Workplace Ninja Summit 2024: Full Schedule

13:15 CEST

Forward to the Past and Back to the Future - Cybercrime in 2023/2024

Monday September 16, 2024 13:15 - 14:15 CEST

Join Sami Laiho, Chief Research Officer of Adminize, for a look back in to what 2023 changed in the Security Threat Landscape and to hear his predictions on what will the future have in store for us.

Speakers

Sami Laiho

Chief Research Officer, Matti Laiho Oy

Sami Laiho is one of the world's leading professionals in the Windows OS and Security. Sami has been working with and teaching OS troubleshooting, management, and security since 1995. Sami's session was evaluated as the best session in TechEd North America, Europe and Australia in... Read More →

Sami Laiho F2PandB2F pdf

Monday September 16, 2024 13:15 - 14:15 CEST
Luzerner Saal

Security

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, AVD, Azure AD, Windows 365, Conditional Access, Windows Client OS, Linux, Identity, Sentinel, MicrosoftXDR, Zero Trust, Security Copilot
Level Intermediate

13:15 CEST

Super secure and super smart: Azure Virtual Desktop with Microsoft for secure environments

Monday September 16, 2024 13:15 - 14:15 CEST

Deuxième

AVD is Microsoft's flagship for desktop virtualization, and you can highly secure the user's data and sessions with the Defender suite. Let us dig into the challenge of building, securing, and managing a secure virtual desktop environment based on Microsoft Technologies. After the session, attendees gained deep insights into securing AVD, working with temporary hosts, private endpoints, CIS-images, Azure Disk Encryption, using Microsoft Defender Solutions, and much more.

Speakers

Marcel Meurer

Microsoft MVP for Azure, sepago GmbH

Marcel Meurer is responsible for the professional IT services business unit at sepago GmbH in Cologne. In this role, he leads a team of consultants who provide their expertise in Microsoft and Citrix Technologies for customers and partners. His technical focuses are Microsoft Azure... Read More →

Azure Virtual Desktop with Microsoft for secure environments pdf

Monday September 16, 2024 13:15 - 14:15 CEST
Deuxième

Windows 365 / AVD

Session format Breakout session (60 min)
Subjects AVD, Security
Level Advanced
Area Microsoft

14:30 CEST

Navigating the Battlefield: Leveraging MITRE ATT&CK Tactics

Monday September 16, 2024 14:30 - 15:30 CEST

Clubraum 1

The current threat landscape necessitates organizations to proactively detect and remediate vulnerabilities before attackers discover and exploit them. The MITRE ATT&CK framework acts as a repository of tactics, techniques, and procedures that security professionals use to understand the behavior of attackers. Using the MITRE ATT&CK knowledge base that maps external and internal TTP, red teams can develop threat models and methodologies for more effective attacks. Researching the TTP through MITRE ATT&CK will enable analysts and defenders to better understand threats against their organizations or enterprises.

The session aims to better understand the importance of MITRE ATT&CK tactics in a live demo. The session will also demonstrate how Microsoft products use MITRE ATT&CK for SOC operations.

In the session:
- An introduction to MITRE ATT&CK tactics and techniques
- Designing breach and attack simulations process with the help of MITRE ATT&CK
- How Microsoft 365 Defender and Microsoft Sentinel use MITRE ATT&CK

Speakers

Sergey Chubarov

Ethical Hacker

Sergey Chubarov is a Security and Cloud Expert, Instructor with 15+ years' experience on Microsoft technologies.His day-to-day job is to help companies securely embrace cloud technologies.He has certifications and recognitions such as Microsoft MVP: Security, OSCP, OSEP, eCPPT, eCPTX... Read More →

MITRE WPNinja pptx

Monday September 16, 2024 14:30 - 15:30 CEST
Clubraum 1

Security

Session format Breakout session (60 min)
Subjects Security, MicrosoftXDR, Security Copilot
Level Advanced

14:30 CEST

A competitive guide to secure Cloud PCs!

Monday September 16, 2024 14:30 - 15:30 CEST

Deuxième

Virtual doesn’t mean secure! In this session we will explain you all concepts around security of Cloud PCs with Windows 365. Learn how to protect this platform with Intune endpoint security.

Speakers

Niklas Tinner

Founder & Microsoft MVP, Oceanleaf

Technology Enthusiast 👨‍💻 Founder Oceanleaf 🌱 Microsoft MVP 🏆

Dominiek Verham

Blogger | Author | Public speaker | Loving tech and F1

A competitive guide to secure Cloud PCs Final pdf

Monday September 16, 2024 14:30 - 15:30 CEST
Deuxième

Windows 365 / AVD, Security

Session format Breakout session (60 min)
Subjects Windows 365, Security
Level Advanced

15:45 CEST

Navigating the SaaS Attack Landscape: How Microsoft Defender for Cloud Apps Can Protect Your Busines

Monday September 16, 2024 15:45 - 16:45 CEST

Clubraum 1

In this session, we delve into the evolving threats within the SaaS application ecosystem, examining recent trends and the innovative techniques employed by adversaries. We will explore the challenges faced by defenders in securing the SaaS surface against emerging attack techniques. We will discuss the importance of Microsoft Defender for Cloud Apps as part of Microsoft Defender XDR in scoping and containing sophisticated attacks. Additionally, we will address the critical role of SaaS Security Posture Management (SSPM) in early identification of risky configurations and the necessity for a research-led approach to SSPM enhancements. Join us as we share insights on recent product advancement to stay ahead of the adversary pace.

Speakers

Ran Marom

Group Product Manager, Microsoft

Ran is the group product manager for Microsoft Defender for Cloud Apps, previously to Microsoft Ran was leading security products in different domains such as cloud-native and network security

Maayan Bar-Niv

General Manager, Defender for Cloud Apps, Microsoft

Maayan Bar-Niv serves as the General Manager of Microsoft Defender for Cloud Apps, where she leads the charge in advancing SaaS threat protection in Microsoft Security. With a rich background in cybersecurity and IT solutions, over a decade at Microsoft, and a track record of spearheading... Read More →

Navigating the SaaS Attack Landscape How Microsfot Defender for Cloud Apps Can Protect Your Business pdf

Monday September 16, 2024 15:45 - 16:45 CEST
Clubraum 1

Security, Defender for Cloud Apps

Session format Breakout session (60 min)
Subjects Azure AD, Sentinel, Security, MicrosoftXDR
Level Advanced
Area Microsoft

15:45 CEST

Strong Authentication with Entra Certificate-Based Authentication

Monday September 16, 2024 15:45 - 16:45 CEST

Clubraum 2

Identity is the most critical aspect of security. Ensuring that users are who they claim to be is vital. Today, usernames and passwords alone are insufficient. Although Multifactor Authentication (MFA) mitigates some risks associated with standard credentials, digital certificates are a better choice. Organizations can improve their security posture by adopting strong, phishing-resistant credentials in digital certificates by implementing Microsoft Entra Certificate-Based Authentication (CBA).

Speakers

Richard Hicks

President, Richard M. Hicks Consulting, Inc.

Richard Hicks is the founder and principal consultant at Richard M. Hicks Consulting, Inc. A Microsoft Most Valuable Professional (MVP) with more than 25 years of experience implementing secure remote access and public key infrastructure (PKI) solutions, he is a widely recognized... Read More →

Strong Authentication with Entra Certificate Based Authentication pptx

Monday September 16, 2024 15:45 - 16:45 CEST
Clubraum 2

Security

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Conditional Access, Windows Client OS, Compliance, Identity, Zero Trust
Level Intermediate

17:00 CEST

How to Protect Your Data and Apps using Windows MAM, Edge and Microsoft Intune

Monday September 16, 2024 17:00 - 18:00 CEST

Luzerner Saal

In this session, we will guide you through the process of safeguarding your data and applications using Microsoft Edge for Business and App Protection Policies for Windows. Our focus will be on demonstrating how to effectively integrate Conditional Access Policies, App Protection Policies, and App Configuration Profiles to enhance security. By the end of this session, you will be equipped with the knowledge and skills to create a more secure digital environment for your business.

Speakers

Chevelyn De Mello

Product Manager, Microsoft

Product Manager at Microsoft on the Intune Mobile Application Management (MAM) team

Mike Danoski

Product Manager - Microsoft Intune, Microsoft

Mike Danoski is a Senior Product Manager at Microsoft on the Intune team. He is responsible for the policy engine as well as the Windows policies and related features. His 12 year career at Microsoft spans across Intune, Active Directory, Group Policy, Windows desktop, and the much... Read More →

Cristina Osorio Valenzuela

Microsoft CxE Product Manager, Microsoft

Microsoft CxE Program Manager

Intune Valenzuela How to protect your data and apps using Intune Sept 16 pptx

Monday September 16, 2024 17:00 - 18:00 CEST
Luzerner Saal

Microsoft Intune, Windows MAM

Session format Breakout session (60 min)
Subjects Microsoft Intune, Windows Client OS, Security
Level Advanced

17:00 CEST

Eliminate privileged Entra roles in your tenant

Monday September 16, 2024 17:00 - 18:00 CEST

Auditorium

Environments with multiple Global Administrators, Intune Administrators and Security Administrators are a nightmare for every Microsoft Security Consultant.
Therefore it is important to implement least privilege, protect critical access and apply just in time access.

