Workplace Ninja Summit 2024: Full Schedule

13:15 CEST

Forward to the Past and Back to the Future - Cybercrime in 2023/2024

Monday September 16, 2024 13:15 - 14:15 CEST

Join Sami Laiho, Chief Research Officer of Adminize, for a look back in to what 2023 changed in the Security Threat Landscape and to hear his predictions on what will the future have in store for us.

Speakers

Sami Laiho

Chief Research Officer, Matti Laiho Oy

Sami Laiho is one of the world's leading professionals in the Windows OS and Security. Sami has been working with and teaching OS troubleshooting, management, and security since 1995. Sami's session was evaluated as the best session in TechEd North America, Europe and Australia in... Read More →

Sami Laiho F2PandB2F pdf

Monday September 16, 2024 13:15 - 14:15 CEST
Luzerner Saal

Security

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, AVD, Azure AD, Windows 365, Conditional Access, Windows Client OS, Linux, Identity, Sentinel, MicrosoftXDR, Zero Trust, Security Copilot
Level Intermediate

15:45 CEST

Strong Authentication with Entra Certificate-Based Authentication

Monday September 16, 2024 15:45 - 16:45 CEST

Clubraum 2

Identity is the most critical aspect of security. Ensuring that users are who they claim to be is vital. Today, usernames and passwords alone are insufficient. Although Multifactor Authentication (MFA) mitigates some risks associated with standard credentials, digital certificates are a better choice. Organizations can improve their security posture by adopting strong, phishing-resistant credentials in digital certificates by implementing Microsoft Entra Certificate-Based Authentication (CBA).

Speakers

Richard Hicks

President, Richard M. Hicks Consulting, Inc.

Richard Hicks is the founder and principal consultant at Richard M. Hicks Consulting, Inc. A Microsoft Most Valuable Professional (MVP) with more than 25 years of experience implementing secure remote access and public key infrastructure (PKI) solutions, he is a widely recognized... Read More →

Strong Authentication with Entra Certificate Based Authentication pptx

Monday September 16, 2024 15:45 - 16:45 CEST
Clubraum 2

Security

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Conditional Access, Windows Client OS, Compliance, Identity, Zero Trust
Level Intermediate

17:00 CEST

Eliminate privileged Entra roles in your tenant

Monday September 16, 2024 17:00 - 18:00 CEST

Auditorium

Environments with multiple Global Administrators, Intune Administrators and Security Administrators are a nightmare for every Microsoft Security Consultant.
Therefore it is important to implement least privilege, protect critical access and apply just in time access.

During this session we will in take a deep dive into the world of Intune Scope Tags, Entra Administrative Units, Defender Device groups and how to leverage access to those objects using Privileged Identity Management.

We provide you valuable insights from our experience deploying these solutions with large enterprise customers.

Speakers

Janic Verboon

Senior Endpoint Engineer, baseVISION AG

Endpoint Engineer with interests in everything Intune & Entra related, enjoys a good beer 🍺 and is a big fan of heavy & loud music 🤘

Nicola Suter

Security Consultant & MVP, baseVISION

Building cyber defense with the latest Microsoft technology available today - to defeat tomorrows threats. Passionately curious about all things related to tech, real-world-proven about topics such as identity, endpoint management and security.

Eliminate privileged Entra roles in your tenant pdf

Monday September 16, 2024 17:00 - 18:00 CEST
Auditorium

Security, Role Based

Session format Breakout session (60 min)
Subjects Security, Microsoft Intune, Identity, Zero Trust, MicrosoftXDR, Azure AD
Level Expert

17:00 CEST

Unified SOC platform

Monday September 16, 2024 17:00 - 18:00 CEST

Clubraum 1

Presenting the next generation of SOC platforms - the unified platform bringing the power of out-of-the-box protection value of the XDR suite along with the customizability of SEIM, protecting all org assets.

Speakers

Hadar Feldman

XDR GPM, Microsoft

started my journey as a security researcher in the endpoint world, moved to building defender for endpoint experiences and capabilities as a product manager, and managed several product team focusing in investigation experience and protection toolset.

