Join Our Microsoft Security Community
Want to help defend the world against cyber attacks? We want you to influence our designs, plans, and guidance so we can have a global impact together. That's why we need your participation in our security community. Please join our email list to be notified about the upcoming webinars, events, and other announcements. Upcoming Webinars DECEMBER 2 (9:00 AM - 10:00 AM) Microsoft Sentinel and Microsoft Defender XDR | Empowering the Modern SOC Microsoft is simplifying the SecOps experience and delivering innovation that will allow your team to scale in new ways. Join us for actionable learnings to help your team modernize your operations and enhance protection of your organization. DECEMBER 3 (8:00 AM -9:00 AM) Microsoft Defender for Identity | Identity Centric Protection in the Cloud Era Microsoft Defender for Identity provides identity would like to introduce the new identity centric protection capabilities providing identity centric protection across any identity source. DECEMBER 4 (8:00 AM - 9:30 AM) Security Copilot Skilling Series | Discussion of Ignite Announcements Ignite 2025 is all about driving impact in the era of AI—and security is at the center of it. In this session, we’ll unpack the biggest Security Copilot announcements from Ignite on agents and discuss how Copilot capabilities across Intune, Entra, Purview, and Defender deliver end-to-end protection. DECEMBER 4 (8:00 AM- 9:00 AM) Microsoft Defender for Cloud | Unlocking New Capabilities in Defender for Storage Join us for an in-depth look at the latest enhancements in Microsoft Defender for Storage. In this session, we’ll explore two powerful capabilities now available in public preview: Cloud Storage Aggregated Events and Built-in Automated Malware Remediation for Malicious Blobs. We’ll showcase live demos of these features in action and share best practices for leveraging them effectively. DECEMBER 4 (9:00 AM- 10:00 AM) Microsoft Sentinel | What's New in the Past 6 Months Join us for an insightful session on “What’s New in Microsoft Sentinel.” We’ll spotlight the latest innovations and enhancements, including improvements to the Defender portal that deepen its integration with Microsoft Sentinel. We’ll also explore how data lake capabilities are evolving to support more scalable and flexible security operations. Expect demos, real-world use cases, and a discussion on why these updates matter to our customers. Don’t miss out if you want to stay ahead of what’s new and what’s next! DECEMBER 8 (9:00 AM - 10:00 AM) Microsoft Security Store | Security, Simplified: A look inside the Security Store This session is to introduce the Microsoft Security Store—a centralized destination where customers can discover, deploy, and manage trusted security solutions built to extend Microsoft’s security platforms like Defender, Sentinel, Entra, Purview, and Intune. DECEMBER 9 (8:00 AM - 9:00 AM) Microsoft Defender XDR | A Deep Dive into Automated Attack Disruption Uncover the value of automated attack disruption and how it delivers protection without the complexity. Join the Automatic Attack Disruption team for an exclusive deep dive into these powerful capabilities. You’ll get a front-row seat to a demo, explore the latest innovations, a look at future investments and have your questions answered directly by the experts. Don’t miss this chance to see effortless protection in action. DECEMBER 9 (9:00 AM - 10:00 AM) Microsoft Sentinel | Part 1: Stop Waiting, Start Onboarding: Get Sentinel Defender‑Ready Today Part 1: Stop Waiting, Start Onboarding: Get Sentinel Defender‑Ready Today The Microsoft Sentinel portal in Azure is being retired by July 2026, so now is the perfect time to explore the Microsoft Defender unified portal. In this session, we’ll walk through a day in the life of a SOC, showing how integration and simplicity make security operations smoother. You’ll learn how to navigate the portal, manage incidents with a unified queue, and enrich investigations with UEBA, Threat Intelligence, and Watchlists. Plus, see how automation, dashboards, and case management help smaller setups work smarter. DECEMBER 10 (8:00 AM - 9:00 AM) Azure Network Security | Deep Dive into Azure DDoS Protection Join us for an in-depth exploration of Azure DDoS Protection and learn how to safeguard your applications and infrastructure against distributed denial-of-service attacks. This session will walk through the end-to-end architecture and planning considerations, dive into the detection and mitigation flow, and showcase telemetry, analytics, and alerting best practices. We’ll also cover how Azure DDoS Protection integrates with first-party services to deliver seamless protection and visibility across your environment. DECEMBER 10 (9:00 AM - 10:00 AM) Microsoft Defender for Cloud | Expose Less, Protect More with Microsoft Security Exposure Management Join us for an in-depth look at how Microsoft Security Exposure Management helps organizations reduce risk by identifying and prioritizing exposures before attackers can exploit them. Learn practical strategies to minimize your attack surface, strengthen defenses, and protect what matters most. DECEMBER 11 (8:00 AM - 9:00 AM) Microsoft Defender for Cloud | Modernizing Cloud Security with Next‑Generation Microsoft Defender for Cloud Microsoft Defender for Cloud is evolving to deliver a unified, intuitive, and scalable approach to cloud security. In this session, we’ll discuss how organizations can simplify posture management and threat protection across multicloud environments (Azure, AWS, GCP, and beyond) while improving efficiency and reducing risk. Learn how this direction streamlines operations, enhances clarity for security teams, and supports smarter risk prioritization. DECEMBER 11 (9:00 AM - 10:00 AM) Microsoft Sentinel data lake | Transforming ingestion, storage and analytics of security data at scale Join us to explore how Microsoft Sentinel is transforming security data collection across multicloud and multiplatform environments. In this webinar, we’ll share our vision for a unified, cloud-native approach, highlight the latest capabilities for ingesting data from on-prem systems, Microsoft workloads, and multi-cloud platforms, and showcase the codeless connector framework that accelerates custom integrations. With over 350 connectors available and the App Assure program ensuring reliability, we’ll also share the roadmap for scaling data collection to power AI-driven security operations. DECEMBER 16 (8:00 AM - 9:00 AM) Microsoft Defender for Office 365 | Ask the Experts: Tips and Tricks You’ve watched the latest Microsoft Defender for Office 365 best practices videos and read the blog posts by the esteemed Microsoft Most Valuable Professionals (MVPs), now bring your toughest questions or unique situations straight to the experts. In this interactive panel discussion, Microsoft MVPs will answer your real world scenarios, clarify best practices, and highlight practical tips surfaced in the recent series. We’ll kick off with a who’s who and recent blog/video series recap, then dedicate most of the time to your questions across migration, SOC optimization, fine-tuning configuration, Teams protection, and even Microsoft community engagement. Come ready with your questions (or pre-submit here) for the expert Security MVPs on camera, or the Microsoft Defender for Office 365 product team in the chat! DECEMBER 16 (9:00 AM - 10:00 AM) Microsoft Sentinel | Part 2: Don’t Get Left Behind: Complete Your Sentinel Move to Defender Part 2: Don’t Get Left Behind: Complete Your Sentinel Move to Defender As the transition deadline approaches in July 2026, this session helps you unlock the full potential of Microsoft Defender. We’ll cover data onboarding, retention strategies, and permission models for governance at scale. Explore Content Hub, analytic rules, and summary rules to optimize detection. Learn how Multi-Tenant Organization (MTO) simplifies management and see Security Copilot in action for AI-driven insights. Ideal for teams migrating from Azure Sentinel Portal or looking to strengthen their SOC posture. JANUARY 13 (9:00 AM - 10:00 AM) Microsoft Sentinel | AI-Powered Entity Analysis in Sentinel's MCP Server Assessing the risk of entities is a core task for SOC teams—whether triaging incidents, investigating threats, or automating response workflows. Traditionally, this has required building complex playbooks or custom logic to gather and analyze fragmented security data from multiple sources. With Entity Analyzer, this complexity is eliminated. The tool leverages Sentinel’s semantic understanding of your security data to deliver comprehensive, reasoned risk assessments for any entity your agents encounter. By providing a unified, out-of-the-box solution for entity analysis, Entity Analyzer enables your AI agents to make smarter decisions and automate more tasks—without the need to manually engineer risk evaluation logic for each entity type. This not only accelerates agent development, but also ensures your agents are always working with the most relevant and up-to-date context from across your security environment. And for those building SOAR workflows, Entity Analyzer is natively integrated with Logic Apps, making it easy to enrich entities and automate verdicts within your playbooks. JANUARY 20 (8:00 AM - 9:00 AM) Microsoft Defender for Cloud | What's New in Microsoft Defender CSPM Cloud security posture management (CSPM) continues to evolve, and Microsoft Defender CSPM is leading the way with powerful enhancements introduced after Microsoft Ignite (November 2025). This session will showcase the latest innovations designed to help security teams strengthen their posture and streamline operations. JANUARY 22 (8:00 AM - 9:00 AM) Azure Network Security | Advancing web application Protection with Azure WAF: Ruleset and Security Enhancements In this session, we’ll explore the latest Azure WAF ruleset and security enhancements designed to strengthen your protection, reduce false positives, and simplify management. You’ll learn how to fine-tune WAF configurations, gain deeper visibility into threat patterns, and ensure consistent security across your web workloads. Whether you’re just getting started with Azure WAF or looking to optimize existing deployments, this webinar will help you confidently build a more resilient and adaptive web application security posture. Videos, Webinar Recordings & Decks Subscribe to our YouTube channel. A complete list of past webinar recordings and decks can be found here. For security documentation click here. Private Community Customer Connection Programs We offer several customer connection programs within our private communities. By signing up, you can help us shape our products through activities such as reviewing product roadmaps, participating in co-design, previewing features, and staying up-to-date with announcements. Sign up at aka.ms/JoinCCP. Upcoming Events & Announcements TBA Blogs & Forums Got questions or feedback? Check out our blogs and forums where you can see the latest product developments and speak directly to our engineering teams, and see the latest product developments. GitHub Azure Network Security GitHub Microsoft Defender for Cloud GitHub Microsoft Sentinel GitHub Microsoft Defender XDR GitHub Microsoft Defender for Cloud Apps GitHub Microsoft Defender for Identity Microsoft Purview LinkedIn We have a general discussion group on LinkedIn Ninja Trainings Azure Network Security Microsoft 365 Advanced eDiscovery Microsoft Copilot for Security Microsoft Defender XDR Microsoft Defender External Attack Surface Management Microsoft Defender for Cloud Microsoft Defender for Cloud Apps Microsoft Defender for Endpoint Microsoft Defender Experts Microsoft Defender for Identity Microsoft Defender for IoT Microsoft Defender for Office 365 Microsoft Defender Threat Intelligence Microsoft Defender Vulnerability Management Microsoft Purview Insider Risk Management Microsoft Purview Data Lifecycle & Records Management Microsoft Purview Information Protection Microsoft Purview Data Loss Prevention Microsoft Purview Communication Compliance Microsoft Purview Compliance Manager Microsoft Sentinel Microsoft Sentinel Notebooks Microsoft Unified SOC PlatformCelebrating Cybersecurity Awareness Month: Everyday Protection with Microsoft 365
Every October, people around the world- from students and parents to large organizations and governments- take time to strengthen their online safety habits and learn how to protect their digital lives. Microsoft’s pledge to our customers and our community is to prioritize your cybersafety above all else. Whether you're running a Fortune 100 company, shopping online, or helping your kids with homework, we’re here to help you stay one step ahead of cyber threats. Our goal is simple: to give you the tools, tips, and confidence to be cybersmart every day. The Evolving Threat Landscape In the past year, online threats have become more aggressive and harder to spot: Phishing scams are everywhere—fraudsters now mimic trusted brands to trick you into giving up passwords or personal info. Fraudulent websites are deceptive and often mimic legitimate businesses or government agencies, luring users into sharing sensitive information like passwords or credit card numbers. Identity theft is on the rise, with criminals using leaked personal data to open fake accounts or impersonate you online. These attacks are fast, sneaky, and can be powered by artificial intelligence. That’s why you need to have a security-first mindset. Today, you need always-on protection that can spot suspicious behavior, predict hacker tactics, and respond quickly—before damage is done. Microsoft’s Commitment to Security Every time you check your email, save a photo, or browse the web, Microsoft’s security ecosystem is working behind the scenes to keep you safe. Microsoft analyzes over 84 trillion signals daily—from devices, emails, and cloud activity—to detect threats and protect your personal data. Millions of people trust Microsoft to help secure their digital lives, whether they’re managing finances, helping kids with homework, or staying connected with loved ones. Through our Secure Future Initiative, we’re investing in smarter, faster protection—powered by over 30,000 engineers focused on identity safety, threat detection, and cloud security. This means that whether you're using Outlook to email a friend, OneDrive to store family memories, or your phone to shop online, you're backed by the same advanced security that protects global organizations—tailored for your everyday life. Microsoft 365: Everyday Online Protection in Action Microsoft 365 and its suite of apps are here to keep you safer online: Microsoft Defender for Individuals¹ ²: Get peace of mind with a proactive online security solution to protect your family’s identities³, data, and devices from hackers and scammers. Outlook: Keep your emails safer – automatically scan⁴ emails for viruses and malware from unsafe links and attachments or encrypt⁴ your sensitive emails. OneDrive: Save your photos, videos, and files securely to OneDrive and keep them protected with ransomware detection and file recovery⁴. Personal Vault provides another layer of protection for your most sensitive files. Security Is a Shared Responsibility Technology plays a big role in keeping you safe online—but it’s not the whole story. You are the first and last line of defense. This Cybersecurity Awareness Month, take simple steps to protect yourself and your family: Turn on multi-factor authentication (MFA) for all your accounts to add an extra layer of security. Keep your devices and apps updated so you’re protected against the latest threats. Use strong, unique passwords—and consider a password manager to help keep track. Take advantage of built-in security tools like Defender, Outlook, and OneDrive to help safeguard your personal phones and computers, data, emails, and files. Together, we can build a safer digital world. When each of us takes action, we raise the bar against cyber threats. Let’s make online safety a daily habit—for ourselves and those we care about. Explore our Cybersecurity Awareness Month resources for best practices on how to be cybersmart, which includes articles on AI safety, phishing, fraud, cybersecurity 101, and more. We also include cybersecurity learning paths, certification opportunities, and the latest insights about threat intelligence and cybersecurity developments, including tools like the Be Cybersmart Kit. Cybersecurity first, stay safe always. Happy Cybersecurity Awareness Month! References 1 – Microsoft 365 Personal, Family, or Premium subscription is required. 2 – Microsoft Defender is currently not available in certain regions. 3 – Available in the US and US territories only. Your device's primary display language must be set to English. 4 – Microsoft 365 Basic, Personal, Family, or Premium subscription is required.Discover the latest security innovations at Microsoft Ignite 2025