During this session we will in take a deep dive into the world of Intune Scope Tags, Entra Administrative Units, Defender Device groups and how to leverage access to those objects using Privileged Identity Management.

We provide you valuable insights from our experience deploying these solutions with large enterprise customers.

Speakers

Janic Verboon

Senior Endpoint Engineer, baseVISION AG

Endpoint Engineer with interests in everything Intune & Entra related, enjoys a good beer 🍺 and is a big fan of heavy & loud music 🤘

Nicola Suter

Security Consultant & MVP, baseVISION

Building cyber defense with the latest Microsoft technology available today - to defeat tomorrows threats. Passionately curious about all things related to tech, real-world-proven about topics such as identity, endpoint management and security.

Eliminate privileged Entra roles in your tenant pdf

Monday September 16, 2024 17:00 - 18:00 CEST
Auditorium

Security, Role Based

Session format Breakout session (60 min)
Subjects Security, Microsoft Intune, Identity, Zero Trust, MicrosoftXDR, Azure AD
Level Expert

17:00 CEST

Unified SOC platform

Monday September 16, 2024 17:00 - 18:00 CEST

Clubraum 1

Presenting the next generation of SOC platforms - the unified platform bringing the power of out-of-the-box protection value of the XDR suite along with the customizability of SEIM, protecting all org assets.

Speakers

Hadar Feldman

XDR GPM, Microsoft

started my journey as a security researcher in the endpoint world, moved to building defender for endpoint experiences and capabilities as a product manager, and managed several product team focusing in investigation experience and protection toolset.

Monday September 16, 2024 17:00 - 18:00 CEST
Clubraum 1

Security

Session format Breakout session (60 min)
Subjects Security, Sentinel, Identity, MicrosoftXDR, Security Copilot
Level Intermediate

08:00 CEST

Detecting and responding to next generation threats with Defender for Office 365

Tuesday September 17, 2024 08:00 - 09:00 CEST

Clubraum 2

In this session we will cover how organizations are using Defender for Office 365 to detect and respond to new and emerging collaboration threats including phishing and BEC. We will walk through how SOC teams can be more effective and efficient using the power of XDR as well as build user resilience to new and emerging threats.

Speakers

Sumit Malhotra

Group Product Manager, Microsoft

Leading teams on our vision and delivery of enterprise security focused solutions for our M365 customers. Driving rapid improvements in end users and security teams' resilience to emerging threats through automation in awareness, detection, investigation and response.

Girish Chander

General Manager, Microsoft

Protecting against next gen email and collab threats pptx

Tuesday September 17, 2024 08:00 - 09:00 CEST
Clubraum 2

Security, XDR

Session format Breakout session (60 min)
Subjects Security, MicrosoftXDR, Automation
Level Advanced
Area Microsoft

08:00 CEST

Let’s replace your VPN with a real Zero Trust Network Access !

Tuesday September 17, 2024 08:00 - 09:00 CEST

Clubraum 1

We've spent the last few years modernizing clients, kicking them out of Active Directory and optimizing them to run outside the corporate network. The use of modern protocols, conditional access and the integration of MDE and Intune now enables us to access cloud services with access management that largely complies with the principles of zero trust.

However, when it comes to accessing legacy apps in the old data center world, we unfortunately all too often fall back on the old solutions - perhaps enhanced with some SAML and certificates - and features such as microsegmentation and session revocation are sought in vain.

In this session I would like to discuss and show why Microsoft's SSE solution is so much closer to my understanding of Zero Trust Network Access by explicitly checking every session in the network during its establishment, limiting access to the least necessary and disconnecting in case of a breach.

As a security architect who used to deal intensively with networks and in recent years with identity, I am very much looking forward to a deep dive on the topic of Single SignOn when accessing the OnPrem environment with Private Access.

In addition to the way the technology works, you will learn what needs to be considered during POC and rollout and what differences there are to a classic VPN project.

Speakers

Christopher Brumm

Cyber Security Architect, glueckkanja AG

I am a big fan of Microsoft Cloud Security products because there my two favorite topics Identity and Security work together in a unique way. I've been working in IT for quite a while and have almost 15 years of experience in IT security in various roles. At the moment I am a Cybersecurity... Read More →

WPNinja24 Lets replace your VPN with a real Zero Trust Network Access pdf

Tuesday September 17, 2024 08:00 - 09:00 CEST
Clubraum 1

Security, Zero Trust

Session format Breakout session (60 min)
Subjects Security, Azure AD, Conditional Access, Identity, Zero Trust
Level Advanced

09:20 CEST

Navigating the Cloud-Native shift: Insights & best practices

Tuesday September 17, 2024 09:20 - 10:20 CEST

Clubraum 2

Join us for a session with two experts in transitioning to cloud-native device management. Learn about their journey from managing on-premises devices to using Intune for cloud-based management. Is the transition smooth? Can it save costs? Understand why this shift is important and get valuable insights.

Discover the challenges they faced and learn best practices, tips, and tricks for a successful transition. Don't miss this chance to upgrade your device management strategy.

Speakers

Mattias Melkersen

Modern workplace architect - Mindcore | Microsoft MVP, Mindcore

Mattias Melkersen is a community driven and passionate modern workplace consultant with 18 years’ experience in automating software, driving adoption and technology change within the Enterprise. He lives in Denmark and works at Mindcore.He is an Enterprise Mobility Intune MVP, Official... Read More →

Nickolaj Andersen

Microsoft MVP, Senior Architect End User Computing, Ericsson

Nickolaj specializes in Enterprise Mobility and Security, Windows deployments and automation. Additionally, he has extensive experience with planning, implementing and migrating Microsoft Endpoint Manager environments on a global scale. Nickolaj has also been awarded as PowerShell... Read More →

Navigating the Cloud Native shift Insights & best practices pdf

Tuesday September 17, 2024 09:20 - 10:20 CEST
Clubraum 2

Microsoft Intune, Cloud native

Session format Breakout session (60 min)
Subjects Endpoint Management, Autopilot, Conditional Access, Azure AD, Security, WUfB
Level Intermediate

09:20 CEST

No Country for Old Hackers: A Journey inside Passwordless Authentication with Passkey’s

Tuesday September 17, 2024 09:20 - 10:20 CEST

Clubraum 1

Think you know Passwordless Authentication? Well, think again. In this deep dive session, Join Microsoft MVP, Andy Malone as he takes you on a journey inside the next generation of Passwordless authentication using FIDO technologies. Now that FIDO keys have become virtual and can be deployed via any mobile device or desktop. Design to thwart hackers and ensure your digital world remains secure. With discussions, demos, tips and advice. Andy will walk you through all aspects of exactly what Passkey’s are, how they work and of course how to manage them.

Speakers

Andy Malone

Microsoft 365 Expert, Worldwide Speaker, YouTuber, Tech Instructor, Author, Quality Training Ltd

Andy Malone MVP, MCTWinning the coveted Microsoft Speaker Idol competition in 2006 catapulted Andy into a prestigious international speaking career. Today, Andy is not only a world class conference speaker but is also a renowned security & technology expert who has delivered ground-breaking... Read More →

No Country for Old Hackers A Journey inside Passwordless Authentication with Passkey’s pdf

Tuesday September 17, 2024 09:20 - 10:20 CEST
Clubraum 1

Security, Password-less

Session format Breakout session (60 min)
Subjects Security, Azure AD, Sentinel, Zero Trust
Level Intermediate

10:40 CEST

All the MDM hardening we Can(not) See

Tuesday September 17, 2024 10:40 - 11:40 CEST

Luzerner Saal

Engage in a comprehensive discussion on how we found out how Microsoft is hardening the MDM enrollment (Windows Enrollment Attestation) and which steps they took to do so.

We will take you on a Deep Dive (Level 1000 session) into the first steps of the Windows Enrollment Attestation process and explain how Microsoft created something magical! We will show you how it works from the inside and outside and why this is one of the biggest security improvements in Intune.

If you want to hear the details and what magic Microsoft implemented, make sure you are going to sign up for this session!

Speakers

Rudy Ooms

Microsoft MVP | Blogger, Patch My PC

Rudy Ooms works as a Content Creator Manager at Patch My PC as of June 2024. He utilizes his extensive IT experience to create and manage content, particularly focusing on Microsoft Intune, Windows Autopilot, and Endpoint Privilege Management (EPM).One of his hobbies (next to drinking... Read More →

Joost Gelijsteen

Solution Lead Workplace

Joost is a Solution Lead Workplace at Pinkelephant and Microsoft MVP Enterprise Mobility. He loves to share his knowledge with others and give them a different perspective based on hands-on experience.He helps customers, partners, and others to achieve more and empowers their Endpoint... Read More →

Tuesday September 17, 2024 10:40 - 11:40 CEST
Luzerner Saal

Microsoft Intune, Troubleshooting

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security
Level Expert

10:40 CEST

Defending endpoints like a pro: path to mastery

Tuesday September 17, 2024 10:40 - 11:40 CEST

Auditorium

Have you always wanted to understand the inner workings of Defender for Endpoint, to improve your troubleshooting skills or to help customers get successfully set up in their unique environment?

