelle que soit la taille de votre organisation, vous serez amené à modifier régulièrement votre infrastructure : re-design AD, implémentation du Tier-Model, migration d’objets suite à une M&A, etc.
Oui mais… comment réaliser ces modifications et évolutions sans mettre en péril votre résilience IT ?

Dans ce webinar, Sylvain Cortes, 16x Microsoft MVP et spécialiste Active Directory, présente les 4 points indispensables pour démarrer votre projet de transformation AD :

- Pourquoi les plans de transformation AD sont nécessaires ?
- Quels concepts prendre en compte pour la planification de votre projet ?
- Quels risques devez-vous prendre en compte lors de la transformation ?
- Comment réduire les risques tout au long du parcours du projet ?

Comment concilier un plan de transformation Active Directory avec la sécurité ?

-Re-Design Active Directory pour renforcer la sécurité
-Présentation du Microsoft Tier-Model
-Comment gérer le projet au travers de la migration ou de la consolidation AD
-Outillage et méthode pour accompagner votre projet

Active Directory Tier Model : Stratégie d'implémentation et de sécurité

With major ransomware-as-a-service (RaaS) incidents occurring more frequently across Asia Alsid will discuss how you can better prepare to defend against these types of events.  
In this webinar you will see:
- Overview of ransomware-as-a-service (RaaS) operators and why their target is your Active Directory
- Approaches and effectiveness of detecting ransomware-as-a-service (RaaS) during an attack
- What can you do proactively to defend against ransomware-as-a-service (RaaS)

A look at RaaS operators and why their target is your Active Directory

AD is the key to your kingdom. Time to check the locks.
Join the security experts of Frost & Sullivan and Alsid for an exclusive webinar:
• The opportunity to interact with an F&S analyst
• The 4 steps to establish a proactive security plan
• The 3 root causes of poor AD security posture
• The 8 stages of attack, from phishing to persistence

AD holds the keys to your kingdom, but is it secure?[Frost & Sullivan and Alsid]

Regardez le webinar pour découvrir :
- Principaux malwares ciblant les points de vente
- 6 stratégies pour prévenir les infections par malware PDV
- Comment des revendeurs en Europe et aux États-Unis ont été compromis par le malware PDV Trinity

Comment prévenir les malwares dans les systèmes de points de vente

Pharma and Healthcare have seen the most uptick in cyber attacks than any other vertical in 2020. Disruption of services, research, supply chain, etc. is the goal for the attacker. Unfortunately, the healthcare industry has not been able to keep up with the Covid requirements, nor the security for the infrastructure.

In this webinar, 16-time Microsoft MVP, Derek Melber, will guide you through the current situation and give you actionable tasks to help increase your network security.

During this webinar you will learn:

Why healthcare is being targeted
The makeup of ransomware and how that impacts healthcare
Why mergers and acquisitions can cause insecure networks
What specifics related to healthcare need security attention
How simple configurations can help reduce the effectiveness of attack

Pharma and Healthcare Needs Increased Active Directory Security

Often organizations obtain a few Active Directory security related tools, but there are always gaps. It is these gaps that the attackers are investigating and exploiting. If the same tools allow the same gaps each time, it only makes sense to fill the gaps, which will stop the attacks. In this session, 16X MVP Derek Melber will give you his view of how we need to address AD security, so that we are secure from point A to point B. His 4 pillars of security approach will give you more than enough to think about, plus immediate action items that you can do when you get back to the office.

In this webinar you will learn:

Where traditional log based security solutions fall short
How proactive security can reduce your attack surface
What you need to do in order to protect AD now
Why real-time detection of attacks and attack pathways is essential

4 Pillars of Active Directory Security

Comment concilier un plan de transformation Active Directory et les exigences de sécurité ?

La vie d’une infrastructure Active Directory n’est pas un long fleuve tranquille. Quelle que soit la taille de votre organisation vous serez amené à modifier régulièrement votre infrastructure : re-design AD, implémentation du Tier-Model, migration d’objets suite un M&A, etc.
Oui mais… comment réaliser ces modifications/évolutions sans mettre en péril votre résilience IT ?

Dans ce webinaire, Sylvain Cortes, Microsoft MVP et spécialiste Active Directory présente les différentes raisons pour lesquelles les plans de transformation AD sont nécessaires, comment les planifier et comment gérer les écueils de sécurité classiques pendant ces phases de transition. Vous serez sur la bonne voie pour démarrer votre projet de transformation AD après ce webinaire. 