Monday September 16, 2024 17:00 - 18:00 CEST
Clubraum 1

Security

Session format Breakout session (60 min)
Subjects Security, Sentinel, Identity, MicrosoftXDR, Security Copilot
Level Intermediate

08:00 CEST

Let’s replace your VPN with a real Zero Trust Network Access !

Tuesday September 17, 2024 08:00 - 09:00 CEST

Clubraum 1

We've spent the last few years modernizing clients, kicking them out of Active Directory and optimizing them to run outside the corporate network. The use of modern protocols, conditional access and the integration of MDE and Intune now enables us to access cloud services with access management that largely complies with the principles of zero trust.

However, when it comes to accessing legacy apps in the old data center world, we unfortunately all too often fall back on the old solutions - perhaps enhanced with some SAML and certificates - and features such as microsegmentation and session revocation are sought in vain.

In this session I would like to discuss and show why Microsoft's SSE solution is so much closer to my understanding of Zero Trust Network Access by explicitly checking every session in the network during its establishment, limiting access to the least necessary and disconnecting in case of a breach.

As a security architect who used to deal intensively with networks and in recent years with identity, I am very much looking forward to a deep dive on the topic of Single SignOn when accessing the OnPrem environment with Private Access.

In addition to the way the technology works, you will learn what needs to be considered during POC and rollout and what differences there are to a classic VPN project.

Speakers

Christopher Brumm

Cyber Security Architect, glueckkanja AG

I am a big fan of Microsoft Cloud Security products because there my two favorite topics Identity and Security work together in a unique way. I've been working in IT for quite a while and have almost 15 years of experience in IT security in various roles. At the moment I am a Cybersecurity... Read More →

WPNinja24 Lets replace your VPN with a real Zero Trust Network Access pdf

Tuesday September 17, 2024 08:00 - 09:00 CEST
Clubraum 1

Security, Zero Trust

Session format Breakout session (60 min)
Subjects Security, Azure AD, Conditional Access, Identity, Zero Trust
Level Advanced

16:40 CEST

Simplified Certificate Management with Microsoft Cloud PKI

Tuesday September 17, 2024 16:40 - 17:40 CEST

Clubraum 1

This session will introduce attendees to the new Microsoft Cloud PKI solution. Microsoft Cloud PKI is a cloud-based certificate services solution that significantly simplifies the deployment and management of client authentication certificates commonly used for Wi-Fi and VPN access. Cloud PKI eliminates the need for administrators to deploy complex on-premises infrastructure to support certificate authentication.

Speakers

Richard Hicks

President, Richard M. Hicks Consulting, Inc.

Simplified Certificate Management with Microsoft Cloud PKI pptx

Tuesday September 17, 2024 16:40 - 17:40 CEST
Clubraum 1

Microsoft Intune, Cloud PKI

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Compliance, Windows Client OS, Identity
Level Intermediate

08:00 CEST

Beyond the Thunderdome: Microsoft 365 Guest & External Access Inside & Out!

Wednesday September 18, 2024 08:00 - 09:00 CEST

Auditorium

Guest access and external sharing are such an important collaborative feature in both Microsoft Azure and Microsoft 365. But, setting incorrect permissions, or selecting the wrong settings can cause access problems or even serious data leakage. In this fascinating deep dive, join award winning international speaker, YouTuber, and Microsoft MVP Andy Malone as he discusses everything you’ll need to know to correctly implement, manage and troubleshoot external access. Also, Andy will bring you up to date with the very latest developments, including both new and incoming features. If you’re looking to learn how to manage guests, then this will be a demo packed session not to miss.

Speakers

Andy Malone

Microsoft 365 Expert, Worldwide Speaker, YouTuber, Tech Instructor, Author, Quality Training Ltd

Andy Malone MVP, MCTWinning the coveted Microsoft Speaker Idol competition in 2006 catapulted Andy into a prestigious international speaking career. Today, Andy is not only a world class conference speaker but is also a renowned security & technology expert who has delivered ground-breaking... Read More →

Beyond the thunderdome pdf

Wednesday September 18, 2024 08:00 - 09:00 CEST
Auditorium

Security, Identity

Session format Breakout session (60 min)
Subjects Identity
Level Intermediate

08:00 CEST

Everything you need to know about Microsoft's new Defender for Identity sensor

Wednesday September 18, 2024 08:00 - 09:00 CEST

Clubraum 1

In this session we will dive into the new Defender for Identity sensor, why it is being built, how the different components work, and what the future holds.