Join this session to gain a deeper understanding of Defender for Endpoint, how it works, what to keep an eye on and how to ensure smooth operation in a variety of environments. We will walk through architecture, deployment, portal setup and (security) operations as well as troubleshooting - giving you the tools you need to defend endpoints like a pro!

In addition, you will get a glimpse of where the product is heading in the future.

Speakers

Paul Huijbregts

Principal Product Manager, Microsoft

Paul works at Microsoft as a Principal Product Manager for Defender for Endpoint. As a seasoned technologist and a subject matter expert in endpoint and cloud security, he is always open to gathering feedback for the product, sharing knowledge and helping others to be successful... Read More →

Defender for Endpoint Huijbregts Defending Endpoints Tues pptx

Tuesday September 17, 2024 10:40 - 11:40 CEST
Auditorium

Security, Defender for Endpoint

Session format Breakout session (60 min)
Subjects Security, Windows Client OS, Endpoint Management, MicrosoftXDR
Level Expert
Area Microsoft

10:40 CEST

Terraform Provider for Microsoft 365

Tuesday September 17, 2024 10:40 - 11:40 CEST

Clubraum 1

Terraform is widely recognized as the dominant language for professional cloud configuration. It has become an essential tool for Azure, AWS, and Kubernetes projects, offering numerous advantages such as a readable declaration language, reliable state tracking for changes, robust auditing of all modifications through git, and automatic documentation of infrastructure.

Until now, Terraform has primarily focused on configuring cloud infrastructures and provided limited support for Entra ID. However, we are introducing a groundbreaking development: the Terraform Provider for Microsoft 365. This session provides an overview of this provider, which in it's first incarnation enables the configuration of almost all aspects of Intune. With support for Autopilot, Conditional Access, Configuration Profiles with Settings Catalog, Compliance Policies, and more, it opens up entirely new possibilities for Enterprise or MSP Tenant Management through Terraform.

Speakers

Christian Kanja

CEO, glueckkanja AG

Christian Kanja has been working with glueckkanja for more than 30 years, focusing on the technical possibilities to create the best possible working environment for companies and their employees through innovation. As co-founder of the German-based company, he is responsible for... Read More →

Ugur Koc

Microsoft MVP, Cloud Engineer, glueckkanja AG

With a robust background in IT and cybersecurity, I have developed my expertise through various roles. My career began as an IT Support Specialist, where I built a strong technical foundation. Progressing into the realm of IT security, I grew from an Analyst to an Administrator, gaining... Read More →

Steffen Schwerdtfeger

Enterprise Mobility Management | Microsoft 365 | Education #100PercentCloud #EMM

Tuesday September 17, 2024 10:40 - 11:40 CEST
Clubraum 1

Sponsor

Session format Platinum Sponsor
Subjects Microsoft Intune, Security, Azure AD, Autopilot, Conditional Access, Automation, Windows Client OS, Windows 365, Compliance, Linux, Apple (iOS/macOS)
Level Advanced

11:50 CEST

ControlUp - The Swiss Army Knife for managing DEX in Microsoft EUC environments

Tuesday September 17, 2024 11:50 - 12:10 CEST

Community stage

In the ControlUp session you will learn how you can gain the best in class end to end visibility for your Microsoft EUC environment from Azure, AVD to the physical client. One single pane of glass dashboard that allows you to manage, analyze and secure the digital employee experience of your users on any desktop, with any application and anywhere.

Speakers

Felix Alvarez

Sales Director CEMEA, ControlUp GmbH

Tuesday September 17, 2024 11:50 - 12:10 CEST
Community stage

Microsoft Intune

Session format Gold Sponsor
Subjects Microsoft Intune, Endpoint Management, Security, Windows 365, Endpoint Analytics, Automation, AVD, Compliance
Level Intermediate
Area Microsoft

12:40 CEST

Reimagine your security operations with a unified platform

Tuesday September 17, 2024 12:40 - 13:40 CEST

Luzerner Saal

Modern security teams use various tools like SIEM, XDR, SOAR, UEBA, exposure management, and threat intelligence. However, these tools generate a large number of alerts and security signals, making it difficult for security professionals to manage them efficiently. In this session, Ramya Chitrakar will discuss how a unified security operations platform can break down these silos with a seamless experience, allowing security admins and analysts to work more effectively to level up your company’s defenses and ultimately bring down your MTTR in the case of an attack.

Speakers

Ramya Chitrakar

Corporate Vice President - Microsoft Defender for Office 365, Microsoft Defender for Cloud Apps and Microsoft Defender for Identity, Microsoft

Ramya Chitrakar is Corporate Vice President for core Security products, including Microsoft Defender for Cloud Apps, Microsoft Defender for Office 365, and Microsoft Defender for Identity all part of Microsoft Threat Protection and drives product strategy and engineering execution... Read More →

Tuesday September 17, 2024 12:40 - 13:40 CEST
Luzerner Saal

Security, Keynote

Session format Keynote
Subjects Security, Sentinel, Zero Trust, MicrosoftXDR, Security Copilot
Level Intermediate
Area Microsoft

14:00 CEST

Taking automated protection to the next level: Attack Disruption 2.0

Tuesday September 17, 2024 14:00 - 15:00 CEST

Clubraum 1

Automatic attack disruption, offered by Microsoft’s Unified Security and Operations Platform, provides out-of-the-box protection to its customers.

In this session, we will update you on the current status, recent advancements, and future plans in the area of threat intelligence and data-science based disruption.

The talk will also include a technical deep-dive into a real-life incident.
We will conclude by showing what you need to do to maximize the benefit of this powerful capability.

Speakers

Hadar Feldman

XDR GPM, Microsoft

Tuesday September 17, 2024 14:00 - 15:00 CEST
Clubraum 1

Security, Attack Disruption

Session format Breakout session (60 min)
Subjects Security, Automation, MicrosoftXDR
Level Intermediate
Area Microsoft

15:20 CEST

AI for Next-Gen Security: OpenAI and Copilot for Security Synergy

Tuesday September 17, 2024 15:20 - 16:20 CEST

Clubraum 2

This demo-based session explores the potent collaboration between OpenAI and Copilot for Security.

Discover how the fusion of artificial intelligence is revolutionizing threat detection, response strategies, and proactive risk mitigation.

The session contains following topics:
- How AI used by attackers
- How Copilot for Security works
- Setting up security using with AI
- Detect threats with the AI-assistant
- Give a quick and informative AI-driven response
- A few words about licensing

Speakers

Sergey Chubarov

Ethical Hacker

AI WPNinja pptx

Tuesday September 17, 2024 15:20 - 16:20 CEST
Clubraum 2

Security, AI

Session format Breakout session (60 min)
Subjects Sentinel, Security, Security Copilot
Level Advanced

15:20 CEST

Kerberos is alive and kicking in the cloud

Tuesday September 17, 2024 15:20 - 16:20 CEST

Clubraum 1

Microsoft first introduced Kerberos as an authentication protocol in Windows 2000 Active Directory. Since then, many extensions to the protocol have been introduced to allow for constrained delegation, protocol translation and more. You may be surprised that Kerberos is still actively used in Microsoft Entra and solves several challenges, including SSO for hybrid users, hybrid user sign-ins using FIDO keys, Kerberos sign-in to Windows auth websites, and user authentication to cloud-hosted SMB file share.

Come to this session, and John Craddock will show you how Kerberos works and how Microsoft has implemented Kerberos in the cloud. This is packed with demos and insights that will allow you to troubleshoot your environments. Don't miss this session!

Speakers

John Craddock

Identity and security architect, XTSeminars Ltd

John has designed and implemented computing systems ranging from high-speed industrial controllers to distributed IT systems focusing on security and high availability. A key player in many IT projects for industry leaders, including Microsoft, the UK Government and multi-nationals... Read More →

Kerberos is alive and kicking in the cloud pdf

Tuesday September 17, 2024 15:20 - 16:20 CEST
Clubraum 1

Security, Identity

Session format Breakout session (60 min)
Subjects Security, Conditional Access, Zero Trust
Level Intermediate

15:20 CEST

Enrich Security: Simplify Your Azure Virtual Desktop Update Strategy!

Tuesday September 17, 2024 15:20 - 16:20 CEST

Deuxième

In today's rapidly evolving digital landscape, staying ahead with the latest updates is a must-have for maintaining a secure and efficient virtual desktop environment. Join Sander Rozemuller, Microsoft Security and Windows and Devices MVP in this session as he reveals a new feature revolutionizing Azure Virtual Desktop (AVD) management: host pool updates.