In today’s rapidly evolving digital world, security leaders and practitioners face new challenges—and opportunities—driven by the rise of AI. At Microsoft Ignite, we will showcase end-to-end security innovations and share world class threat and regulatory intelligence to give you the advantage you need to safely adopt AI and face the rapidly changing threat landscape. Why attend Microsoft Ignite? Visionary insights: Hear directly from Microsoft Security leaders and industry experts on the evolving threat landscape and the role of AI in defense. Community connections: Network with peers and industry experts, and join community events throughout the week, including the Secure the Night party (register here for the party—please note this is a separate registration from the main conference). Immersive experiences: Get hands-on with the latest security technologies and discover tools designed to help you accelerate secure AI adoption. Career growth: Take advantage of opportunities to expand your skills and earn certifications that set you apart in the industry. Whether you’re a CISO, security architect, or passionate about protecting what matters, Microsoft Ignite is your chance to dive into the latest security innovations to help you accelerate the secure adoption of AI. Save the date San Francisco, November 17–21, 2025 Or join us online November 18–21 Register now and secure your spot at this premier event for security professionals. Learn more about the security experience at Microsoft Ignite.Announcing a New Microsoft Security Virtual Training Day
We’re thrilled to announce a brand-new opportunity for learning and growth: Microsoft Virtual Training Day: Strength Cloud Security with Microsoft Defender for Cloud! This free, online event is designed to empower professionals with the skills and knowledge needed to thrive in today’s digital landscape. During this training, you’ll be able to: Learn how to increase cloud security using Microsoft Defender for Cloud and how to deploy security across your DevOps workflows. Discover how to detect risks, maintain compliance, and protect hybrid and multicloud environments. Find out how to defend servers, containers, storage, and databases using built-in security. Chat with Microsoft experts—ask questions and get answers on real-world security challenges. Here’s what you can expect: Part 1 Part 2 Introduction Introduction What a comprehensive cloud-native application protection platform looks like Comprehensive workload protection (part 1) Break: 10 minutes Break: 10 minutes Starting with proactive security Comprehensive workload protection (part 2) Break: 10 minutes Automating responses Operationalizing Posture Management Closing question and answer Closing question and answer Why Attend this Virtual Training Day? Microsoft Virtual Training Days offer a host of benefits: Flexible Learning: Attend from anywhere, at your own pace. Expert Instruction: Gain insights from industry leaders and certified professionals. Certification Opportunities: Many sessions prepare you for Microsoft certifications. Networking: Connect with peers and professionals across industries. Free Resources: Access downloadable materials and follow-up learning paths. Earn a voucher: Upon completion of the event, the exam is offered at a 50% discount off the exam rate. Don't miss out on this opportunity. Go and registertoday! For more information on all things security, please visit our Security Hub.Help Shape the Microsoft Ignite Security Roundtable: Take Our Quick Survey
As we prepare for Microsoft Ignite, we’re building a focused, practitioner-led security roundtable and we want your input to ensure it reflects the most relevant and pressing topics in the field. We invite you to take a short survey and share the security topics, trends, and technical questions you want to see covered. Your input will directly influence the structure and substance of the Ignite Security Roundtable. Thank you for helping us design a roundtable that delivers value, drives insight, and reflects what truly matters to the security community! TAKE THE SURVEY NOW: https://aka.ms/IgniteSecurityRoundtableSurvey2025Microsoft at Black Hat USA 2025: A Unified Approach to Modern Cyber Defense
Microsoft will be at Black Hat USA 2025, August 5–7 in Las Vegas, and we’re bringing you a unified, practitioner-driven experience built around real-world insights, threat intelligence, incident response, and hands-on AI expertise. We believe security teams are strongest when intelligence, tools, and deep expertise come together. At Microsoft, we’ve eliminated internal silos between threat intelligence, red teaming, incident response, and product engineering. That closed-loop system lets us move faster, translating threat signals into global protection every day. This integration isn’t theoretical. It means when researchers detect a threat through our global network, that information flows directly to the red team stress-testing our defenses, the incident responders investigating real intrusions, and the engineering teams building new mitigations; all at once. It's a system designed to learn, adapt, and protect at scale. At Black Hat, we’re opening that loop so you can see how it works and inviting you to see how it can help you defend at AI speed. Want to meet the people behind our operations? Request an invite to our Black Hat VIP mixer. Start your Black Hat journey early with the Microsoft Threat Intelligence Podcast Before Black Hat kicks off, hear from Black Hat NOC lead Grifter and Lintile in our latest episode of the Microsoft Threat Intelligence Podcast. They explore what it takes to secure one of the world’s most high-profile cybersecurity conferences, what the Black Hat Network Operations Center (NOC) sees in real time, and how defenders can apply those lessons to their own environments. Whether you're attending in person or following along remotely, this episode offers a rare look into threat activity and security insights from inside the NOC. Meet us at Booth 2246: Conversations, not presentations. Skip the crowded theater sessions and pull up a chair. Throughout the day, we’re hosting informal conversations at our mobile podcast studio and then shifting to expert meetups where your questions will be answered. At booth 2246, you’ll hear directly from Microsoft security experts on what they’re seeing, and how you can apply it. Topics include: Addressing the ransomware threat landscape Defending against BEC attacks Shifts in social engineering and phishing Securing non-human identities (agents) And a few surprises We’ll also be inviting our friends from the Microsoft Threat Intelligence Podcast, Microsoft BlueHat podcast (MSRC), GitHub, and a few special guests. Each session is a chance to hear what our teams are seeing in the wild, how we’re responding, and how you can apply those insights in your own environment. Whether it's a live threat briefing, a deep dive into red teaming, or a behind-the-scenes look at real incident response, these are unscripted, interactive discussions designed for defenders and researchers. Demos of Microsoft Defender, Microsoft Entra, Microsoft Purview, and Microsoft Security Copilot will run throughout the week. Stop by to talk shop, ask questions, or just get a clearer view of why our AI-first, end-to-end platform is designed to help you move faster, respond with precision, and adapt