Shruti Ailani
Microsoft Global Black Belt, AI and Security
Amsterdam, The Netherlands
Actions
Current Global Black Belt (GBB) with Microsoft in AI & Security space. Armed with Big-4 managerial experience of EY, cyber start-ups as well as international organizations such as Formula1, AWS, Dropbox, Facebook, Google, I bring cybersecurity solutions that empower every customer. Empowered with thought leadership alongside technical strength, in cyber security and privacy domains cross-geographies (Middle East, EU, US,), I aim for a two-way knowledge sharing via my public speaking activities, which span Europe, Asia and aspiringly US based platforms. Off-work, I am an avid reader, scuba diver, a bungee jumper and a squash player.
Links
Area of Expertise
Topics
See your business the way an attacker can with External Attack Surface Management
Organizations manage an unprecedented volume of workloads, applications, and infrastructure in complex multi-cloud environments. On top, tracking and prioritizing vulnerabilities becomes difficult. The blind spot on shadow IT can be hidden footholds for attackers to make life difficult. Human errors and latency make any recovery or chase or proactive hunt even more cumbersome.
To resolve all these modern day challenges related to external attack surfaces which attackers can see, we bring to you a solution that works on top of threat intelligence pool and feeds into XDR and SIEM solutions for better correlation.
PRE-CONFERENCE TRACK: Game ON! Microsoft Security hands-on workshop
Shruti Alani, senior security technical specialist at Microsoft, and Maarten Goet, security MVP & RD, will talk about how security defense teams, incident response teams, threat hunting teams and SecOps teams can detect and respond fast enough to contain the adversary before they accomplish their mission? They will do a deep-dive on Microsoft Defender 365, Microsoft Defender for Cloud and Microsoft Sentinel.
For the second part of the workshop, Shruti and Maarten will launch attendees into an intense, real-world security breach simulation. Every security pre-day attendee will get hands-on experience with Microsoft products and test their knowledge in a fun, interactive game, with a price ceremony for the top performers.
Microsoft Threat Intelligence
Over this se3ssion we would discuss what is threat intelligence, where and why it is important and how it can be used with Microsoft Security technology stack. We would touch upon both technical and strategic (cost saving) subjects in threat intelligence space.
Being sharp with Security in DevOps!
The biggest security problem in organizations is that the DevOps and the Security teams work in silos. This means DevOps team is focused on writing the code while the Security teams struggle with fragmented visibility, lack of business risk context, and integrated processes to effectively shift left (security by design).
In this session we will go over how Defender for DevOps helps unify, strengthen, and manage DevOps security from development to runtime. As a teaser, we will also discuss integration with GitHub Advanced Security (GHAS) for technical and commercial benefits to customers to avoid capability overlaps.
Note: this is multi-pipeline and multi-cloud so the session would be relevant for all organizations.
Being sharp with Security in DevOps!
The biggest security problem in organizations is that the DevOps and the Security teams work in silos. This means DevOps team is focused on writing the code while the Security teams struggle with fragmented visibility, lack of business risk context, and integrated processes to effectively shift left (security by design).
In this session we will go over how Defender for DevOps helps unify, strengthen, and manage DevOps security from development to runtime. As a teaser, we will also discuss integration with GitHub Advanced Security (GHAS) for technical and commercial benefits to customers to avoid capability overlaps.
At the end of this session, the DevOps audience will be able to drive security inherently while writing the code. The Security audience will be able to drive code security without having to chase after the developers or break pipelines at the last minute. Overall, this will elevate an organization or a CISO to enable code to cloud protection through discovery, detection and streamlined remediation.
Note: this is multi-pipeline and multi-cloud so the session would be relevant for all organizations.
APIs - the next underestimated attack surface
Having secured assets like identities, devices, data & infrastructure to a large extent, what escapes the eye mostly/remains the blind spot is the mushrooming security risk associated with APIs. It is an infinite game of protecting your workloads and keep your data safe. Are you aware of how many APIs on an average your organization is using? According to Akamai, 83% of web traffic is the API traffic.
Gartner envisions a shift of API abuse becoming the most common form of web application attack in near future. A pretty sobering statistic for those in charge of developing API's, as well as application and data owners, and those responsible for infrastructure security.
In this session, you'll learn how to successfully implement an effective API security strategy in order to achieve attack disruption and attack surface reduction. This would include build discovery and full lifecycle protection, detection and response coverage for your APIs wherever they reside.
By the end of it, you should have established a clear understanding of what API security entails, and what options based on Microsoft technology you have to make your web application more resilient. Are you ready to disrupt the attack?
Shruti Ailani
Microsoft Global Black Belt, AI and Security
Amsterdam, The Netherlands
Links
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top