Sander will guide through this new feature that helps simplify updating your AVD environment. Discover how host pool updates work in detail and how to setup the configuration of host pool updates. Of course in this session, Sander with his automation first philosophy will show how to seamlessly integrate it into your existing automation strategies.
At last, Sander will top it all of where he also explain how to monitor for - and initiate updates.

Don't miss your chance to unlock the future of AVD management in this session.

Speakers

Sander Rozemuller

I'm living in The Netherlands in a little town called Geerdijk, in the east. I like to travel, run (athletics) and play around with new technology. I'm also blogging about Azure Virtual Desktop, Intune, Automation, and monitoring at rozemuller.com. Also creator of the Az.Avd PowerShell... Read More →

WPNinja2024 AVDUpdateStrategy pptx

Tuesday September 17, 2024 15:20 - 16:20 CEST
Deuxième

Windows 365 / AVD

Session format Breakout session (60 min)
Subjects AVD, Security, Automation
Level Advanced

16:40 CEST

Simplified Certificate Management with Microsoft Cloud PKI

Tuesday September 17, 2024 16:40 - 17:40 CEST

Clubraum 1

This session will introduce attendees to the new Microsoft Cloud PKI solution. Microsoft Cloud PKI is a cloud-based certificate services solution that significantly simplifies the deployment and management of client authentication certificates commonly used for Wi-Fi and VPN access. Cloud PKI eliminates the need for administrators to deploy complex on-premises infrastructure to support certificate authentication.

Speakers

Richard Hicks

President, Richard M. Hicks Consulting, Inc.

Simplified Certificate Management with Microsoft Cloud PKI pptx

Tuesday September 17, 2024 16:40 - 17:40 CEST
Clubraum 1

Microsoft Intune, Cloud PKI

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Compliance, Windows Client OS, Identity
Level Intermediate

16:40 CEST

The Art of Log Collection - Navigating the Many Paths to Log Analytics

Tuesday September 17, 2024 16:40 - 17:40 CEST

Auditorium

Collecting logs from Windows endpoints is a critical part of maintaining healthy and secure IT systems. However, there are many ways to collect logs, and choosing the right method can be a daunting task for your Cloud Native devices.

We'll explore various paths to seamlessly integrate your data into log analytics, from legacy HTTP Data Collector API to Azure Monitor Agent and new Log Ingestion API. We'll guide you through diverse options, explain when to use different methods, and discuss managing access to log data and retention policies.

We will show how to Migrate from Data Collector API and custom fields-enabled tables to DCR-based custom log collection

We will also discuss best practices for log collection and manage log retention policies.

Speakers

Jan Ketil Skanke

MVP Security, Principal Cloud Architect, COO, CloudWay

Jan Ketil has been an Microsoft MVP since 2016 and are working as a COO and Principal Cloud Architect at CloudWay in Norway. He has been working in the industry for Microsoft Partners and Microsoft for more than 20 years. He loves to speak about anything around Endpoint Management... Read More →

Sandy Zeng

Microsoft MVP | Senior Cloud Architect, CloudWay

Sandy is an experienced Information Technology Specialist for over 10 years. Skilled in Microsoft Endpoint Manager (ConfigMgr and Intune), Windows 10, and security. Sandy's interests are mostly related to Microsoft Technologies, she is passionate about learning new skill sets to improve... Read More →

The Art of Log Collection Navigating the Many Paths to Log Analytics pdf

Tuesday September 17, 2024 16:40 - 17:40 CEST
Auditorium

Microsoft Intune, Reporting&Logging

Session format Breakout session (60 min)
Subjects Microsoft Intune, Security, Windows Client OS
Level Advanced

16:40 CEST

Improve your resilience with cybersecurity table-top exercises

Tuesday September 17, 2024 16:40 - 17:40 CEST

Clubraum 2

This session will provide a comprehensive introduction to tabletop cybersecurity exercises, focusing on their importance, design, and execution. Participants will gain insights into the benefits of conducting tabletop exercises, including improved incident response readiness, enhanced communication and coordination among stakeholders, and identification of gaps in policies and procedures. Practical guidance will be provided on structuring exercises to align with organizational objectives, selecting relevant scenarios, and engaging participants effectively.

Speakers

Stefan Schörling

Security and Infra Geek - Onevinn AB, Onevinn

Stefan Schörling has over 25 years of experience from working with Cybersecurity.Today Stefan is helping customers to be successful with implementing and adopting Cloud Security with a focus on Azure and Microsoft 365.For the last 15+ years he has been awarded as a Microsoft MVP... Read More →

Mattias Borg

Cyber Security Geek, Mattias Borg

Incident Response Specialist with focus on Threat hunting in the Microsoft defense stack.Cyber Security consultant and Threat HunterResearching vulnerabilities when not working for customers.MSRC Security Research Acknowledgement (2018,2022,2023)CVE-2022-26788Speaker:Teamsdagen 2023... Read More →

WP Improve your resillience with cybersecurity tabletop exercises pdf

Tuesday September 17, 2024 16:40 - 17:40 CEST
Clubraum 2

Security

Session format Breakout session (60 min)
Subjects Security
Level Intermediate

17:45 CEST

Security AMA Session with Product Groups

Tuesday September 17, 2024 17:45 - 18:45 CEST

Clubraum 1

Join us for an interactive "Ask Me Anything" (AMA) session with leading cybersecurity experts. This unique opportunity allows attendees to engage directly with industry veterans and pioneers in cybersecurity. Whether you have questions about the latest cyber threats, strategies for building resilient security architectures, insights into threat intelligence, or any other security-related topics, our panel is here to provide valuable answers and insights. Bring your toughest questions and join a dynamic discussion designed to enhance your understanding and knowledge in the ever-evolving field of cybersecurity.

Speakers

Maayan Bar-Niv

General Manager, Defender for Cloud Apps, Microsoft

Sumit Malhotra

Group Product Manager, Microsoft

Martin Schvartzman

Principal Product Manager, Microsoft

Martin is a Principal Product Manager in the Microsoft Defender for Identity team. Has over 20 years of experience in the technology industry, primarily around IT and Cyber Security with vast knowledge of Cloud Services. Martin is passionate about technology and innovation, and he... Read More →

Lior Arviv

Senior Product Manager, Microsoft

Lior Arviv is a Senior Product Manager on the Defender for Cloud team, with over 15 years of experience in Microsoft technologies, particularly in cloud services and security. Passionate about innovation, Lior is dedicated to developing products that simplify complex challenges and... Read More →

Ran Marom

Group Product Manager, Microsoft

Ran is the group product manager for Microsoft Defender for Cloud Apps, previously to Microsoft Ran was leading security products in different domains such as cloud-native and network security

Girish Chander

General Manager, Microsoft

Paul Huijbregts

Principal Product Manager, Microsoft

Hadar Feldman

XDR GPM, Microsoft

WP Ninja Summit Staff

Alex Benoit

Head of Moscow Mule, water baby

Tuesday September 17, 2024 17:45 - 18:45 CEST
Clubraum 1

Session format Breakout session (60 min)
Subjects Security
Level Intermediate

08:00 CEST

Everything you need to know about Microsoft's new Defender for Identity sensor

Wednesday September 18, 2024 08:00 - 09:00 CEST

Clubraum 1

In this session we will dive into the new Defender for Identity sensor, why it is being built, how the different components work, and what the future holds.

Speakers

Martin Schvartzman

Principal Product Manager, Microsoft

New MDI Sensor Martin Schvartzman Day 3 pdf

Wednesday September 18, 2024 08:00 - 09:00 CEST
Clubraum 1

Security, Defender for Identity

Session format Breakout session (60 min)
Subjects Identity, MicrosoftXDR, Security
Level Expert
Area Microsoft

08:00 CEST

How to improve security for your Cloud PC users

Wednesday September 18, 2024 08:00 - 09:00 CEST

Deuxième

In this session we will talk about how you can improve the security of Windows 365 and Cloud PCs without making it to hard for the end-user to use.

Speakers

Ola Ström

Chief Technical Architect, Advania Knowledge Factory

Hello! I’m a Chief Technical Architect and Practice Lead within Modern Work at Advania Knowledge Factory and I’ve spent over a decade architecting the future of cloud and device management. My journey has been fueled by a relentless pursuit of simplicity in technology, ensuring... Read More →

Dominiek Verham

Blogger | Author | Public speaker | Loving tech and F1

How to improve security for your Cloud PC users Final pdf

Wednesday September 18, 2024 08:00 - 09:00 CEST
Deuxième

Windows 365 / AVD, Security

Session format Breakout session (60 min)
Subjects Microsoft Intune, Security, Conditional Access, Windows 365
Level Advanced

09:20 CEST

Troubleshooting Modern Authentication Protocols – OAuth 2.0 & OpenID Connect

Wednesday September 18, 2024 09:20 - 10:20 CEST

Clubraum 1

If you have been working with claims-aware apps, you may have experience with WS-Federation and SAML. As we move into a new era of authentication and delegation, the modern authentication protocols OpenID Connect and OAuth 2.0 are becoming predominant. Giving us seamless authentication with perhaps SSO when it all works, but what if it doesn’t, do you know how to troubleshoot?
Come to this deep-dive session with John Craddock, and he will share his extensive real-world experience. You will learn how to rapidly troubleshoot issues and identify the source of the problem whether it be an application issue or as the result of a misconfigured identity provider (IdP). You will discover how to troubleshooting with Entra ID as the IdPs. The session is packed with demos, the session will be high on the geek meter scale and shouldn’t be missed.

