Microsoft
Microsoft
Fair enough, the only other thing I think I can mention is that any modern security approach has to be defense in depth. Meaning, dont rely on any one thing. Sure the external banners are not a strong protection but you should have other things to catch the slack like for example MFA. In my company creds are practically useless since MFA is required for everything. Sure that isnt fool proof as someone can spoof a MFA portal and proxy responses but then you add in Azure AD's logon risk scores (we block all high risk sign ins) which is another layer of our security lasagna of which there are many more. Modern IT management and security has never been more of a challenge, we have to find ways to be open and secure. I guess this isnt new but the amount of open is far greater then it used to be. Good discussion in any event, nice talking with you.
