Exploring and Preventing Attack Paths with Defender for Cloud CSPMen

In this deep dive session, we will explore practical insights and strategies for adopting and taking benefits of Cloud Security Posture Management (CSPM) in Microsoft Defender for Cloud. You will gain a thorough understanding of how to identify critical assets and related potential attack paths within your Azure infrastructure. We will cover the prioritization of findings to effectively address vulnerabilities and initiate proactive threat hunting on lateral movement paths.

The session will also delve into managing CSPM at scale, ensuring robust security across extensive cloud environments. Additionally, we will discuss the integration of CSPM with other essential security features, such as Data Security Posture Management (DSPM) and Exposure Management.
Join us to enhance your cloud security posture, mitigate risks, and safeguard your organization's critical assets with Microsoft Defender for Cloud CSPM.

7 Common ways to optimize your Azure costsende

The Cloud is simple, deploy a resource and use it, but the real Cloud magic is to use it in a required performance and optimized cost way. In the past I see a lot of different Azure environments and in each environment I see a lot of pitfalls and configuration mistakes the ends in higher costs.
In this session we will going deeper in an common way to save cost in different stage of usage, like in the design phase and run phase up to monitoring the cost spend.
This session will focus on saving costs in IaaS environments like Azure VMs and Storage and will going deeper into the great benefit of Azure Cost Management. A short notice will also which subscription are enabled by default for the integrated Azure Cost Management.

Azure Update Manager - The new sheriff for centralized Update Managementende

Do you have heard about the deprecation of the Azure Automation Update Management solution? The Azure Automation Update Management exists since several years and have only limited support for hybrid environments and no integration with Arc. The new Azure Update Center cut off a lot of dependencies (e.g. MMA requirement) and is a full new approach and seamless integrated in Azure Arc.
In this session we dive into the solution, how can this configure, recommendations and pitfalls which you must keep in mind. And we will clarify what a migration can look like and what other restrictions there are.

Hybrid- and Multi- Cloud Server Management with Azure Arcende

The cloud usage growing in the recently months and years. Many companys right now evaluating and using cloud providers to extend here own datacenter or to migrate existing services to new providers. Servers and Virtual Machine are a big part of every IT environment. Microsoft releases Azure Arc two years ago as a Multicloud service, that extend the Azure management capapbilitites to servers anywhere.
In this session we will dive into the many aspects of Azure Arc, how you can enroll Azure Arc, how you can manage and enable existing Azure services like Site Recovery, Backup or Microsoft Defender for Cloud on Server outside of Azure.
This session will introduce all aspects of Azure Arc and how this service helps to central manage your servers from one single point of view.

Mastering Defender for Serversen

The Defender for Cloud suite is the central component of Microsoft security products. One central solution is Defender for Servers. This session will focus on Defender for Servers to protect servers across hybrid and multicloud environments. We dive into the different plans, feature sets, deployment methods and more.
We will cover the different ways to use Defender for Server in hybrid environments with Azure Arc to integrate servers everywhere, and will also see in which scenarios onboarding hybrid servers via Azure Arc or direct onboarding is appropriate.
Futhermore we will explore how agent-based and agentless scan methods works and in which cases they are suitable.
How to deploy defender for servers at scale will complete the view and enable you to mastering defender for servers.

This session focuses on Defender for Servers and provides a comprehensive look at the different plans, the best ways to get started and how the different scanning methods (agent-based and agentless) work. It also explains how Defender for Servers can be deployed at scale.

Azure VM Best Practicesende

Every cloud journey begins with VMs in Azure, sometimes for a short period of time, sometimes a bit longer because of legacy applications.
There are many ways to deploy and host VMs on Azure, but what is the best way, what service makes the life easier and what are the ways to reduce costs?
In this session we will discuss the most common mistakes and which Azure services are suitable to avoid them. Session will be focus on reduce management overhead, improve automation, simplify overall provisioning and security. Topics:
• Sizing and Automation
• SLA and availability
• Management and security

In this session we will discuss the most common mistakes and which Azure services are suitable to avoid them. The session will have a 50:50 ratio of slides and demo and is aimed at cloud admins, architects and security managers

Azure Governance Best Practices and Enterprise-Scaleen

In the past, Microsoft published many documentations and white papers for the adoption of Azure in enterprise environments. This includes Cloud Adoption Framework (CAF) and the Well Architecture Framework. Alongside an overview of those whitepapers, we will show some hands-on and live-demos to manage your cloud environment. In particular, Azure Policy, Defender for Cloud and Azure Advisor will helps you to enforce your policies across compliance and security.
In the second part of the workshop, we will give you an overview of the „Enterprise-Scale“ reference architecture. This enables you to build landing zone(s) that represents the strategic design path and follows design principles of critical design for shared services (e.g. identity, network,..).
Furthermore, it includes learnings from previous engineering engagements and provides architecture design patterns from Microsoft.