Speakers

John Craddock

Identity and security architect, XTSeminars Ltd

Troubleshooting OpenID Connect and OAuth2.0 pdf

Wednesday September 18, 2024 09:20 - 10:20 CEST
Clubraum 1

Security, Identity

Session format Breakout session (60 min)
Subjects Security, Identity, Zero Trust
Level Advanced

09:20 CEST

Empowering Cloud Endpoint Security with AVD and Confidential VMs

Wednesday September 18, 2024 09:20 - 10:20 CEST

Deuxième

These days, we live in a world with an increasing number of cyber threats and data breaches, so ensuring the safeguarding of sensitive information within virtual environments has become imperative.

During this session, Micha and Wim will delve into the realm of cloud security, specifically focusing on Azure Virtual Desktop (AVD) and its integration with Confidential Virtual Machines (VMs).

You will not only gain insights into how confidential VMs amplify protection through the utilization of hardware-based encryption and secure enclaves. But also get some real-world examples, along with practical tips, tricks, and notes from the field.

So join them as they unlock the potential of confidential VMs, empowering your organization to confidently manage AVD workloads with enhanced security and resilience.

Speakers

Micha Wets

Owner, Azure Architect, Cloud.Architect BV

As a Microsoft MVP, Micha enjoys talking about all Azure & Powershell topics and has already spoken at Microsoft conferences, International User Group events, Microsoft hosted webinars & Workshops and more.He has over 15 years of experience as a DevOps engineer and has in depth knowledge... Read More →

Wim Matthyssen

Microsoft Azure MVP | MCT | Azure Technical Advisor

Wim is an Azure Technical Advisor and Trainer with over fifteen years of Microsoft technology expertise who specializes in helping companies transition to the Cloud.Wim is also a Microsoft MVP in the Azure category, a founding board member of the MC2MC user group, and an active community... Read More →

Empowering Cloud Endpoint Security withAVD pdf

Wednesday September 18, 2024 09:20 - 10:20 CEST
Deuxième

Windows 365 / AVD, Security

Session format Breakout session (60 min)
Subjects AVD, Security
Level Advanced

10:40 CEST

100 Solutions, 1 Strategy: Unveiling Your Epic Modern Workplace Adventure!

Wednesday September 18, 2024 10:40 - 11:40 CEST

Luzerner Saal

Step into the ultimate workplace adventure where classic meets cutting-edge! In this dynamic session, we'll embark on a journey through time and technology, blending traditional workplace management with the innovative realms of Microsoft Zero Trust and Identity Management. From the tried-and-true methods of yesteryears to the futuristic landscapes of digital security, we'll explore how to weave together the best of both worlds. Join us to uncover strategies for building a resilient, adaptable, and secure workplace environment that stands the test of time and technology.

Speakers

Kim Heyrman

Consultant, OB-V-US

Modern workplace IT consultant @itsobvus

Kenny Buntinx

CEO, OB-V-US

Kenny is a highly qualified , certified and energized consultant working for OB-V-US Benelux with more than 20 years of experience and strives to always deliver high quality when managing and delivering projects. He has a strong focus on the Microsoft Cloud product family and is an... Read More →

wp ninja 24 100 Solutions, 1 Strategy Unveiling Your Epic Modern Workplace Adventure v2 pdf

Wednesday September 18, 2024 10:40 - 11:40 CEST
Luzerner Saal

Microsoft Intune, Transition to modern

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, AVD, Azure AD, Autopilot, Conditional Access, Windows 365, Windows Client OS, Apple (iOS/macOS), Zero Trust, Configuration Manager
Level Intermediate

10:40 CEST

Managing security like a pro: the less technical side of cyber security.

Wednesday September 18, 2024 10:40 - 11:40 CEST

Clubraum 2

It is not easy to keep up when both cyber security threats and products evolve at light speed. Throw into the mix cyber security insurance and increased regulations, and you get a potentially explosive cocktail that requires just a little more than configuring a few security products. In this session, Michael will guide you through how to create, maintain and implement a security strategy that will help you do the right thing at the right time.

Speakers

Michael Van Horenbeeck

CEO, The Collective

Michael Van Horenbeeck is an expert in Cloud Security, Compliance, and Identity Management, holding both the Microsoft Certified Solutions Master (MCSM) certification and the Microsoft Most Valuable Professional for Security (MVP) award simultaneously.As CEO and Sr. Architect at The... Read More →

Wednesday September 18, 2024 10:40 - 11:40 CEST
Clubraum 2

Security

Session format Breakout session (60 min)
Subjects Security
Level Intermediate

10:40 CEST

Zero Trust - Dope or Nope?

Wednesday September 18, 2024 10:40 - 11:40 CEST

Auditorium

Zero Trust must be the worst name in the history of Security. But is it just a bad name? Does it really offer worthwhile goals or is it an overkill? I hear sales pitches for it, like for many other security solutions, that concentrate on "What we can't allow anymore because of changed security landscape" all the time. Why does security have to be so negative? A well done Zero Trust environment gives you "the ability to work as efficiently and securely, whether you are sitting in Starbucks or the corporate office" - Which I believe most of us want. Come and listen to this talk about rights and wrongs of how to achieve Zero Trust and how keep Security as what it's meant to be - a support function for a happy workforce.

Speakers

Sami Laiho

Chief Research Officer, Matti Laiho Oy

Sami Laiho Zero Trust Dope or Nope pdf

Wednesday September 18, 2024 10:40 - 11:40 CEST
Auditorium

Security

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Conditional Access, Sentinel, Windows 365, Identity, MicrosoftXDR, Zero Trust
Level Intermediate

12:15 CEST

Tips and Tricks from a baseVISION Security Engineer

Wednesday September 18, 2024 12:15 - 12:35 CEST

Community stage

Have you ever wondered what it is like to be a Security Engineer at baseVISION? In this session, sponsored by baseVISION, I'll show you how the company enables me to deliver the best service to my customers. I'll also cover a technical part where I'll talk about a current customer security project I'm working on. This will give you an insight into my daily life and I’ll also share some practical tips and tricks around my work.

Speakers

Loris Ambrozzo

Senior Security Engineer, baseVISION AG

Loris is a Senior Security Engineer at baseVISION AG, where he supports customers in improving the security posture of their environments. He's interested in various security and identity topics such as Microsoft Defender XDR, Microsoft Entra and Microsoft Sentinel.

TipsAndTricksFromAbaseVISIONSecurityEngineer pptx

Wednesday September 18, 2024 12:15 - 12:35 CEST
Community stage

Sponsor

Session format Gold Sponsor
Subjects Security, Sentinel, MicrosoftXDR, Security Copilot, Identity, Azure AD, Conditional Access
Level Intermediate

12:40 CEST

Keynote: The future of Windows, AI, and the Cloud

Wednesday September 18, 2024 12:40 - 13:40 CEST

Luzerner Saal

Christiaan from Microsoft is back and will take you down memory lane and into the future and share how Windows is moving to the Cloud and how progressive AI will change the way how you have been using and configuring Windows via Copilot for Windows and Security.

This session will be demo-rich and a real showcase how Cloud Computing and Cloud native management via Microsoft Intune is coming together!

Speakers

Christiaan Brinkhoff

Principal PM and Community Lead, Windows 365 + AVD, Microsoft

Christiaan Brinkhoff works as a Principal Program Manager and Community Lead for Windows 365 and AVD at Microsoft, In his role at Microsoft, he works on features such as Windows 365 app, Switch and Boot. His mission is to drive innovation while bringing Windows 365, Windows, and Microsoft... Read More →

Scott Manchester

Vice President, Windows 365 and Azure Virtual Desktop, Microsoft

Scott Manchester is the Vice President of Program Management for Windows Cloud Experience. He is a 24 year veteran at Microsoft where he has led the development of Windows 365, Azure Virtual Desktop, Remote Desktop Service, Second Screen Remoting, Multimedia, and Networking technologies... Read More →

Windows Cloud 2024 Keynote Microsoft pdf

Wednesday September 18, 2024 12:40 - 13:40 CEST
Luzerner Saal

Windows 365 / AVD, Keynote

Session format Keynote
Subjects Microsoft Intune, Security, Windows 365, Security Copilot, Conditional Access, Windows Client OS, Endpoint Analytics, Endpoint Management, Copilot
Level Advanced
Area Microsoft

14:00 CEST

Entra Suite deep dive

Wednesday September 18, 2024 14:00 - 15:00 CEST

Clubraum 2

Learn how to securely manage your Identity and remote access across the enterprise, from private resources to Internet ones

Speakers

Peter Lenzke

Sen. Product Manager, Microsoft Corp.