Speakers

Martin Schvartzman

Principal Product Manager, Microsoft

Martin is a Principal Product Manager in the Microsoft Defender for Identity team. Has over 20 years of experience in the technology industry, primarily around IT and Cyber Security with vast knowledge of Cloud Services. Martin is passionate about technology and innovation, and he... Read More →

New MDI Sensor Martin Schvartzman Day 3 pdf

Wednesday September 18, 2024 08:00 - 09:00 CEST
Clubraum 1

Security, Defender for Identity

Session format Breakout session (60 min)
Subjects Identity, MicrosoftXDR, Security
Level Expert
Area Microsoft

09:20 CEST

Troubleshooting Modern Authentication Protocols – OAuth 2.0 & OpenID Connect

Wednesday September 18, 2024 09:20 - 10:20 CEST

Clubraum 1

If you have been working with claims-aware apps, you may have experience with WS-Federation and SAML. As we move into a new era of authentication and delegation, the modern authentication protocols OpenID Connect and OAuth 2.0 are becoming predominant. Giving us seamless authentication with perhaps SSO when it all works, but what if it doesn’t, do you know how to troubleshoot?
Come to this deep-dive session with John Craddock, and he will share his extensive real-world experience. You will learn how to rapidly troubleshoot issues and identify the source of the problem whether it be an application issue or as the result of a misconfigured identity provider (IdP). You will discover how to troubleshooting with Entra ID as the IdPs. The session is packed with demos, the session will be high on the geek meter scale and shouldn’t be missed.

Speakers

John Craddock

Identity and security architect, XTSeminars Ltd

John has designed and implemented computing systems ranging from high-speed industrial controllers to distributed IT systems focusing on security and high availability. A key player in many IT projects for industry leaders, including Microsoft, the UK Government and multi-nationals... Read More →

Troubleshooting OpenID Connect and OAuth2.0 pdf

Wednesday September 18, 2024 09:20 - 10:20 CEST
Clubraum 1

Security, Identity

Session format Breakout session (60 min)
Subjects Security, Identity, Zero Trust
Level Advanced

10:40 CEST

Zero Trust - Dope or Nope?

Wednesday September 18, 2024 10:40 - 11:40 CEST

Auditorium

Zero Trust must be the worst name in the history of Security. But is it just a bad name? Does it really offer worthwhile goals or is it an overkill? I hear sales pitches for it, like for many other security solutions, that concentrate on "What we can't allow anymore because of changed security landscape" all the time. Why does security have to be so negative? A well done Zero Trust environment gives you "the ability to work as efficiently and securely, whether you are sitting in Starbucks or the corporate office" - Which I believe most of us want. Come and listen to this talk about rights and wrongs of how to achieve Zero Trust and how keep Security as what it's meant to be - a support function for a happy workforce.

Speakers

Sami Laiho

Chief Research Officer, Matti Laiho Oy

Sami Laiho Zero Trust Dope or Nope pdf

Wednesday September 18, 2024 10:40 - 11:40 CEST
Auditorium

Security

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Conditional Access, Sentinel, Windows 365, Identity, MicrosoftXDR, Zero Trust
Level Intermediate

12:15 CEST

Tips and Tricks from a baseVISION Security Engineer

Wednesday September 18, 2024 12:15 - 12:35 CEST

Community stage

Have you ever wondered what it is like to be a Security Engineer at baseVISION? In this session, sponsored by baseVISION, I'll show you how the company enables me to deliver the best service to my customers. I'll also cover a technical part where I'll talk about a current customer security project I'm working on. This will give you an insight into my daily life and I’ll also share some practical tips and tricks around my work.

