Sami Laiho's Speaker Profile @ Sessionize

Zero Trust MicroSegmentation for FREE!

One part of the hyped concept of ZeroTrust is Microsegmentation. It aims to prevent lateral movement and move to an identity based control of network flows. It'll bring you a more granular level of firewalling workloads and nodes from each other so that the barriers are not just at the edge of a subnet or VLAN. ZeroTrust is the most horrible name ever... It sounds like Big Brother is watching and no one trusts no one, Honestly, behind the horrible name is a beautiful goal - To allow people to work as efficiently and as securely, whether they are in the corporate office or sitting in Starbucks. On this session I will show you how to build Microsegmentation for free with Windows 2000 and up, and also how I RansomWare-proofed my own home network by moving to a completely ZeroTrust and software based networking model. The freedom of moving my devices anywhere where there is Internet access, even my servers, and no users noticing it... Is just AWESOME!

Workshop: Notes from the Field - Fighting Against Breaches and Ransomware

In this workshop you will hear a full day length of real life deployment examples for the most effective protections against Cybercrime, like Allow-Listing, Principle of Least Privilege, PAM/PAW/SAW, MFA, IPsec, Fabric protections and Backups.

Protecting Against Ransomware - Proven Concepts

On this session Sami Laiho will show you how to protect against the modern RansomWare campaigns. Sami has 25+ years of experience in protecting IT-environments and on this session he show the most effective solutions based on his real life experience.

How to get rid of Admin Rights for your kids (and maybe end users as well)

Join Sami Laiho, a world leading Cybersecurity expert who has been focusing on removing admin rights from end-users for more than 20 years, on a session from a very different angle. If you are a parent with kids that use Windows or Mac PCs, you've probably struggled with allowing the least required privileges while still having some peace and quiet for yourself and not running all the time to allow something on their computers. Can you really remove admin rights from kids? Will Epic Games, Discord, Rockstar Games, Steam and EA Apps still keep up to date and the games working? In this session, Sami will show you how to deal with this easily, free and while not even at home!

Many will find a lot of tips for doing this at work as well ;)

Follow (Intune) Suite and Deploy Least Privilege

In the new world of Zero Trust most companies are now aiming to get rid of local administrative rights for their end users. Sami Laiho has specialized in this field since 2002 and is the world leading specialist in his field.
Even the NT 3.1 User Guide states, that in Windows, there is no security if you give people local admin rights. Local admin rights give you the ability to bypass all company Group Policy / MDM -settings, take any logged on users’ identity, read/delete any files on the computer even with Deny ACLs, and probably the worst – the ability to breach the rest of the company systems.

Taking away end-user admin rights can lower the amount of Helpdesk tickets by 75%! Most people say that: “if I don’t have admin rights I can’t fix my computer” – No, in reality, it’s: “if you don’t have admin rights you can’t break your computer!”.

Most people think this hinders usability and is not possible for certain old apps, laptop users, or devs.

Sami has successfully taken away admin rights from all of these, in companies ranking from a single-person to a company with more than half a million users.

In 2023, Microsoft steps into this game as well! On this session you get a comparison between Microsoft's Endpoint Privilege Management and the 3rd party solution, from the most experienced in this field!

Cyberwar between Russia and Finnish Companies

I’m one of the Finnish cybersecurity specialists that took part in destroying company IT-systems when companies needed to flee Russia. Finland has more border with Russia than the rest of the EU combined. When Russia declared that they can nationalize company assets when the companies leave Russia, we had 72 hours to destroy the company IT-systems, using deadman’s switches as Russia threatened to cut Internet connections to the country. This is hopefully my only war story that I ever have to tell my kids, and I would like to share it with the world. People are talking about expensive machinery left in Russia but not the systems that control them and store all sorts intellectual property. On this session you will learn about an IT-pioneers job in making directories unreadable and doing, normally 18 month long, Domain Splits in 72 hours.

Forward to the Past and Back to the Future - Cybercrime in 2022/2023

Join Sami Laiho, Chief Research Officer of Truesec, for a look back in to what 2022 changed in the Security Threat Landscape and to hear his predictions on what will the future have in store for us.

Identity crisis

Applying technology to defend resources you don’t know or understand is much like slapping an attacking gorilla with your hand. Annoying for the gorilla, but not particularly effective.

The key component in all security involving users is identity. To make a better strategy around identity protection you need to know not only the technologies out there but also the human phycology factors that will affect the user’s behavior under different circumstances. With this insight, we will be better equipped to create a technology barrier to prevent identity-related crises.

So, in this different formatted session, we will have discussions and insight connecting the human side with technologies from Sami Laiho, Alexander Solaat Rødland and Olav Tvedt, all bringing different views and experiences to the table

Implementing Privileged Access Workstations (PAW)

If you can RDP into a server or a jump server from any computer in your network, you are in trouble and you should join this training!

One concept to deploy in any modern environment is the Concept of Privileged Access Workstations. We simply cannot allow _any_ computer to take down the whole company or have access to resources that can. A normal end-user computer can access the Internet and can not be thus used to manage the environment. A separate workstation, that cannot access the Internet and is better secured and more controlled, is to be used for managing the environment. We simply cannot combine potential access to malicious content and management into the same device.

The PAW is the missing component that makes a properly tiered Active (or Azure Active) Directory secure and easy to manage!

Join, Sami Laiho, a world leading security expert, in this webinar and learn how he manages different sized environments and deploys the concept of Privileged Access Workstations.