Working in IT for 15+ years and for the last 12 years at Microsoft. Being a Program Manager in the identity division making Entra better every day.

Security Lenzke EntraSuite deepdive Wednesday pptx

Wednesday September 18, 2024 14:00 - 15:00 CEST
Clubraum 2

Security, Identity

Session format Breakout session (60 min)
Subjects Identity, Security, Conditional Access
Level Intermediate

14:00 CEST

Exceptional Detections in Your Microsoft Security Stack

Wednesday September 18, 2024 14:00 - 15:00 CEST

Clubraum 1

In session where we learn the fundamental concepts of detection engineering and receive guidance on creating the best detections in your Microsoft Security stack

Speakers

Gianni Castaldi

Kustoking and NinjaCat, KustoWorks

Gianni Castaldi is a NinjaCat @ KustoWorks, he started in IT in 2008 and in cybersecurity since 2017. His blogs can be read at kustoking.com and on medium.com/@giannicastaldiHe spends most of his time securing companies with the Microsoft Security Stack, Palo Alto Networks, and Tenable... Read More →

Creating exceptional security detections within Your Microsoft Security stack pdf

Wednesday September 18, 2024 14:00 - 15:00 CEST
Clubraum 1

Security

Session format Breakout session (60 min)
Subjects Security, Sentinel, MicrosoftXDR
Level Advanced

14:00 CEST

Up Close with Patch My PC

Wednesday September 18, 2024 14:00 - 15:00 CEST

Deuxième

Join our hands-on demo tailored for IT professionals. Learn how to smoothly update and package over 1500 third-party applications using Microsoft ConfigMgr and Intune. Don’t miss our "Custom Apps" feature, which ensures seamless integration of your line of business applications with Patch My PC.

Speakers

David James

VP, Engineering, Patch My PC

David James is the VP of engineering at Patch My PC and runs their engineering operations. He was previously the director of engineering at Microsoft for MEMCM. A short bio stolen from another site:Studied Computer Engineering and Music Theory/Composition at University of Utah.Joined... Read More →

Wout Vergauwen

Director of Product, Cloud, Patch My PC

Wout makes software and patches apps and other stuff. Irresponsible driver and Duvel-lover.

John Quirk

Director of Product, Reporting, Patch My PC

John has nearly 30 year's experience with Microsoft systems management beginning with SMS 1.2. He was the founder of Apajove and oversaw the creation of Callisto, which has now become Patch My PC Advanced Insights Dashboard Portal. John currently works as Director of Development for... Read More →

Wednesday September 18, 2024 14:00 - 15:00 CEST
Deuxième

Sponsor

Session format Platinum Sponsor
Subjects Microsoft Intune, Configuration Manager, Security, Endpoint Management
Level Intermediate

15:05 CEST

Microsoft MVP Program Unleashed!

Wednesday September 18, 2024 15:05 - 15:20 CEST

Community stage

You've seen some of your peers, colleagues and acquaintances become Microsoft MVP and have been wondering how you can be part if this esteem group of IT Professionals.

In this session, Harjit and Christiaan, former Microsoft MVPs and now with Microsoft who work on the MVP program, will share real world experiences and insights on how to become a Microsoft MVP, the benefits, the challenges, the pros and cons, and much much more. This is a session to get under the hood on becoming a Microsoft MVP.

Speakers

Harjit Dhaliwal

Senior Product Marketing Manager, Microsoft

Harjit Dhaliwal is a Senior Product Marketing Manager for Cloud Endpoints at Microsoft. Previously, he was a Customer Engineer at Microsoft where he focused on Modern Management solutions in the Microsoft 365 space to advocate and empower every person and company to achieve more... Read More →

Christiaan Brinkhoff

Principal PM and Community Lead, Windows 365 + AVD, Microsoft

Wednesday September 18, 2024 15:05 - 15:20 CEST
Community stage

Community

Session format Community
Subjects Endpoint Management, Microsoft Intune, Security, AVD, Azure AD, Autopilot, Windows 365, Windows Client OS, Configuration Manager
Level Intermediate
Area Microsoft

15:20 CEST

Conditional Access, from basic to advanced: Part 1, basic scenarios

Wednesday September 18, 2024 15:20 - 16:20 CEST

Clubraum 1

This session, which is part 1 of a 2 part workshop, Kenneth van Surksum will take your Microsoft Entra Conditional Access knowledge from basic to advanced. In part 1, we will go through the basics of designing and implementing Conditional Access. Kenneth will explain what Conditional Access is, how to create your own Conditional Access policies and will share his best practices based on years of experience implementing Conditional Acces at many customers. Kenneth will share his basic set of Conditional Access policies, to give you a head start for your own Conditional Access implementation.

Speakers

Kenneth van Surksum

Modern Workplace Consultant, Secure At Work

As a Microsoft 365 Modern Workplace consultant I help customers implement modern workplace solutions based on top of theirMicrosoft 365 licensing, leveraging products like Microsoft Intune, Microsoft Entra, Microsoft Defender, Exchange Online, Microsoft Teams, Microsoft SharePoint... Read More →

WPNinjaSummit2024 Conditional Access implementation from basic to advanced part 1 the basics sched pdf

Wednesday September 18, 2024 15:20 - 16:20 CEST
Clubraum 1

Security, Conditional Access

Session format Breakout session (60 min)
Subjects Security, Azure AD, Compliance, Microsoft Intune
Level Advanced

16:40 CEST

Conditional Access, from basic to advanced: Part 2, advanced scenarios

Wednesday September 18, 2024 16:40 - 17:40 CEST

Clubraum 1

This session, which is part 1 of a 2 part workshop, Kenneth van Surksum will take your Microsoft Entra Conditional Access knowledge from basic to advanced. In part 2, we will go through the advanced scenarios you can implement with Conditional Access allowing you to take your Conditional Access policies one step further. Kenneth will talk about integrating Conditional Access with Microsoft Defender for Cloud Apps and Microsoft Purview, but will also explain how to leverage Authentication Context, Authentication Strength, Authentication Flow, Filters and more.

Speakers

Kenneth van Surksum

Modern Workplace Consultant, Secure At Work

WPNinjaSummit2024 Conditional Access implementation from basic to advanced part 2 advanced scenarios sched pdf

Admin Step UP MFA Authentication Strength mp4

Wednesday September 18, 2024 16:40 - 17:40 CEST
Clubraum 1

Security, Conditional Access

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Azure AD, Conditional Access, Identity, Windows Client OS, Zero Trust
Level Expert

16:40 CEST

Deep Dive into Multi-Cloud Security with Microsoft Defender for Cloud

Wednesday September 18, 2024 16:40 - 17:40 CEST

Clubraum 2

Learn how to transition from a siloed approach to a cohesive, risk-based cloud security model. This session covers the complete security lifecycle, from posture management to workload protection, across multi-cloud environments. Discover how CNAPP helps Microsoft protect against multi-vector attacks and ensures end-to-end security through the SDLC and runtime. Join this demo session to explore the latest CNAPP use cases and scenarios, and the integration of XDR and exposure management with Microsoft Defender for Cloud.

Speakers

Lior Arviv

Senior Product Manager, Microsoft

MDC Arviv Multi Cloud Security Day 3 pdf

Wednesday September 18, 2024 16:40 - 17:40 CEST
Clubraum 2

Security, Defender for Cloud

Session format Breakout session (60 min)
Subjects Security
Level Advanced
Area Microsoft

17:45 CEST

Microsoft Ask Me Anything - Microsoft Leadership

Wednesday September 18, 2024 17:45 - 19:00 CEST

Luzerner Saal

Come ask Microsoft leadership all of your questions

Speakers

Sumit Malhotra

Group Product Manager, Microsoft

Martin Schvartzman

Principal Product Manager, Microsoft

Lior Arviv

Senior Product Manager, Microsoft

Ran Marom

Group Product Manager, Microsoft

Ran is the group product manager for Microsoft Defender for Cloud Apps, previously to Microsoft Ran was leading security products in different domains such as cloud-native and network security

Talal Alqinawi

SR Director, Microsoft

Talal Alqinawi is a seasoned executive leader specializing in cloud marketing and product strategy. With over 22 years at Microsoft, Talal has a proven track record in driving digital transformation through SaaS/IaaS cloud solutions, sales models, marketing & GTM strategy, and business... Read More →

Lior Bela

Bringing the Spark to Endpoint Managment, Microsoft

Lior is the Director of Intune with focus on business growth, customer & partner relationships, and the owner of the Intune MVP community

Scott Manchester

Vice President, Windows 365 and Azure Virtual Desktop, Microsoft

Jeff Pinkston

Vice President, Management Engineering, Microsoft

I am Jeff Pinkston, and most people at Microsoft call me by my nickname - Pinky. I am the Vice President of Engineering for the Management team for SCCM and Intune. I love talking to customers to learn where we can do better, and then making that happen. Personally, I love the outdoors... Read More →