Speakers

Loris Ambrozzo

Senior Security Engineer, baseVISION AG

Loris is a Senior Security Engineer at baseVISION AG, where he supports customers in improving the security posture of their environments. He's interested in various security and identity topics such as Microsoft Defender XDR, Microsoft Entra and Microsoft Sentinel.

TipsAndTricksFromAbaseVISIONSecurityEngineer pptx

Wednesday September 18, 2024 12:15 - 12:35 CEST
Community stage

Sponsor

Session format Gold Sponsor
Subjects Security, Sentinel, MicrosoftXDR, Security Copilot, Identity, Azure AD, Conditional Access
Level Intermediate

14:00 CEST

Entra Suite deep dive

Wednesday September 18, 2024 14:00 - 15:00 CEST

Clubraum 2

Learn how to securely manage your Identity and remote access across the enterprise, from private resources to Internet ones

Speakers

Peter Lenzke

Sen. Product Manager, Microsoft Corp.

Working in IT for 15+ years and for the last 12 years at Microsoft. Being a Program Manager in the identity division making Entra better every day.

Security Lenzke EntraSuite deepdive Wednesday pptx

Wednesday September 18, 2024 14:00 - 15:00 CEST
Clubraum 2

Security, Identity

Session format Breakout session (60 min)
Subjects Identity, Security, Conditional Access
Level Intermediate

16:40 CEST

Conditional Access, from basic to advanced: Part 2, advanced scenarios

Wednesday September 18, 2024 16:40 - 17:40 CEST

Clubraum 1

This session, which is part 1 of a 2 part workshop, Kenneth van Surksum will take your Microsoft Entra Conditional Access knowledge from basic to advanced. In part 2, we will go through the advanced scenarios you can implement with Conditional Access allowing you to take your Conditional Access policies one step further. Kenneth will talk about integrating Conditional Access with Microsoft Defender for Cloud Apps and Microsoft Purview, but will also explain how to leverage Authentication Context, Authentication Strength, Authentication Flow, Filters and more.

Speakers

Kenneth van Surksum

Modern Workplace Consultant, Secure At Work

As a Microsoft 365 Modern Workplace consultant I help customers implement modern workplace solutions based on top of theirMicrosoft 365 licensing, leveraging products like Microsoft Intune, Microsoft Entra, Microsoft Defender, Exchange Online, Microsoft Teams, Microsoft SharePoint... Read More →

WPNinjaSummit2024 Conditional Access implementation from basic to advanced part 2 advanced scenarios sched pdf

Admin Step UP MFA Authentication Strength mp4

Wednesday September 18, 2024 16:40 - 17:40 CEST
Clubraum 1

Security, Conditional Access

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Azure AD, Conditional Access, Identity, Windows Client OS, Zero Trust
Level Expert

17:45 CEST

Microsoft Ask Me Anything - Microsoft Leadership

Wednesday September 18, 2024 17:45 - 19:00 CEST

Luzerner Saal

Come ask Microsoft leadership all of your questions

Speakers

Sumit Malhotra

Group Product Manager, Microsoft

Leading teams on our vision and delivery of enterprise security focused solutions for our M365 customers. Driving rapid improvements in end users and security teams' resilience to emerging threats through automation in awareness, detection, investigation and response.

Martin Schvartzman

Principal Product Manager, Microsoft

Lior Arviv

Senior Product Manager, Microsoft

Lior Arviv is a Senior Product Manager on the Defender for Cloud team, with over 15 years of experience in Microsoft technologies, particularly in cloud services and security. Passionate about innovation, Lior is dedicated to developing products that simplify complex challenges and... Read More →

Ran Marom

Group Product Manager, Microsoft

Ran is the group product manager for Microsoft Defender for Cloud Apps, previously to Microsoft Ran was leading security products in different domains such as cloud-native and network security

Talal Alqinawi

SR Director, Microsoft

Talal Alqinawi is a seasoned executive leader specializing in cloud marketing and product strategy. With over 22 years at Microsoft, Talal has a proven track record in driving digital transformation through SaaS/IaaS cloud solutions, sales models, marketing & GTM strategy, and business... Read More →