Keynote: Securing your Systems in 2020+

If we compare the mentality of Microsoft in 2018 to the Microsoft in 2020 they have moved from a "Let's trust BYOD" to absolutely "Zero Trust" model. On this keynote Sami Laiho, a world leading security experts talks about the biggest security threats out there and how they relate to servers and datacenters.

Preparing your Environment for Cyberwar!

The world changed in 2022. Join this session with Sami Laiho, where he shows how he instructed Ukranian companies to prepare their Microsoft infrastructure against the cyber attacks from Russia. This is a session about how to Bulletproof your environment in a matter of days, instead of planning long term projects.

Protecting Endpoints in a ZeroTrust world!

A few years ago Microsoft said BYOD is the way to go. Now the Bring Your Own Disaster model has been thrown in the background and the word for today is Zero Trust! On this session one of the world's leading security experts, Sami Laiho, will show you what Zero Trust means and how to deploy it in an environment!

In this session you will learn about:

- authenticating all communications
- treating all networks as insecure
- using principle of least privilege
- allow-listing applications
- monitoring all activity

Windows Internals: Learn how Windows Really Works

Have you ever wondered if Windows Pagefile settings should be changed or how they actually work? Have you ever wondered what the values in Task Manager actually mean – like Paged Pool, Working Set, Free memory etc? Do you know Have you ever wondered why drivers are so dangerous and why Chrome can take down your battery life? If you don’t know the answers, come and join this course as it will provide you with the answers and a lot more!

Zero Admins - Zero Problems

In the new world of Zero Trust most companies are now aiming to get rid of local administrative rights for their end users. Sami Laiho has specialized in this field since 2002 and is the world leading specialist in his field.
Even the NT 3.1 User Guide states, that in Windows, there is no security if you give people local admin rights. Local admin rights give you the ability to bypass all company Group Policy / MDM -settings, take any logged on users’ identity, read/delete any files on the computer even with Deny ACLs, and probably the worst – the ability to breach the rest of the company systems.

Taking away end-user admin rights can lower the amount of Helpdesk tickets by 75%! Most people say that: “if I don’t have admin rights I can’t fix my computer” – No, in reality, it’s: “if you don’t have admin rights you can’t break your computer!”.

Most people think this hinders usability and is not possible for certain old apps, laptop users, or devs.

Sami has successfully taken away admin rights from all of these, in companies ranking from a single-person to a company with more than half a million users.

Behind the scenes: How to build a conference winning technical session

Want to enjoy some time among the tech heavy sessions and learn how an Ignite-winning session was actually put together? This is a one-time chance of seeing a behind-the-scenes session about what it takes to build a conference winning session. Sami Laiho has won all the major TechEd and Ignite sessions and now he is willing to be the magician revealing his tricks to the audience. Whether you are a seasoned public speaker or an attendee who want's to better understand how these sessions are put together, you'll enjoy this session.

Sami Laiho: 60 life hacks of the Windows OS in 60 minutes

Do you believe you know a lot about Windows but you would be eager to learn more? Sami Laiho, one of the world's leading operating system experts, shows you 60 tips and tricks about the Windows OS that you didn't even know existed! You will walk out thinking "OMG.. How did I miss that for all these years!" Sami's sessions were evaluated as the Best and the Second Best Session at Ignite 2018 (out of 1708 sessions) so you can rest assured that you will learn a lot and have fun while doing it!

Moving from reactive to proactive security in Azure

Time-of protections like anti-malware, firewalls, and changing passwords is gone. You need to move from old reactive protections to new proactive ones. Implementing things like AppLocker, PtH preventions, tier model, principle of least privilege, MFA, IPsec and Privileged Access Workstations has been going on for the past years in on-premises environments. Now it's time to learn how to implement this all in Azure! Let Sami Laiho, one of the world's leading security experts, show you how to achieve this in 2019 and forward. Sami's sessions were evaluated as #1 and #2 out of 1708 session at Microsoft Ignite in 2018 so you can rest assured you will enjoy your time!

60 Life Hacks of Windows in 60 minutes

Do you believe you know a lot about Windows but you would be eager to learn more? Sami Laiho, one of the world's leading operating system experts, shows you 45 tips and tricks about the Windows OS that you didn't even know existed! You will walk out thinking "How did I miss that for all these years!" Sami's sessions were evaluated as the #1 and #2 Best Session at Microsoft Ignite 2018 so you can rest assured that you will learn a lot and have fun while doing it!

How NOT to piss off an ITPro aka How to Build Better Software for Windows

I have always wondered why is there such a task in IT as repackaging... Or why applications are so hard to install to thousands of machines rather than one when there is perfectly good documentation to build apps the correct way... In this session I will go through how a seasoned ITPro would like an application to be developed and installed in Windows and how an application package should be built when it comes to manageability and security. I will also go through how the official documentation for devs says apps should be developed for the Windows OS.

Securing Windows in 2019 and forward

In year 2018 the number of malware per day did not increase for the first time in years. On the other hand the amount of money lost because of malware and security breaches more than doubled. The biggest threat to people is currently ransomware, cryptominers and loss of credentials. Join this session to hear one of the worlds leading security professionals, Sami Laiho, give his predictions on security in 2019 and forward, and what Windows can do to protect you in the all the time evolving cybersecurity landscape.

Windows Internals - Process Management

In this session you will learn how processes operate in Windows OS. You will learn how threads run on the CPU, how Windows Modes relate to CPU rings and how Google Chrome managed to run 15 faster than IE (and eat your battery 15 times faster while doing it)

Speaker

Sami Laiho

Actions

Links

Area of Expertise

Topics

Sessions