Stefan Kinnestrand

Vice President, Cloud Endpoint Microsoft, Microsoft

Stefan Kinnestrand is the leader of the marketing and GTM strategy for Cloud Endpoints, which aims to advance and transform commercial end user computing for all information and frontline workers. His team oversees Windows Commercial (Windows Client, Windows 365 & Azure Virtual Desktop... Read More →

Brett Flegg

Partner Software Architect, Microsoft

Brett is a software architect and tech blogger who has spent the last two decades building tools and services that enable enterprises to get the most out of their IT infrastructure. The software he has developed (System Center Configuration Manager, Microsoft Endpoint Manager Intune... Read More →

Wednesday September 18, 2024 17:45 - 19:00 CEST
Luzerner Saal

General, AMA

Session format AMA
Subjects Microsoft Intune, Security, Azure AD, AVD, Copilot, Windows 365, Windows Client OS, Compliance, Configuration Manager, Linux, Apple (iOS/macOS), Automation, ChromeOS, Identity, Conditional Access, Endpoint Analytics, Autopilot, Sentinel, MicrosoftXDR, Pac
Level Advanced

08:00 CEST

Unleashing the Power of Microsoft Intune Community Tools

Thursday September 19, 2024 08:00 - 09:00 CEST

Auditorium

Unlock the full potential of Microsoft Intune with the help of the community! Join us for a demo-heavy session where we showcase the best and newest tools available in the Microsoft Intune community. From automating tasks to troubleshooting, these tools will make your life as an Intune admin easier and save you valuable time. Don't miss out on this opportunity to discover hidden gems in the community and elevate your Intune management game.

Speakers

Ronni Pedersen

Senior Cloud Architect, APENTO

Ronni is working as a Senior Cloud Architect in Denmark. He has been working as a consultant since 1997 with a primary focus on Enterprise Client Management solutions, based on technologies like Microsoft Intune, Microsoft Configuration Manager, Enterprise Mobility + Security (EMS... Read More →

Jörgen Nilsson

Trusted Security Advisor | Microsoft MVP, Onevinn AB

Jorgen is working as a principal consultant at Onevinn in Sweden. He has been working as a consultant since 1993 with a focus on Enterprise Client Management and System Management. Involved in many projects and also a Microsoft Certified Trainer, Microsoft Security MVP and deliver... Read More →

Unleasing the power of Intune community tools pdf

Thursday September 19, 2024 08:00 - 09:00 CEST
Auditorium

Microsoft Intune, Community

Session format Breakout session (60 min)
Subjects Endpoint Management, Microsoft Intune, Security, Windows Client OS, Endpoint Analytics, WUfB
Level Advanced

08:00 CEST

Entra Private Access deep dive

Thursday September 19, 2024 08:00 - 09:00 CEST

Clubraum 1

Learn in depth about Entra Private Access integration with Entra ID for Zero-trust VPN replacement and on prem MFA capabilities

Speakers

Peter Lenzke

Sen. Product Manager, Microsoft Corp.

Working in IT for 15+ years and for the last 12 years at Microsoft. Being a Program Manager in the identity division making Entra better every day.

Security Lenzke Entraprivateaccess deepdive Thursday no videos pptx

Thursday September 19, 2024 08:00 - 09:00 CEST
Clubraum 1

Security, Private Access

Session format Breakout session (60 min)
Subjects Security, Identity, Zero Trust
Level Advanced

09:20 CEST

Most common misconfigurations identified during our Red Team engagements

Thursday September 19, 2024 09:20 - 10:20 CEST

Clubraum 1

Explore prevalent misconfigurations uncovered in red team engagements and learn how to mitigate them. Gain practical insights into identifying and addressing vulnerabilities to strengthen your organization's defenses against cyber threats.

This session offers valuable insights into fortifying your defenses against sophisticated adversaries

Speakers

Stefan Schörling

Security and Infra Geek - Onevinn AB, Onevinn

Mattias Borg

Cyber Security Geek, Mattias Borg

WP Most common misconfiguration identified during our Red Team engagements upload pdf

Thursday September 19, 2024 09:20 - 10:20 CEST
Clubraum 1

Security, Tips

Session format Breakout session (60 min)
Subjects Windows Client OS, Security, Identity
Level Intermediate

10:40 CEST

Redefining the future of Windows in the Cloud with new like-local experiences

Thursday September 19, 2024 10:40 - 11:40 CEST

Deuxième

Learn from the Windows Cloud engineering group how next-gen end-user experiences define the future of Windows + AI and we deliver new like-local experiences for end-users. This session will primarily focus on the end-user via new Windows integrations, AI / Copilot features and protocol enhancements. You do not want to miss this session.

Speakers

Christiaan Brinkhoff

Principal PM and Community Lead, Windows 365 + AVD, Microsoft

Phil Gerity

Partner Group Product Manager @ Microsoft | Leader | Maker | Author, Microsoft

Phil has built his career on tackling complex problems by designing innovative products and business models. His experience spans three separate startups at Microsoft, and one pre-IPO startup at Smartsheet. Phil leads end user experiences for Windows 365 and Azure Virtual Desktop... Read More →

Redefining the future of Windows in the Cloud with new like local experiences pdf

Thursday September 19, 2024 10:40 - 11:40 CEST
Deuxième

Windows 365 / AVD, Copilot

Session format Breakout session (60 min)
Subjects Microsoft Intune, AVD, Windows 365, Identity, Windows Client OS, Security, Endpoint Management
Level Advanced
Area Microsoft

11:50 CEST

Reactive to Proactive: Key Steps to Autonomous Patch Vulnerabilities with Defender for Endpoint

Thursday September 19, 2024 11:50 - 12:10 CEST

Community stage

With 26,447 known vulnerabilities cataloged in 2023 and 25% of high-risk vulnerabilities exploited on the day of publication, it's clear that the severity and pace of exploitation is only increasing. It's time to make the shift from reactive to proactive. In this session, Andy McDonald, Director of Support and Solutions at Adaptiva, will share five key steps to proactively remediate endpoint vulnerabilities. As adversaries continue to target organizations at a rapid pace, the combination of Microsoft Defender and Adaptiva’s OneSite Patch gives IT and security teams the ability to eliminate threats across endpoints at scale.

Speakers

Andy McDonald

Director of Solutions and Support, Adaptiva

Andy is the Director of Solutions and Support at Adaptiva where he is pivotal member of the EMEA leadership team. He brings over two decades of technology experience to Adaptiva including key roles at some of the largest global financial institutions in the world. Andy serves as a... Read More →

Thursday September 19, 2024 11:50 - 12:10 CEST
Community stage

Sponsor

Session format Gold Sponsor
Subjects Endpoint Management, Security, Automation, Endpoint Analytics, Compliance, Configuration Manager
Level Intermediate

12:40 CEST

Intune MAM, Conditional Access, actual scenarios and the clown fiesta!

Thursday September 19, 2024 12:40 - 13:40 CEST

Luzerner Saal

We'll dive deep into Intune Mobile Application Management as part of Microsoft Endpoint Manager. We'll go thru the diverse landscape that explain certain identify driven MAM scenarios and their potential issues that drove us nuts. Of course a big part of this is conditional access driven and we will discuss all practical
blockers and workarounds when it goes south.

This session will be focusing specifically on the use case issues and workarounds , less on the theoretical part of Intune mam & CA

Speakers

Kim Heyrman

Consultant, OB-V-US

Modern workplace IT consultant @itsobvus

Kenny Buntinx

CEO, OB-V-US

Thursday September 19, 2024 12:40 - 13:40 CEST
Luzerner Saal

Microsoft Intune, Mobile

Session format Breakout session (60 min)
Subjects Microsoft Intune, Endpoint Management, Apple (iOS/macOS), Conditional Access, Security, Identity
Level Intermediate

12:40 CEST

One Year of Fighting Adversary-in-the-Middle, notes from the field

Thursday September 19, 2024 12:40 - 13:40 CEST

Clubraum 2

Last 1,5 year we were faced with a new advanced phishing technique, called adversary-in-the-middle. This is an advanced method to bypass multiple forms of MFA.

In this session Kenneth and Erik we do a deep dive into this topic.

First of alll we start with a small demo of the AiTM case

Then we will go through our options to fight this by using differente strategies like implementing phising resistant MFA methodes or using simple Conditional Access policies, or advanced Entra ID P2 Protection methods.

After this session you will have enough information to stop this attack in several ways each with it's own advangtages and drawbacks.