Lior Bela

Bringing the Spark to Endpoint Managment, Microsoft

Lior is the Director of Intune with focus on business growth, customer & partner relationships, and the owner of the Intune MVP community

Scott Manchester

Vice President, Windows 365 and Azure Virtual Desktop, Microsoft

Scott Manchester is the Vice President of Program Management for Windows Cloud Experience. He is a 24 year veteran at Microsoft where he has led the development of Windows 365, Azure Virtual Desktop, Remote Desktop Service, Second Screen Remoting, Multimedia, and Networking technologies... Read More →

Jeff Pinkston

Vice President, Management Engineering, Microsoft

I am Jeff Pinkston, and most people at Microsoft call me by my nickname - Pinky. I am the Vice President of Engineering for the Management team for SCCM and Intune. I love talking to customers to learn where we can do better, and then making that happen. Personally, I love the outdoors... Read More →

Stefan Kinnestrand

Vice President, Cloud Endpoint Microsoft, Microsoft

Stefan Kinnestrand is the leader of the marketing and GTM strategy for Cloud Endpoints, which aims to advance and transform commercial end user computing for all information and frontline workers. His team oversees Windows Commercial (Windows Client, Windows 365 & Azure Virtual Desktop... Read More →

Brett Flegg

Partner Software Architect, Microsoft

Brett is a software architect and tech blogger who has spent the last two decades building tools and services that enable enterprises to get the most out of their IT infrastructure. The software he has developed (System Center Configuration Manager, Microsoft Endpoint Manager Intune... Read More →

Wednesday September 18, 2024 17:45 - 19:00 CEST
Luzerner Saal

General, AMA

Session format AMA
Subjects Microsoft Intune, Security, Azure AD, AVD, Copilot, Windows 365, Windows Client OS, Compliance, Configuration Manager, Linux, Apple (iOS/macOS), Automation, ChromeOS, Identity, Conditional Access, Endpoint Analytics, Autopilot, Sentinel, MicrosoftXDR, Pac
Level Advanced

08:00 CEST

Entra Private Access deep dive

Thursday September 19, 2024 08:00 - 09:00 CEST

Clubraum 1

Learn in depth about Entra Private Access integration with Entra ID for Zero-trust VPN replacement and on prem MFA capabilities

Speakers

Peter Lenzke

Sen. Product Manager, Microsoft Corp.

Working in IT for 15+ years and for the last 12 years at Microsoft. Being a Program Manager in the identity division making Entra better every day.

Security Lenzke Entraprivateaccess deepdive Thursday no videos pptx

Thursday September 19, 2024 08:00 - 09:00 CEST
Clubraum 1

Security, Private Access

Session format Breakout session (60 min)
Subjects Security, Identity, Zero Trust
Level Advanced

09:20 CEST

Most common misconfigurations identified during our Red Team engagements

Thursday September 19, 2024 09:20 - 10:20 CEST

Clubraum 1

Explore prevalent misconfigurations uncovered in red team engagements and learn how to mitigate them. Gain practical insights into identifying and addressing vulnerabilities to strengthen your organization's defenses against cyber threats.

This session offers valuable insights into fortifying your defenses against sophisticated adversaries

Speakers

Stefan Schörling

Security and Infra Geek - Onevinn AB, Onevinn

Stefan Schörling has over 25 years of experience from working with Cybersecurity.Today Stefan is helping customers to be successful with implementing and adopting Cloud Security with a focus on Azure and Microsoft 365.For the last 15+ years he has been awarded as a Microsoft MVP... Read More →

Mattias Borg

Cyber Security Geek, Mattias Borg

Incident Response Specialist with focus on Threat hunting in the Microsoft defense stack.Cyber Security consultant and Threat HunterResearching vulnerabilities when not working for customers.MSRC Security Research Acknowledgement (2018,2022,2023)CVE-2022-26788Speaker:Teamsdagen 2023... Read More →

WP Most common misconfiguration identified during our Red Team engagements upload pdf

Thursday September 19, 2024 09:20 - 10:20 CEST
Clubraum 1

Security, Tips

Session format Breakout session (60 min)
Subjects Windows Client OS, Security, Identity
Level Intermediate

10:40 CEST

Control Plane under Control: Securing Privileged Access by Microsoft Enterprise Access Model

Thursday September 19, 2024 10:40 - 11:40 CEST

Clubraum 1

Over the last years, Microsoft has released many design principles, best practices and security concepts for securing privileged access in a Microsoft Cloud environment. This includes also the "Enterprise Access Model" as an evolution of the previously known (Active Directory) ESAE approach.