Various reference implementations allow to deploy (modular) templates depending on customer needs such as kind of connectivity (cloud-only, Hub/Spoke, vWAN).
In this workshop, we like to introduce the "Enterprise-scale" architecture, and some of the included aspects, considerations, or approaches. A particular focus will be on security best practices with Entra ID and RBAC.

Agenda of Workshop:
- Cloud Adopting Framework
- Well Architecture Framework
- How Azure Policy and Azure Security center helps to enforce Compliance and Security
- Azure Advisory

- Overview and requirements of Azure Landing Zones
- Deployment of Enterprise-Scale reference implementation
- Policy-driven governance ("Azure Policy")
- Critical design areas and core principals of securing Azure environments

Top 10 Azure Security Best Practicesende

Azure environments are widely adopted, but optimal security settings are often overlooked or misunderstood. In this session, we will cover the 10 essential security practices that every cloud architect, administrator, and security manager should know. Our focus will be on high-impact, quickly implementable guidelines to provide immediate takeaways for your cloud environment.
The session topics include:
• Enterprise segmentation
• Roles and responsibilities
• Passwordless options
• Security posture
• Network capabilities
Join to ensure your Azure environment is secure and well-managed!

Aimed at cloud architects, administrators and security managers, the session will cover the 10 best security practices with a large proportion of live demos (at least 60%).

Harden your Multi Cloud environment with Defender for CSPM ende

In the past Microsoft releaded several Defender plans and each plan has a focus for a specific workload or solution. With Defender for CSPM Microsoft introduced the first plan which focus on Cloud Security Posture Management and offers also security features for different workloads such as Server, Containers and more.
In this session we will dive into this offering, why this a must have in Mutlicloud environments and why this can be an intersting alternative to the existing plans in terms of security features. In addition to the interesting functions, some features are also highlighted, such as Cloud Security Explorer or Attack path analysis which are really great benefits to secure your multi cloud environment.

In this session we will dive into the interesting features of Defender for CSPM, some features are also highlighted, such as Cloud Security Explorer or Attack path analysis which are really great benefits to secure your multi cloud environment.
The Session will provide a better understanding of the scenarios in which this plan makes sense and the functions it provides.

Azure Monitor - From MMA to AMA in just a few stepsende

One stable solution in the past was the Microsoft Monitoring Agent (MMA) for Monitoring Server and workloads to centralize logging to Azure Monitor. And the agent was also an important foundation for the use of Defender for Cloud. The Azure Monitor Agent takes the place of the MMA this year because the MMA is on a deprecation path and planned to be discontinued after August 2024.
In this session, we'll dive into the benefits of the new AMA, what things you need to consider when migrating to AMA, why the new data collection rules are a great way to simplify management, where AMA is headed in conjunction with Defender for Cloud, and why Azure Arc and AMA are co-hosting at the Monitor Party.
Let get start the AMA party.

In this session, we'll dive into the benefits of the new AMA, what things you need to consider when migrating to AMA, why the new data collection rules are a great way to simplify management, where AMA is headed in conjunction with Defender for Cloud, and why Azure Arc and AMA are co-hosting at the Monitor Party.

WS2025 with Azure Arc and WAC - The best combination for hybrid clouden

Extending the on-prem environment with additional cloud providers is becoming increasingly relevant for companies. Each cloud provider has particular strengths that make their use interesting. The use of VMs is still constant and requires a stable, resilient and reliable management layer. In this session, we will look at the advantages Microsoft is providing with the release of Windows Server 2025 and the deep integration with Azure Arc. This provides the full flexibility to run WS2025 in any cloud environment with a native integrated management via Azure. Additionally, the web-based Windows Admin Center ensures a consistent and reliable management layer that can be made available to administrators in a variety of ways. In this session we will look at the benefits of this combination especially for hybrid cloud environments.