Speakers

Erik Loef

CTO, Proxsys

CTO, MSc, CEH, MVP

Kenneth van Surksum

Modern Workplace Consultant, Secure At Work

WPNinja Summit 24 One year of fighting adversary in the middle notes from the field sched pdf

Thursday September 19, 2024 12:40 - 13:40 CEST
Clubraum 2

Security

Session format Breakout session (60 min)
Subjects Security, Conditional Access, Identity, Zero Trust
Level Advanced

12:40 CEST

Securing your Entra Identities in 2024

Thursday September 19, 2024 12:40 - 13:40 CEST

Clubraum 1

Security of your identities is crucial in the cloud. With Microsoft 365 we have many options and tools to make sure our identities can stay as secure as possible while at the same time we keep our users productive. Your identity is also what defines what and how you can access your resources in the cloud.

Learn how to protect both your standard users and all the privileged accounts in Entra ID.

Join in on a journey from password strategies, authentication methods, identity protection, privileged identity management, conditional access all the way over to a password-less world.

Speakers

Jan Ketil Skanke

MVP Security, Principal Cloud Architect, COO, CloudWay

Maurice Daly

Microsoft MVP, Principal Cloud Architect, CloudWay

Maurice has been working in the IT industry for the past 20 years. His focus is around the areas of Windows deployment, device management, Azure AD and secure productivity, Maurice has been an MCSE since 2008 and was awarded his first MVP award in the area of Enterprise Mobility in... Read More →

SecuringEntraIdentities2024 WPNinja pdf

Thursday September 19, 2024 12:40 - 13:40 CEST
Clubraum 1

Security, Identity

Session format Breakout session (60 min)
Subjects Identity, Security, Azure AD
Level Advanced

14:00 CEST

Mastering Microsoft XDR: What is new in 2024?

Thursday September 19, 2024 14:00 - 15:00 CEST

Clubraum 2

Let's delve into the advanced capabilities and technical nuances of the Defender XDR stack, Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Office, Microsoft Defender for Cloud Apps, Microsoft Defender for Cloud, and the integration with Microsoft Sentinel. This technical session, tailored for cybersecurity professionals and IT practitioners, will provide an in-depth exploration of the latest features and enhancements across the Defender XDR suite as of 2024. From endpoint protection to cloud security, threat intelligence to incident response orchestration, this session will equip you with the knowledge and insights needed to harness the full power of the Defender XDR stack in defending against modern cyber threats.

Speakers

Gianni Castaldi

Kustoking and NinjaCat, KustoWorks

Mastering Microsoft XDR What is new in 2024 pptx

Thursday September 19, 2024 14:00 - 15:00 CEST
Clubraum 2

Security, What's new

Session format Breakout session (60 min)
Subjects Security, MicrosoftXDR
Level Intermediate

14:00 CEST

Seeing Through Data: A Purview into AI-Controlled Workflows

Thursday September 19, 2024 14:00 - 15:00 CEST

Clubraum 1

In today’s data-driven landscape, the ability to effectively manage and control data flows is crucial. "Seeing Through Data: A Purview into AI-Controlled Workflows" is a session designed to unlock the potential of AI within the realm of data management, using Microsoft Purview as a pivotal tool. Attendees will embark on an exploration of the AI Hub in Purview, gaining valuable insights into the integration and control of data across various platforms.

Speakers

Lothar Zeitler

Senior Product Manager, Microsoft

I am Senior Product Manager for Microsoft Purview. I am driving DLP and Data Security and working closely together with our Enterprise customers across EMEA.

Thursday September 19, 2024 14:00 - 15:00 CEST
Clubraum 1

Security

Session format Breakout session (60 min)
Subjects Security
Level Intermediate
Area Microsoft

14:00 CEST

Azure Firewall and Virtual Desktops - Better Together

Thursday September 19, 2024 14:00 - 15:00 CEST

Deuxième

Securing and monitoring network traffic for Azure Virtual Desktop and Windows 365 is an often overlooked but important topic to meet network security requirements. Within this session you will explore the capabilities of Azure Firewall in combination with AVD, Windows 365 and Microsoft Sentinel and learn some of the recommended networking patterns to secure your virtual desktop deployments on the network layer.

Speakers

Nicola Suter

Security Consultant & MVP, baseVISION

Janic Verboon

Senior Endpoint Engineer, baseVISION AG

Endpoint Engineer with interests in everything Intune & Entra related, enjoys a good beer 🍺 and is a big fan of heavy & loud music 🤘

Azure Firewall and Virtual Desktops Better Together pdf

Thursday September 19, 2024 14:00 - 15:00 CEST
Deuxième

Windows 365 / AVD

Session format Breakout session (60 min)
Subjects AVD, Windows 365, Security, Sentinel
Level Advanced

15:20 CEST

Enrich your Windows 11 MDE advanced hunting data with Sysmon

Thursday September 19, 2024 15:20 - 16:20 CEST

Clubraum 2

Defender for Endpoint is a superb data source for custom detections and the data can even be used to troubleshoot IT operations.
But as most of you are aware, MDE is also notoriously known for dedeplucating data and the dataset collected is defined by Microsoft.

If you want more flexibility Sysmon is an amazing data source for additional information and with the new Azure Monitor agent on Windows client devices the data ingestion into Microsoft Sentinel (Log Analytics) is easier than ever.

At the end of the session you will know how to implement the proposed solution, where you will find configurations to get started and what are the pitfalls in the current version.

Speakers

Fabian Bader

Cyber Security Architect, glueckkanja AG

Fabian Bader is a Cyber Security Architect and Microsoft MVP from Germany. He focuses on security and cloud solutions and works mainly with Microsoft technologies.From Azure cloud to on-premises Active Directory, he likes to automate stuff with PowerShell.Besides being a speaker at... Read More →

Enrich your Windows 11 MDE advanced hunting data with Sysmon pdf

Thursday September 19, 2024 15:20 - 16:20 CEST
Clubraum 2

Security, Windows

Session format Breakout session (60 min)
Subjects Security, Sentinel, Windows Client OS, MicrosoftXDR
Level Expert

15:20 CEST

Zero Trust - Zero Gap? Spotlight on (new) uncovered aspects of your CA design

Thursday September 19, 2024 15:20 - 16:20 CEST

Auditorium

Conditional Access is the heart of Microsoft's Zero Trust implementation as its policy enforcement engine and Microsoft introduces constantly new features to cover more and more use cases and integrations. This includes granular conditions and controls for specific authentication methods, restricted sessions and authentication flows but also new capabilities to re-trigger a policy evaluation.

In this session, we will discuss the latest features and their use cases and also challenges that you may not address in your current ruleset. Starting from automation for deployment, exclusion handling and gap monitoring, up to missing strong policy design to prevent rogue devices or protect privileged users.

Speakers

Thomas Naunheim

Thomas Naunheim is a Cyber Security Architect from Germany and with focus on identity and security solutions in Microsoft Azure. He is working for glueckkanja AG and part of projects to design and implement Microsoft cloud identity and security solutions in enterprise environments.You... Read More →

Christopher Brumm

Cyber Security Architect, glueckkanja AG

WPNinja24 Zero Trust Zero Gap pdf

Thursday September 19, 2024 15:20 - 16:20 CEST
Auditorium

Security, Zero-Trust

Session format Breakout session (60 min)
Subjects Security, Azure AD, Conditional Access, Identity, Zero Trust
Level Advanced

15:20 CEST

Microsoft Dev Box - Make The Devs AND Security Teams happy

Thursday September 19, 2024 15:20 - 16:20 CEST

Clubraum 1

Meet Dave, the Dev. Dave has been using a powerful laptop to run VMs on so he can do his work. Now Security Steve has told him they're no longer putting up with his 'against policy' methods and he needs to use VDI like everyone else. On the same host with everyone else... Dave is now complaining about slow performance, not having the tools he needs, and having only 1 session at the time. Poor Dave :(

There's a way to make both Dave and Steve happy! Introducing Microsoft Dev Box! We will discuss how this compares to other options, including Azure Virtual Desktop (AVD), and why it is the better choice for organizations looking to provide their developers with a secured, self-service platform.

Speakers

Merlijn Van Waeyenberghe

Consultant, OB-V-US

WPNinjas2024 DevBox pdf

Thursday September 19, 2024 15:20 - 16:20 CEST
Clubraum 1

Windows 365 / AVD

Session format Breakout session (60 min)
Subjects Security, AVD, Windows 365, Zero Trust, Endpoint Management
Level Intermediate

16:40 CEST

Security AMA Session with Security MVPs

Thursday September 19, 2024 16:40 - 17:40 CEST

Clubraum 1

Speakers

Thomas Naunheim

Stefan Schörling

Security and Infra Geek - Onevinn AB, Onevinn

Alain Schneiter

Partner | Solutions Architect, scopewyse GmbH

Alain (Al) Schneiter is one of the scopewyse founders and an Microsoft Secuirty MVP. As an experienced solutions architect he is supporting clients and partners in training, concepts, designs and implementations using cloud solutions from Microsoft Azure and Microsoft 365. Alain is... Read More →

WP Ninja Summit Staff

Alex Benoit

Head of Moscow Mule, water baby

Thursday September 19, 2024 16:40 - 17:40 CEST
Clubraum 1

Session format Breakout session (60 min)
Subjects Security
Level Intermediate
Area Microsoft