But what are real-world experiences and examples of implementing those reference architecture? Which security controls should be applied? Who and what should be defined as "Tier0" or "Control Plane"? Which privilege escalation paths should be considered even in a tiered administration model?

In this demo-drive session, I will share my learnings and practical approach to identify, protect and monitor the high-privileged assets in Microsoft Entra. We will go through related features and monitoring capabilities but also limitations to implement a tiered administration model in a cloud environment. In addition, I will show insights of my free commmunity tool "EntraOps" which allows to automate classification and protection of privileged assets in your environment.

Speakers

Thomas Naunheim

Thomas Naunheim is a Cyber Security Architect from Germany and with focus on identity and security solutions in Microsoft Azure. He is working for glueckkanja AG and part of projects to design and implement Microsoft cloud identity and security solutions in enterprise environments.You... Read More →

Control Plane under Control pdf

Thursday September 19, 2024 10:40 - 11:40 CEST
Clubraum 1

Security, Identity

Session format Breakout session (60 min)
Subjects Azure AD, Sentinel, Identity, MicrosoftXDR, Zero Trust
Level Advanced

10:40 CEST

Redefining the future of Windows in the Cloud with new like-local experiences

Thursday September 19, 2024 10:40 - 11:40 CEST

Deuxième

Learn from the Windows Cloud engineering group how next-gen end-user experiences define the future of Windows + AI and we deliver new like-local experiences for end-users. This session will primarily focus on the end-user via new Windows integrations, AI / Copilot features and protocol enhancements. You do not want to miss this session.

Speakers

Christiaan Brinkhoff

Principal PM and Community Lead, Windows 365 + AVD, Microsoft

Christiaan Brinkhoff works as a Principal Program Manager and Community Lead for Windows 365 and AVD at Microsoft, In his role at Microsoft, he works on features such as Windows 365 app, Switch and Boot. His mission is to drive innovation while bringing Windows 365, Windows, and Microsoft... Read More →

Phil Gerity

Partner Group Product Manager @ Microsoft | Leader | Maker | Author, Microsoft

Phil has built his career on tackling complex problems by designing innovative products and business models. His experience spans three separate startups at Microsoft, and one pre-IPO startup at Smartsheet. Phil leads end user experiences for Windows 365 and Azure Virtual Desktop... Read More →

Redefining the future of Windows in the Cloud with new like local experiences pdf

Thursday September 19, 2024 10:40 - 11:40 CEST
Deuxième

Windows 365 / AVD, Copilot

Session format Breakout session (60 min)
Subjects Microsoft Intune, AVD, Windows 365, Identity, Windows Client OS, Security, Endpoint Management
Level Advanced
Area Microsoft

12:40 CEST

Intune MAM, Conditional Access, actual scenarios and the clown fiesta!

Thursday September 19, 2024 12:40 - 13:40 CEST

Luzerner Saal

We'll dive deep into Intune Mobile Application Management as part of Microsoft Endpoint Manager. We'll go thru the diverse landscape that explain certain identify driven MAM scenarios and their potential issues that drove us nuts. Of course a big part of this is conditional access driven and we will discuss all practical
blockers and workarounds when it goes south.