to new threats with confidence. Connect with the experts at our VIP Mixer You’re invited to connect with the people behind the defense at our VIP Mixer on Wednesday, Aug. 6. Join Microsoft Security for an evening of conversations, insights, and connections with our threat intelligence, incident response, and Security Copilot teams, alongside your peers from across the security community. Whether you're exploring how to put AI agents to work, navigating advanced threats, or evolving your detection and response strategy, this is your chance to meet the experts and teams helping defenders stay ahead. Security is a team sport, and we would like to thank Armor, Cyberproof, Forescout, Ontinue and Security Risk Advisors members of the Microsoft Intelligent Security Association (MISA) for sponsoring this event. Drinks and appetizers will be provided. Request to attend today! Session Spotlight: Gain practical strategies for unmasking cyber threats Thursday, August 7 | 12:15–12:40 PM In a threat landscape shaped by AI and threat actors, cybersecurity teams need more than tools; they need the right mindset, collaboration models, and playbooks to stay ahead. During our main stage session, we will bring together frontline experts from Microsoft Security—Sherrod DeGrippo, Director, Threat Intelligence Strategy, Aarti Borkar, Corporate Vice President, Customer Success and Incident Response, Andrew Rapp, Leader, Incident Response and Simeon Kakpovi, —to share how they approach high-impact intrusions and what defenders everywhere can take away from it. This session will offer practical strategies grounded in real-world operations, including: How to build tighter alignment across threat intel, IR, and detection teams Approaches to reduce friction and accelerate signal-to-action response time Lessons from tracking threat actors focused on social engineering and ransomware Ways to adapt red teaming and detection in a rapidly evolving AI landscape Whether you're refining your team’s structure or looking for sharper ways to think about advanced threats, this conversation will deliver actionable insight you can bring back to your own environment. Inside Look: How Microsoft Red Teams Stay in Sync Wednesday, August 6 | 11:25–11:45 AM What happens when red teams operate not in isolation, but as a connected part of a broader defense ecosystem? Microsoft security experts Ram Shankar Siva Kumar (founder of the AI Red Team) and Craig Nelson (Microsoft Red Team) will explore how traditional and AI red teams work side by side to proactively test Microsoft’s products, platforms, and AI systems. You’ll hear how these teams: Identify systemic risks across cloud and enterprise services Probe generative AI systems for jailbreaks and indirect misuse Collaborate with MSRC and threat researchers to close the loop from discovery to defense Embed red teaming into engineering cycles, not just as a check, but as a design influence Whether you’re red-teaming your own products or rethinking how to operationalize adversarial testing, this session will offer lessons in collaboration, tooling, and mindset from two of the most advanced offensive security teams in the industry. Exchange ideas with other MISA members The Microsoft booth will include a featured partner demo station where 7 partners from the Microsoft Intelligent Security Association (MISA) will showcase how their solutions together with Microsoft Security technology help defend our mutual customers from cybersecurity threats. Connect with us at the Microsoft booth to find out more. Connect with us at Black Hat US Cybersecurity is a team sport and defending against threats takes a cohesive approach that brings multiple disciplines and experts across specialties together. We’re committed to eliminating internal silos to focus on threat hunting that supports a comprehensive defense. You’ll hear more of this approach and how it can benefit your organization at Black Hat US. Check out Microsoft Security executives at the AI Summit at Black Hat (separate pass required) Request to attend our VIP Mixer to meet the experts behind Microsoft threat intelligence, incident response, and the Microsoft Security Response Center. Discover how our end-to-end platform can help you strengthen resilience and elevate your security posture. Get an exclusive $200 briefings and $100 business hall pass discount to share with your customers and prospects. Sign up for a one-on-one meeting with Microsoft Security experts. Listen to our Threat Intelligence Podcast. Visit us in Booth #2246 for a live demo and learn how our AI-powered cybersecurity can protect your organization. Hope to see you at Black Hat!Connect with us at the Gartner Security & Risk Management Summit
Security professionals visiting booths scattered around a hall, eager for solutions to today’s top cybersecurity challenges to protect their resources and people. The hum of hundreds of conversations. Presenters in packed sessions sharing expertise, trends, and stories to energize attendees. Few occasions are as thrilling as a cybersecurity event, knowing that all around you are people who understand the frustrating challenges and exciting wins of working in cybersecurity. The rise in quantum computing and AI as tools used by adversaries make such events both inspiring and necessary as professionals seek new approaches and ways to manage risk and protect assets. Join Microsoft Security at Gartner Security & Risk Management Summit, where we will showcase end-to-end security innovations and share world-class threat and regulatory intelligence to give you the advantage you need in the era of AI. This is an opportunity to learn how Microsoft’s AI-first end-to-end security platform can help you overcome the top security challenges and manage risk effectively even as high-level threats evolve. The Summit is one of many top cybersecurity events in 2025 where security professionals like you can hear insights from Microsoft Security and interact with your peers. Microsoft Security offers AI-first, end-to-end protection for identities, endpoints, apps, and clouds, providing comprehensive security in the AI era, powered by unmatched threat intelligence. Accelerate your secure adoption of AI with ready-to-go security and governance tools built for generative AI. We’re excited to be returning to the Gartner Security & Risk Management Summit and look forward to giving attendees several ways to connect. We invite you to come see our innovation and engage with us. Our experts will be giving two sessions, we’ll be offering live demos in our booth (#945), and we’ll be chatting with attendees during one-on-one meetings. Sign up for a one-on-one meeting We’re excited to meet with conference attendees and encourage you to book a time. During these meetings, we can exchange perspectives on the latest cybersecurity threats, security best practices, and industry trends. It’s also a good time to learn more about specific Microsoft product capabilities and which features can address your organization’s unique challenges. We’re always up for sharing security strategies too. Book a one-on-one meeting with a Microsoft expert. Propel your security efforts with Microsoft sessions When choosing session topics for conferences, we consider several factors. What topics or trends are top of mind in the industry? What is sparking conversation with our clients? Where can we add the most value to help organizations facing modern security challenges? The Gartner Security & Risk Management is no exception and attendees can benefit from attending one – or even better, both –- of Microsoft’s two sessions at the event. If you want to hear insights on AI news and maximize the value of Microsoft products, you won’t want to miss these sessions for insights that can help you better manage your organization’s risk: “Microsoft: Security in the Age of Agentic AI” (11:30 AM-12:00 PM on Tuesday, June 10): Hammad Rajjoub, Director, Security will explore the future of security AI agents and the human-driven way they introduce innovative security principles tailored for AI-driven enterprises. Agentic workflows are set to revolutionize