Jump to navigation Jump to content

Speaker

Truls Dahlsveen

Truls Dahlsveen

Security Architect, 2x Microsoft Security MVP

Oslo, Norway

Actions

Hi, I’m Truls. I’m an architect/engineer with a passion for automation and security. I’m a Microsoft MVP in Security for the “SIEM & XDR” and “Cloud Security” categories.

I like to speak and write to give insights on various topics related to security and automation, where I cover a wide range of subjects from cloud security strategies and log ingestion techniques, to hands-on tutorials for tools like Microsoft Sentinel, Defender and Azure DevOps. Outside work I spend most of my time in either Azeroth, on Anubis or in the forests of Norway.

Links

Badges

Area of Expertise

  • Information & Communications Technology

Topics

  • Microsoft MVP
  • Security
  • Cloud Security
  • Azure Security
  • Cyber Security basics
  • Cybersecurity Threats and Trends
  • Microsoft 365 Security
  • Microsoft sentinel
  • Security Monitoring
  • Identity & Access Management
  • Security Architecture
  • Cloud Security Architecture
  • Defender XDR
  • Defender for Cloud
  • Defender for Identity
  • defender for endpoint
  • Microsoft Defender XDR
  • Microsoft Defender for Office 365
  • Offensive Security
  • Ethical Hacking
  • Azure Lighthouse
  • MSSP
  • IT Security
  • cybersecurity awareness
  • Microsoft Azure
  • Azure DevOps
  • azure devops security

Sessions

How to not mess up your Microsoft Sentinel deployment

The year is 2025 and we are officially in the age of "instant gratification". Quick wins are the name of the game, and while the countless golden nuggets of sites like LinkedIn might provide some insights if put in the proper context, some things still require that special ingredient called time.

Join me in exploring the current state of Microsoft Sentinel, how to get started and most importantly what mistakes to avoid when setting up your security monitoring.

Anti-patterns in Security Monitoring

Planning to start looking into security monitoring? Wondering what f-ups to avoid? Look no further! In this session we'll explore some common anti-patterns (mistakes) people make when trying to start with security monitoring!

Field notes on Security Strategy

Having spent years working as a sysadmin, developer, penetration tester and security engineer, Truls will present some of his takes on modern Security Strategy. What is Zero Trust actually, what are some common misconceptions and antipatterns to watch out for, and how do you go about actually improving your security? Is there such a thing as the perfect security configuration?

Automating security monitoring

Continuously increasing volumes of data, architectural complexity, sophisticated threat actors, and alert fatigue are well-known challenges in security monitoring.

In this presentation, we will explore how we can make security monitoring more efficient by automating as much of the incident handling as possible.

Deploying and managing Microsoft Sentinel as Code

Friends don't let friends click to deploy anymore.

In this talk we will explore the world of deploying and managing Microsoft Sentinel across multiple workspaces and tenants from the perspective of an MSSP.

This approach is applicable for anyone managing more than one Microsoft Sentinel workspace.

Five years of cloud-first security monitoring - lessons learned and mistakes made

In this presentation, we will look into 5 years of accumulated experience doing security monitoring by primarily using a cloud-first approach. What lessons can be gleamed from moving security monitoring from on-premise and into the cloud, and what mistakes should you probably avoid?

Attendees can expect to learn a little bit about the different type of logs we can find in the cloud, along with some neat security features and tools that help us detect malicious activity. Combine this with a cloud-based security information and event management (SIEM) tool, and we're flying.

Don't know security monitoring? We'll cover that as well, with a quick introduction into how it's done and some dos and don'ts.

Before we all go our separate ways - let's try predicting the future! What will cloud-first security monitoring look like going forward? Is AI the way, is SOAR really as dead as Gartner want's us to believe, and will the focus on national autonomy put a damper on the adoption of cloud-based security tooling? Come and see!

Events

Sikkerhetsfestivalen 2025 Sessionize Event Upcoming

August 2025 Lillehammer, Norway

Workplace Ninjas Norway 2025 Sessionize Event Upcoming

June 2025 Oslo, Norway

NDC Oslo 2025 Sessionize Event Upcoming

May 2025 Oslo, Norway

Azure Spring Clean 2025 Sessionize Event

March 2025

Sikkerhetsfestivalen 2024 Sessionize Event

August 2024 Lillehammer, Norway

NDC Security 2024 Sessionize Event

January 2024 Oslo, Norway

Microsoft Security User Group 2024 User group Sessionize Event

January 2024 Oslo, Norway

MVP-Dagen 2023 Sessionize Event

October 2023 Oslo, Norway

Sikkerhetsfestivalen 2023 Sessionize Event

August 2023 Lillehammer, Norway

Truls Dahlsveen

Security Architect, 2x Microsoft Security MVP

Oslo, Norway

Links

Actions

Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.

Jump to top