Protecting Hybrid Active Directory Environments from Cyber-Attacks
Moderator: James Coker
About this talk
The inherent security weaknesses of on-premises Active Directory (AD) have been well documented, but the risk profile has increased further as a result of the shift to hybrid working environments that use both AD and Azure Active Directory. This has expanded the attack surface for adversaries, and recent incidents, including the SolarWinds breach, are evidence that cyber-criminals are actively targeting hybrid identity security gaps.
Although many organizations have strategic plans to move services and assets to the cloud, the reality is that most will be operating in a hybrid identity scenario for the foreseeable future. Amid this landscape, organizations must enhance their AD and Azure AD defenses. In this session, a panel of security experts will outline the top security risks to watch for in a hybrid AD environment and offer guidance and expertise on how organizations can harden their hybrid AD security defenses.
Attendees will learn:
· The Azure AD authentication model and how it differs from on-premises AD authentication
· Changing definition of the “perimeter” in Azure Active Directory
· The radical shift in the permission model—with a real-world example of delegated application permissions and how misconfigurations can open the door to cyber-attacks