security by enabling complex problem-solving, agent collaboration, and iterative learning. Hammad will also discuss the continued importance of principles like Zero Trust, least privilege, and assume breach, but share why they will be insufficient as AI reshapes enterprises and cybersecurity, requiring new principles. “Trustwave: Unlocking Your Data Fortress: Mastering Microsoft Purview for Proactive Cybersecurity” (2:00–2:45 PM on Wednesday, June 11): Microsoft Global Partner Solutions Architect David Branscome will share strategies for fortifying your security and maximizing ROI with Microsoft Purview, the integrated data governance and compliance solution transforming security. You’ll learn more about Purview capabilities like data classification, data loss prevention, insider risk management, and eDiscovery and hear from Purview clients on how it enables proactive data protection. Don’t let your data be the next target—empower your defense with Purview. Connect with us at the Summit Elevate your defenses, enhance efficiency, and empower your team to focus on the most critical threats with generative AI for cybersecurity. We’d be thrilled to meet one-on-one with you at the Gartner conference. Whether you have questions, want a personalized demo, or want to chat about how AI could impact your security, schedule a time to speak with one of our experts at the event. And stop by Booth #945 for a live demo. In the meantime, explore how AI-powered cybersecurity can transform how you protect your organization. Hope to see you at the Gartner event!14 Secure Coding Tips: Learn from the Experts at @Build
Hey friends! If you are a developer, you know that writing clean and efficient code is just the starting point. Now, with AI playing a bigger role, secure coding isn't just a 'nice-to-have'—it's a must. Whether you're building web apps, working on cloud services, or adding AI to your projects, keeping your code safe is just as important as getting it out the door. At Microsoft Build 2025, we’re bringing together some of the most influential security engineers, researchers, and developers to share practical tips and modern best practices to help you ship secure code — faster. Here are 14 quick secure coding tips that will make you a better, more security-savvy developer — and the security sessions @Build where you can learn more from the experts: 🎯 1. Secure AI from the start Discover how to deliver intelligent apps without sacrificing security. This session covers how to protect against threats across code, secrets, dependencies, and even LLMs. Learn how to use Threat Modeling early in the product lifecycle to identify, assess and address security risks. You’ll learn about developer-focused security tools to deploy with confidence without context switching. Learn more: Session: “Shift Left: Secure Your Code and AI from the Start” With Mark Russinovich, CTO, Deputy CISO and Technical Fellow, Microsoft Azure; Marcelo Oliveira, VP, Product Management, GitHub; Neil Coles, Principal Security Engineer 🧪 2. Use the Wisdom from the Past Michael Howard - author of the original secure coding book back in 2003 and now a senior director in the Microsoft Red Team - reflects on 25 years of secure code, how the practice has developed and current challenges in secure development. Get ready for an end-to-end secure coding journey from Bill Gates anecdotes and tips for how you in 2025 can code securely to meet today's security threats. Learn more: Session: “Reflections on 25 years of writing secure code” With Michael Howard, Senior Director, Red Team 📏3. Lock down the data Microsoft is releasing a set of Purview APIs (+SDK) that will allow partners and customers to integrate their custom AI apps with the Microsoft Purview ecosystem for enterprise grade Data Security and Compliance outcomes. Join this demo session to get the latest. Learn more: Session: “Build secure and compliant AI applications with Microsoft Purview” With Arpitha Dhanapathi, Principal Product Manager 🔚4. Think about security from start to finish Security can be challenging at the best of times, especially when it’s not your full-time job. In this session, we walk you through the end-to-end deployment of a secure AI application, all the way from identities, VNETS, NSGs, key vault through to prompt shields and data labelling. If you’ve ever felt overwhelmed by trying to do the right thing by security but didn’t know where to start, this session is for you! Learn more: Session: “Deploying an end-to-end secure AI application” With Sarah Young, Principal Security Advocate & Pamela Fox, Principal Cloud Advocate 🤖 5. Play dev-ils advocate To keep pace with evolving AI risks, organizations need tools to effectively test their AI systems, simulate adversarial attacks, and uncover weaknesses before bad actors can exploit them. Learn how the AI Red Teaming Agent in Azure AI Foundry can help your organization run automated scans for safety risks so you can leverage Microsoft's deep expertise to scale and accelerate your AI development with Trustworthy AI at the forefront. Learn more: Session: “Accelerate AI red teaming for your GenAI apps with Azure AI Foundry” With Minsoo Thigpen, Senior Product Manager & Nagkumar Arkalgud, Senior Software Engineer 🥷6. Skill up on agents Agents—they’re all anyone is talking about. Join this demo session to learn how to extend security copilot to facilitate security and IT workflows across your environment. In this demo you will see how to build an agent with supporting components - plugins and KQL queries - and architect it with triggers to automatically run. Learn more: Session: “Building Agents with Security Copilot” With Vinod Jagannathan, Principal Product Manager 🔐7. Get the inside scoop first One of the pillars of SFI is securing the engineering system. We will explore changes made to Azure DevOps to enable enhanced engineering system security at Microsoft and how customers can use them to better secure their own engineering systems as well. Learn more: Session: “Learn How Microsoft secured the Engineering System” With Karl Piteira, Principal Group Program Manager & Rajesh Ramamurthy, Senior Director, Principal Group Product Management 🚩8. Automate what you can You don’t have to wait to identify risks. The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems. In this hands-on lab, you will learn how to deploy PyRIT and test it against a variety of AI applications. Learn more: Session: “AI security testing with PyRIT” With Roman Lutz, Responsible AI Engineer & Richard Lundeen, Principal Software Engineering Lead - AI Red Team ⚙️ 9. Secure APIs Join us for an engaging and informative session where we delve into the intricacies of API security in the context of AI. We'll examine the unique challenges posed by AI-driven applications and the sophisticated threats that target their APIs. From unauthorized access and data breaches to injection attacks and exploitation of vulnerabilities, the risks are manifold. However, with the right approach, these risks can be effectively mitigated. Learn more: Session: “Fortifying AI Frontiers - Securing APIs the path to your AI app” With Abhi Singh, Director, Global Black Belt - Security & Preetham Anand Naik, Senior Product Manager 🆔 10. Verify explicitly, and automatically We all know the saying, but we’ve got to put it into practice. Join this session to learn how to enable automated processes to securely onboard and grant resource access for high-privilege users with the Microsoft Entra Suite and MS Graph. Verify the identities of admins, C-level employees, or others who need access to sensitive internet or on-premises resources, and automatically reverify them at regular intervals. Work with a chosen identity verification partner for government ID-based verification that ensures your organization onboards and grants access to the right person. Learn more: Session: “Secure onboarding and access with the Microsoft Entra Suite” With Sri Ponnada, Senior Product Manager ✅11. Apply best practices Join us for an insightful session on best practices and enablement topics for developing and deploying secure solutions within