This session will be focusing specifically on the use case issues and workarounds , less on the theoretical part of Intune mam & CA

Speakers

Kim Heyrman

Consultant, OB-V-US

Modern workplace IT consultant @itsobvus

Kenny Buntinx

CEO, OB-V-US

Kenny is a highly qualified , certified and energized consultant working for OB-V-US Benelux with more than 20 years of experience and strives to always deliver high quality when managing and delivering projects. He has a strong focus on the Microsoft Cloud product family and is an... Read More →

Thursday September 19, 2024 12:40 - 13:40 CEST
Luzerner Saal

Microsoft Intune, Mobile

Session format Breakout session (60 min)
Subjects Microsoft Intune, Endpoint Management, Apple (iOS/macOS), Conditional Access, Security, Identity
Level Intermediate

12:40 CEST

One Year of Fighting Adversary-in-the-Middle, notes from the field

Thursday September 19, 2024 12:40 - 13:40 CEST

Clubraum 2

Last 1,5 year we were faced with a new advanced phishing technique, called adversary-in-the-middle. This is an advanced method to bypass multiple forms of MFA.

In this session Kenneth and Erik we do a deep dive into this topic.

First of alll we start with a small demo of the AiTM case

Then we will go through our options to fight this by using differente strategies like implementing phising resistant MFA methodes or using simple Conditional Access policies, or advanced Entra ID P2 Protection methods.

After this session you will have enough information to stop this attack in several ways each with it's own advangtages and drawbacks.

Speakers

Erik Loef

CTO, Proxsys

CTO, MSc, CEH, MVP

Kenneth van Surksum

Modern Workplace Consultant, Secure At Work

WPNinja Summit 24 One year of fighting adversary in the middle notes from the field sched pdf

Thursday September 19, 2024 12:40 - 13:40 CEST
Clubraum 2

Security

Session format Breakout session (60 min)
Subjects Security, Conditional Access, Identity, Zero Trust
Level Advanced

12:40 CEST

Securing your Entra Identities in 2024

Thursday September 19, 2024 12:40 - 13:40 CEST

Clubraum 1

Security of your identities is crucial in the cloud. With Microsoft 365 we have many options and tools to make sure our identities can stay as secure as possible while at the same time we keep our users productive. Your identity is also what defines what and how you can access your resources in the cloud.

Learn how to protect both your standard users and all the privileged accounts in Entra ID.

Join in on a journey from password strategies, authentication methods, identity protection, privileged identity management, conditional access all the way over to a password-less world.

Speakers

Jan Ketil Skanke

MVP Security, Principal Cloud Architect, COO, CloudWay

Jan Ketil has been an Microsoft MVP since 2016 and are working as a COO and Principal Cloud Architect at CloudWay in Norway. He has been working in the industry for Microsoft Partners and Microsoft for more than 20 years. He loves to speak about anything around Endpoint Management... Read More →

Maurice Daly

Microsoft MVP, Principal Cloud Architect, CloudWay

Maurice has been working in the IT industry for the past 20 years. His focus is around the areas of Windows deployment, device management, Azure AD and secure productivity, Maurice has been an MCSE since 2008 and was awarded his first MVP award in the area of Enterprise Mobility in... Read More →

SecuringEntraIdentities2024 WPNinja pdf

Thursday September 19, 2024 12:40 - 13:40 CEST
Clubraum 1

Security, Identity

Session format Breakout session (60 min)
Subjects Identity, Security, Azure AD
Level Advanced

15:20 CEST

Zero Trust - Zero Gap? Spotlight on (new) uncovered aspects of your CA design

Thursday September 19, 2024 15:20 - 16:20 CEST

Auditorium

Conditional Access is the heart of Microsoft's Zero Trust implementation as its policy enforcement engine and Microsoft introduces constantly new features to cover more and more use cases and integrations. This includes granular conditions and controls for specific authentication methods, restricted sessions and authentication flows but also new capabilities to re-trigger a policy evaluation.

In this session, we will discuss the latest features and their use cases and also challenges that you may not address in your current ruleset. Starting from automation for deployment, exclusion handling and gap monitoring, up to missing strong policy design to prevent rogue devices or protect privileged users.

Speakers

Thomas Naunheim

Christopher Brumm

Cyber Security Architect, glueckkanja AG

WPNinja24 Zero Trust Zero Gap pdf

Thursday September 19, 2024 15:20 - 16:20 CEST
Auditorium

Security, Zero-Trust

Session format Breakout session (60 min)
Subjects Security, Azure AD, Conditional Access, Identity, Zero Trust
Level Advanced