Vous apprendrez :
- Pourquoi les plans de transformation AD sont nécessaires
- Quels concepts prendre en compte pour la planification de votre projet
- Quels risques devez-vous prendre en compte lors de la transformation
- Comment réduire les risques tout au long du parcours du projet

Plan de transformation Active Directory

Découvrez dans ce webinar avec Sylvain Cortes, MVP Microsoft :
- Trail Flow : présentation et interface, comment interpréter les informations
- Démonstrations & cas d'usages pratiques sur l'environnement Trail Flow
- Intégration du Trail Flow avec votre SIEM
Si vous êtes à la recherche d'actions concrètes pour renforcer la sécurité de votre organisation dès aujourd'hui, suivez notre webinar dédié.

Comment surveiller les changements dans l'AD grâce à la fonction Trail Flow d'Al

Modifying your Active Directory environment is a daunting task. Whether you are a small or large company, with a few or many domains/forests, the details that need to be considered can be overwhelming.
In this webinar, Microsoft MVPs Sylvain Cortes and Derek Melber discuss the reasons why AD transformations are needed, as well as the planning phase required. Of course, with the rate of recent attacks, they also give you compete guidance on how you can keep your environment secure 24x7 with real-time attack pathway and attack detection solutions. You will be well on your way to starting your AD transformation project after this webinar. Here, you will learn:
- Why AD transformations are needed
- Which concepts to consider for your project planning
- What risks you need to consider during transformation
- How you can reduce the risks along the project path

Implementing an Active Directory Transformation Plan

You've read the Alsid Threat Intel Report, now hear from the researchers who wrote it. The Alsid Research Team has been hard at work compiling the findings and forecasts you need for the months to come. Watch the Threat Intel Webinar Q4 2020 to harden your defenses and discover:
- 5 attack trends: Zerologon, Vaccine Distribution Attacks, and more
- FireEye, SolarWinds, and Microsoft
- Attack examples around the globe
Start watching the free webinar.

Alsid Threat Intel Report - Q4 2020

You've read the Alsid Threat Intel Report, now hear from the researchers who wrote it. The Alsid Research Team has been hard at work compiling the findings and forecasts you need for the months to come. Watch the Threat Intel Webinar Q2 2020 to harden your defenses and discover:

• 5 attack trends: ransomware, remote work, and more
• Statistical insights into the $1.5-trillion cybercrime economy
• How ransomware is evolving to leverage the dark web
• Alsid's cybersecurity forecasts for the rest of 2020

Looking for concrete actions to fortify your organization's security today? Start watching.

Alsid Threat Intel Report - Q2 2020

You've read the Alsid Threat Intel Report, now hear from the researchers who wrote it. The Alsid Research Team has been hard at work compiling the findings and forecasts you need for the months to come. Watch the Threat Intel Webinar Q3 2020 to harden your defenses and discover:

• 5 attack trends: RaaS, Maze ransomware cartel, and more
• The latest cybercrime data & statistics 
• Attack examples around the globe

Looking for concrete actions to fortify your organization's security today? Start watching.

Alsid Threat Intel Report - Q3 2020

Sorry hackers, duty calls. Join Microsoft MVP Derek Melber to secure your AD and discover:

• 4 common breaches to defend against
• Concrete cases of high-profile attacks on government
• 3 best practices to avoid the worst-case scenario

Looking for concrete actions to fortify your organization's security today? Start watching.

Government Cyberattacks: Proactively Secure Your Infrastructure

Everyone knows Active Directory! It is a seasoned and known IAM, not to mention that nearly every organization in the world uses it. This being said, there are also many built-in configurations and processes that “just work” without the need for any manual configurations, that many administrators are not aware they are there. Unfortunately, the attacker does and leverages misconfigurations to move laterally and gain privileges. In this webinar, 17X MVP Derek Melber will guide you through the most common settings that attackers know about, but most AD administrators don’t. You will have a full list of items to verify and fix when you are done with this webinar!

Top AD Security Settings That Admins and Auditors Miss

Cyber Attacks

Cyber Security

Ransomware

Active Directory

Microsoft

SIEM

Cloud Security

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Top AD Security Settings That Admins and Auditors Miss

Presented by

About this talk

More from this channel