Business Applications, as part of the Secure Future Initiative (SFI). We will look holistically at Power Platform features for Security under SFI pillars and explore Responsible AI with Purview and Copilot. We will further explore demos, design review checklists on product features under Secure by Design, Secure by Default, and Secure Operations for BizApps Solutions. Learn more: Session: “Building Secure Business Apps: Best Practices for Design to Deployment” With Muhammad Aurangzeb, Senior Partner Solution Architect 🕶️ 12. Use agents for Zero Trust In this session, you will learn how to build AI Agents using the OpenAI SDK with Assistants and Function Calling for APIs secured by Microsoft Entra ID. This ensures adherence to Zero Trust principles. We will cover the essential steps to set up and configure the OpenAI SDK in a C# environment and demonstrate how to leverage Microsoft Entra ID for secure authentication and authorization. Learn more: Session: “Building Secure AI Agents with Microsoft Entra ID” With Fabian Alves, Senior Product Manager 😶🌫️ 13. Secure your apps, secure your people Learn how to enable automated processes to securely onboard and grant resource access for high-privilege users with the Microsoft Entra Suite and MS Graph. Verify the identities of admins, C-level employees, or others who need access to sensitive internet or on-premises resources, and automatically reverify them at regular intervals. Work with a chosen identity verification partner for government ID-based verification that ensures your organization onboards and grants access to the right person. Learn more: Session: “Securing Applications with Microsoft Entra ID” With Robert Stewart, Senior Specialist 📲 14. Keep it user-friendly for the best results In the rapidly evolving landscape of mobile application development, achieving pixel-perfect design and robust security is paramount. This lab focuses on the creation of mobile applications integrated via Native Authentication in Microsoft Entra External ID. Participants will explore the intricacies of designing visually precise user interfaces that align seamlessly with their brand while implementing native authentication methods, ensuring secure and efficient user verification processes. Learn more: Session: “Creating pixel-perfect mobile apps with Native Authentication” With Joylynn Kirui, Senior Cloud Security Advocate 💬 Come Learn from the People Building the Future Join these sessions and more at Microsoft Build 2025. Whether you're a junior dev or a senior architect, you'll walk away with real-world tactics to help you build apps that are secure, scalable, and resilient — by design. 👉 Register for Microsoft Build Security Sessions Now »The Ultimate Guide to Microsoft Security at RSAC 2025
So you just finished watching Microsoft Secure. That means by now, you’ve heard about our new protections for AI and Microsoft Security Copilot agents. These innovations will be the focus of Microsoft Security’s sessions and activities at RSACTM 2025 Conference (RSAC 2025). The can’t-miss conference is just around the corner. Microsoft Security is bringing an exciting lineup of sessions, expert panels, and exclusive networking opportunities to empower security professionals in the era of AI. Our entire presence at RSAC 2025 is designed to help you boost your AI skills so you can stay ahead of threats and manage security more effectively. Whether you're interested in protecting all your AI investments, AI-driven security, threat intelligence, or securing cloud environments, we’ve got something for you. To help you plan your time from Sunday, April 27 to Thursday, May 1, 2025, in San Francisco, here’s a quick and easy guide to all the key Microsoft Security moments at RSAC 2025. Microsoft Security Event Schedule at RSAC 2025 🔹 Sunday, April 27 📍 Microsoft Pre-Day | 4:00 PM – 6:00 PM | Palace Hotel For the fourth year in a row, Microsoft Pre-Day kicks off the full lineup of Microsoft events and activities throughout RSAC 2025. We will host these at the Microsoft Security Hub at Palace Hotel, just a short walk from Moscone Center. Hear directly from Microsoft Security leaders as they share reporting on emerging cyberthreat trends and the product innovations designed to protect against them. See the lineup below: Vasu Jakkal, Corporate Vice President (CVP), Microsoft Security Business Charlie Bell, Executive Vice President, Microsoft Security Sherrod DeGrippo, Director of Threat Intelligence Strategy Dorothy Li, Corporate Vice President (CVP), Microsoft Security Copilot Ann Johnson, Corporate Vice President (CVP) and Deputy CISO And more. Register for Pre-Day today. 📍 Networking Reception | 6:00 PM – 8:30 PM | Microsoft Security Hub, Palace Hotel, Second Floor Stick around after Microsoft Pre-Day to attend the Networking Reception—a lively evening designed to connect with the security community, engage with Microsoft leaders, and exchange ideas in a relaxed atmosphere. It’s the perfect way to kick off an inspiring week at RSAC 2025. 🔹 Monday, April 28 – Zeroing in on Innovation On Monday we ease into things by focusing on what’s new all around. We’ll share lots of goodness about agents and our new innovations announced in March. 🕹️Security Demo Experience at the Microsoft Security Booth #5744 | All day, every day | Moscone Center North Expo Hall Monday is the first day to explore the show floor. Stop by the Microsoft Security Booth #5744 in Moscone Center North Expo Hall to explore live demos, meet Microsoft Security experts, and get hands-on with the latest tools. Become a defender against cyber threats in a fast-paced, interactive game. You'll be a part of a mission, navigating realistic incident response scenarios using Microsoft Security solutions, including our new AI Agents. Engage in quick skill challenges and wrap up with expert insights. Are you ready to beat the bad actors? 🎤 Keynote: Security in the Age of Agentic AI | 4:40 PM | Moscone Center (West Stage) Agentic workflows will dramatically reshape what is possible in security. By enabling more complex problem-solving, agent collaboration, and iterative learning, agentic AI will empower a new paradigm for security that was once the domain of science fiction. Vasu Jakkal will take an imaginative look at the future of security AI agents, and the very human-driven way they will change the game. 🔑 Microsoft Sessions at RSAC 2025 | All day | Moscone Center Our top Microsoft Security experts were chosen by RSAC to share their insights and best practices to help you level up your own security strategy. These sessions are designed for learning, not selling. So, you’ll hear more about what’s happening in the security space and less about products. Practical Strategies for Security Architecture in a Changing World @ 8:30 AM – 9:20 AM This session will delve into the core pillars of security architecture and share practical strategies that uphold foundational principles. Will discuss holistic system thinking and provide a practical playbook for navigating the complexities of security architecture while maintaining a focus on the fundamentals and essential considerations for a secure digital environment. Speaker: Abhilasha Bhargav-Spantzel, Partner Security Architect, Microsoft RSAC™ Innovation Sandbox @ 9:30 AM – 12:40 PM Ten of cybersecurity’s boldest new innovators compete in Innovation Sandbox for the title of “Most Innovative Startup.” ISB celebrates 20 years & spotlights startups with potentially game-changing ideas. The Finalists have 3 minutes to share groundbreaking products & solutions with a panel of judges. Interact first-hand with these companies as the judges deliberate before the winner is crowned. Speakers: Christopher Young, Executive Vice President, Business Development, Strategy and Ventures, Microsoft; David Chan, Managing Director, Morgan Stanley; Dorit Dor, Chief Technology Officer, Check Point Software Technologies; Niloofar Razi Howe, Operating Partner, Capitol Meridian Partners; Hugh Thompson, Executive Chairman & RSAC™ Conference Program Committee Chair, RSAC; Paul Kocher, Researcher, Independent Researcher; and Nasrin Rezai, SVP & CISO, Verizon AI Era Authentication: Securing the Future with Inclusive Identity @ 1:10 PM – 2:00 PM This session explores the security and usability risks of authentication techniques for users with diverse needs. Emergence of AI agents, a new user identity acting on our behalf, also necessitates a rethink of authentication methods. Discover AI-era authentication using sensors like location and behavior and learn about the shift from active to passive authentication with prototypes in action. Speakers: Abhilasha Bhargav-Spantzel, Partner Security Architect, Microsoft and Aditi Shah, Senior Data & Applied Scientist, Microsoft DPRK Remote IT Workers – Have You Hired One and Are You at Risk? @ 2:20 PM – 3:10 PM The DPRK actively deploys remote IT workers to generate revenue for the regime while circumventing sanctions. DPRK IT workers pose risks to companies, including insider access, potential intellectual property theft, and exposure to other malicious cyber activity. This panel will discuss best practices for identifying and preventing the hiring of DPRK IT workers. Speakers: Greg Schloemer, Senior Threat Intelligence Analyst, Microsoft; Elizabeth Pelker, Special Agent, FBI; Chris Horne, Director, Trust & Safety Intelligence & Investigations, Upwork; Adam Meyers, SVP Intelligence, CrowdStrike; and Bryan Vorndran, Assistant Director, FBI 💡 Microsoft Expert Sessions | All day Monday - Wednesday | Microsoft Security Hub at the Palace Hotel (Second Floor) Don’t miss our deep-dive sessions happening at the Microsoft Security Hub. Build your AI cybersecurity skills as Microsoft Security experts will share what they've learned and provide insights you can apply in your own organization. Harnessing Diversity – Strengthening the Cybersecurity Workforce in the Age of AI @ 10:30AM – 11:30AM Speakers: Amanda Minnich, Principal Research Manager, Microsoft; Nicole Ford VP, Customer Security Officer, Microsoft; Kyla Guru, Founder/CEO, Bits N' Bytes Cybersecurity Education; Tanell Ford, Assistant General Counsel, Microsoft; and Sherrod Degrippo, Directory of Threat Intelligence Strategy, Microsoft Reshaping SecOps for the Cloud AI Era @ 10:30AM – 11:30AM Speakers: Scott Woodbridge, General Manager, Product Marketing, Microsoft and Corina Feuerstein, Principal Product Manager for Copilot in Defender and Sentinel Practical use of CoPilot AutoFix to address Security Backlog @ 12:00PM – 1:30PM Speakers: Alexis Wales, CISO, GitHub and Marcelo Oliveira, VP, Product Management, GitHub Executive Lunch: Scaling Compliance for Global Regulations @ 12:00PM – 1:30PM Speakers: Bret Arsenault, CVP, Chief Cybersecurity Advisor, Microsoft 💻Theatre Sessions | Location: Microsoft Security Booth #5744 Here’s where we talk products. These 15-20 minute informal, come-and-go sessions run all day at the Microsoft Security booth. They’re demo-heavy product showcases to help you learn how to better use the tools you’ve got now. Identity Security in the Era of AI with Security Copilot @ 5:35PM – 5:55 PM Security Copilot Agents: Autonomous, adaptive, with you in control @ 6:05PM – 6:25 PM From Risk to Resilience: The Next Evolution in Multicloud Security @ 6:35 PM– 6:55PM 🏆MISA Awards| Location: Microsoft Security Hub at the Palace Hotel (Second Floor) It’s time to suit up in heroic attire for an epic celebration at the 6th annual Microsoft Security Excellence Awards! Just like the Avengers, assembling to save the world, we’re coming together to honor the extraordinary achievements of our MISA members who work so diligently to protect customers from external threats! Congratulations to the incredible finalists for the sixth annual Microsoft Security Excellence Awards presented by MISA! 🤝 Customer Meetings | Location: Microsoft Security Hub at the Palace Hotel (Second Floor) Take advantage of the opportunity to connect with Microsoft Security experts and enhance your cybersecurity knowledge. From April 28 to April 30, 2025 customers and CISOs can schedule one-on-one meetings at the Palace Hotel to discuss your most pressing security product and threat intelligence questions. Secure your spot by visiting the Microsoft Security Experiences at RSAC 2025 Home Page. 🔹 Tuesday, April 29 – Choose Your Own Product Adventure Tuesday is the busiest day of the conference, with lots of choices in front of you, so plan ahead. 🎤 Keynote: AI Safety: Where Do We Go From Here? | 8:30 AM | Moscone Center (West Stage) During this keynote session, Google, Microsoft, NVIDIA, and the UK AI Safety Institute leaders come together for this blockbuster panel to explain the evolving landscape of AI safety. Attendees will gain insights into key developments in AI safety that should matter to organizations, its intersection with existing security initiatives, and time-tested approaches to translate AI safety to practice. Speakers: Ram Shankar Siva Kumar, Data Cowboy, Microsoft; Jade Leung, Data Cowboy, Microsoft; and Daniel Rohrer, VP Software Product Security, Architecture & Research, NVIDIA 🔑 Microsoft Sessions at RSAC 2025 | All day | Moscone Center RSAC has chosen top Microsoft Security experts to share insights and best practices, letting you learn about the latest in security without the sales pitch. Incident Response Dilemmas: Sharing Intel Across Sectors in Critical Times @ 9:40 – 10:30 AM An incident may be a singular event affecting one entity. What happens when it affects our critical infrastructure and has the possibility of sector-wide impact and cascading effects? How do companies share information and meet regulatory expectations? The session will dive into the work that financial services companies, the government, and cloud service providers are taking to mature IR. Speakers: Ann Johnson, CVP & Deputy CISO, Customer Security Managment Office, Microsoft; Ted Conklin, Chief AI Officer & Deputy Assistant Secretary, US Treasury; Heather Hogsett, Senior Vice President, Deputy Head of BITS, Bank Policy Institute; and Erez Liebermann, Partner, Debevoise & Plimpton LLP XPIA Attacks - Rethinking Defense in Depth for an AI-Powered World @1:15 – 2:05 PM As adversaries rapidly develop sophisticated AI attacks, the solutions also need to evolve rapidly. This panel will explore Cross/Indirect Prompt Injection Attacks (XPIA) and the need to rethink traditional defense in depth strategies. Gain insights into XPIA trends, risk analysis, and innovative solutions to protect critical infrastructure. Join for practical strategies and expert insights. Speakers: Abhilasha Bhargav-Spantzel, Partner Security Architect, Microsoft; Aanchal Gupta, CVP, Microsoft; John Leo, Jr, Managing Director - Threat and Vulnerability Management Leader, EY; and Stefano Zanero, Professor, Politecnico di Milano A Year(ish) of Countering Malicious Actors' Use of AI: What Have We Learned? @ 2:25 –3:15 PM Artificial Intelligence has changed the game when it comes to how cyber adversaries operate, and how defenders respond. This panel will explore lessons learned from the past year of countering malicious cyber actors’ use of AI, challenges and limitations of legal actions involving AI, and what roadblocks might appear going forward as AI, and the actors who use it, continues to evolve. Speakers: Sherrod DeGrippo, Director, Threat Intelligence Strategy, Microsoft; Morgan Adamski, Executive Director, US Cyber Command; Cynthia Kaiser, Deputy Assistant Director, FBI; and Sean Newell, Chief, National Security Cyber Section, National Security Division, Department of Justice 💡 Microsoft Expert Sessions | All day | Monday - Wednesday Location: Microsoft Security Hub at the Palace Hotel (Second Floor) Join Microsoft Security product leaders as they share their learnings and how you can apply them in your organization. Defending Against Modern Threats: Enhancing Endpoint Security and IT Resilience @ 8:00AM – 9:30AM Speakers: Archana Devi Sunder Rajan, Partner Group Product Manager, Microsoft and Peter M. Thompson, Principal PM Manager, Microsoft Secure and Govern AI to safeguard your data, reduce risks, and support compliance @ 10:30AM – 11:30AM Speakers: Herain Oberoi, GM, Data & AI Security, Microsoft; Rudra Mitra, Corporate Vice President, Microsoft