Ian Hanley
I like to build cool stuff
Actions
Hey! My name is Ian Hanley.
As a demonstrated leader and experience across multiple leading MXDR MSSP focusing on Microsoft products and services, I specialize in leveraging the Microsoft security fabric effectively and enabling my peers in information security to extract favourable security outcomes.
As a father of two daughters, I know a thing or two about risk management too.
Links
Push IOC's with PowerShell via API
👉 In this blog post, we’ll explore how to set up and use PowerShell to publish IOCs to Microsoft Defender with a registered EntraID application. We’ll walk you through the necessary steps for authentication and permissions, providing a robust solution for when manual methods fall short. Whether you’re dealing with IP addresses, domains, or other threat indicators, this guide will equip you with the knowledge to keep your defenses strong and your response times swift… like a ninja! 🥷
PIM & JITA for JumpBoxes
During a regular security audit, you’ve discovered several jump boxes with network access to sensitive corporate resources (such as mission-critical production SQL databases) are exposed via RDP port 3389 to the internet and you need to lock them down.
The Change Management Board has given some push back; they have approved, given the following requirements are satisfied as a part of the solution:
🔌 Users are required to put in an access request that must be approved by a manager before they can connect to the jump box.
📝 Requests must be logged with justification.
⏱ Network Access must only be provisioned while necessary.
Logic Apps & Automation
In this blog post, we will explore how to leverage Azure Logic Apps to solve for a common, budget-constrained, mission-critical security use case while also reducing overhead for your SOC analysts.
Cyber Back to School Sessionize Event
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top