Purview; and Neta Haiby, Director of AI Security, Microsoft Microsoft Security Copilot @ 12:00PM – 1:30PM Speaker: Dorothy Li, CVP, Microsoft Security Copilot Secure your data in the era of AI with Microsoft Purview @ 2:30PM – 3:30PM Speakers: Talhah Mir, Principal Group Product Manager, Microsoft Purview and Maithili Dandige, Partner Group Product Manager, Microsoft Purview AI and Automation Panel: The Startup Innovation for Enterprise Resilience - moderated by FC @ 2:30PM – 3:30PM **Attendees will have the opportunity to receive a copy of FC's book, How I Rob Banks, and the chance to have it signed by the author at the end of the session. Speakers: Kevin Magee, Director Cybersecurity Startups, Microsoft for Startups; FC, Co-founder & CEO, Cygenta; Shane Coleman, Chief Data Security Evangelist; Christ “Tito” Sestito, CEO, HiddenLayer; Ravid Circus, Co-founder & CPO, Seemplicity; and Jeremy Vaughan, CEO, Start Left Security 💻Theatre Sessions | Location: Microsoft Security Booth #5744 Stop by the Microsoft Security booth to catch a short demo of your favorite product. See Beyond Silos and Protect Better with Microsoft Security Exposure Management 11:00 AM –11:20 AM Accelerate your Zero Trust journey with the Microsoft Entra Suite 11:30 AM – 11:50 AM Automating Vulnerability Management: The Power of "Endpoint Vulnerability Remediation Agent" in Microsoft Intune 12:00 PM – 12:20 PM From Risk to Resilience: The Next Evolution in Multicloud Security 12:30 PM – 12:50 PM Accelerating post-breach deep content analysis and mitigation with Microsoft Purview @ 1:00 PM – 1:20 PM Microsoft Sentinel Uncovered: Advanced Capabilities to Transform the SOC @ 1:30 PM – 1:50 PM Protect AI Workloads from Code to Runtime with Microsoft Defender for Cloud @ 2:00 PM – 2:20 PM Security Copilot Agents: Autonomous, adaptive, with you in control @ 2:30 PM – 2:50 PM Unified SecOps: Defending Critical Infrastructure with Microsoft Defender @ 3:00 PM – 3:20 PM Be Fast as Lighting: Automate Microsoft Defender XDR and Microsoft Sentinel Service Delivery @ 3:30 PM – 3:50 PM Mastering Cloud Threats: Detect, Investigate, and Respond in real-time with Microsoft Defender for Cloud and Defender XDR integration @ 4:00 PM – 4:20 PM Practical Strategies for Securing AI-Driven Data: Enhancing Cyber Resilience and Insider Risk Management @ 4:30 PM – 4:50PM Secure and govern access to GenAI apps with the Microsoft Entra Suite @5:00 PM – 5:20 PM Bolster your SOC with Microsoft’s Managed Extended Detection and Response (MXDR) @ 5:30 PM – 5:50PM 🥳 Networking and Fun | Location: Microsoft Security Hub at the Palace Hotel (Second Floor) Secure & Sip: DevOps Edition @ 4:30PM – 6:30PM Speaker: Alexis Wales, CISO, GitHub Gather with GitHub’s security leaders and experts for meaningful conversations, thoughtfully crafted cocktails, and a custom ramen bar to round out your day at RSAC. 🤝 Customer Meetings | Location: Microsoft Security Hub at the Palace Hotel (Second Floor) Day 2 of meetings with Microsoft Security experts continues. Secure your spot by visiting the Microsoft Security Experiences at RSAC 2025 Home Page. https://MicrosoftSecurityEvents.eventbuilder.com/MicrosoftRSAC2025events?source=blog_techcomm 🔹 Wednesday, April 30 As the conference starts to wrap up, don’t miss your chance to get hands-on with Microsoft Security solutions and ask questions at the Hub and booth and in 1:1 meetings. 🔑 Microsoft Sessions at RSAC 2025 | Location: Moscone Center Guardians of the Cyber Galaxy: Allies Against AI-Powered Cybercrime @ 8:30 – 9:20 AM AI is revolutionizing cybercrime, putting traditional defenses to the test. Expert panelists unite to detail innovative public-private strategies and real-world case studies from their experience in INTERPOL, the FBI, Microsoft, and the Privacy & Cybersecurity Group of an international law firm. Gain actionable insights to protect the global community and fortify cybersecurity defenses. Speakers: Sean Farrell, Lead Counsel, AI Strategy, Digital Crimes Unit, Microsoft Corporation; Garylene Javier, Privacy & Cybersecurity Counsel, Crowell & Moring LLP; Craig Jones, Immediate Past Director Cybercrime, INTERPOL; and Andrew Sczygielski, Supervisory Special Agent, Federal Bureau of Investigation Green and Sustainable AI for Cybersecurity @1:15 – 2:05 PM The session will consider the carbon cost of AI and analytics. It will focus on the estimated energy and carbon costs of many cybersecurity use cases and approaches that can be taken to build more sustainable solutions. This will be illustrated through the use of a threat hunting and detection analytical solution and how that could be designed to be most power efficient. Speakers: Lesley Kipling, Chief Security Advisor, Microsoft and Sian John, CTO, NCC Group Scaling AppSec With an SDLC for Citizen Development @ 1:15 – 2:05 PM AppSec programs are difficult. Filled to the brim with vulnerabilities. Overloaded staff and inadequate budget. The common “solution” is to narrow scope and focus on crown jewels and their devs. Increasing the scope to 100x devs and 1000x apps surprisingly worked, resulting in program remediation of >50K vulnerabilities in 3 months. 18K of them in a single night. This session will show how. Speakers: Ryan McDonald, Principal Program Manager, Microsoft and Michael Bargury, Co-Founder & CTO, Zenity 💡 Microsoft Expert Sessions | All day Monday – Wednesday | Location: Microsoft Security Hub at the Palace Hotel (Second Floor) Don’t miss the final few Microsoft Security focused sessions at our Hub. Threat intelligence trends and insights panel: Exclusive briefing from Microsoft Threat Intelligence @10:30AM – 11:30AM Speakers: Sherrod De Grippo, Director of Threat Intelligence Strategy, Microsoft; Jeremy Dallman, Senior Director of Security Research in Microsoft Threat Intelligence; and Steven Masada, Assistant General Counsel, DCU Secure access for your employees with Entra Suite @ 10:30AM – 11:30AM Speaker: Irina Nechaeva, General Manager, Identity and Network Access Securing the AI Powered Enterprise Executive Panel Lunch @12:00PM – 1:30PM Speakers: Bret Arsenault, Chief Cybersecurity Advisor, Microsoft; Brandon Dixon, Partner Product Manager, Security AI Strategy, Microsoft; Manny Sahota, Director, Global Cloud Privacy, Microsoft; Herain Oberoi, General Manager, Data Security, Governance, Compliance, Privacy Business and Marketing, Microsoft; and Sarah Bird, Chief Product Officer of Responsible AI, Microsoft 💻Theatre Sessions | Location: Microsoft Security Booth #5744 Don’t miss your chance to see demos and ask questions casually at the booth. Make Windows endpoints more secure and prevent downtime 11:00 AM – 11:20 AM Unlocking Opportunities: A Guide to Partnering with Microsoft 11:30 AM – 11:50 AM EY Security Copilot Empowered Solutions 12:00 PM – 12:20 PM Microsoft Security Copilot: Protect at the speed and scale of AI 12:30 PM – 12:50 PM Phishing-Resistant Authentication, Trusted Onboarding & Recovery @ 1:00 PM – 1:20 PM Building a multi-layered approach to data security SOC @ 1:30 PM – 1:50 PM Secure your email and collaboration tools against sophisticated cyber attacks @ 2:00 PM – 2:20 PM The latest intelligence on North Korean remote IT workers @ 2:30 PM – 2:50 PM Secure and govern M365 Copilot with Microsoft Purview @ 3:00 PM – 3:20 PM Proactively Mitigate Risks with Microsoft Security Exposure Management @ 3:30 PM – 3:50 PM Windows 365: The security of Windows, the scale of the cloud@ 4:00 PM – 4:20 PM Shift your SOC from manual incident response to automatic attack disruption @ 4:30 PM –4:50PM A Look Inside Microsoft’s Secure Future Initiative: Progress, Innovations, and Best Practices @ 5:00 PM – 5:20 PM Simplifying Data Security for the Modern Network with Microsoft Purview and Netskope One @ 5:30 PM – 5:50 PM 🤝 Customer Meetings | Location: Microsoft Security Hub at the Palace Hotel (Second Floor) It's your final chance to ask your questions and give your suggestions directly to Microsoft Security experts. Book your meeting here: Microsoft Security Experiences at RSAC 2025 Home Page. 🔹 Thursday, May 1 🔑 Microsoft Sessions at RSAC | Location: Moscone Center Last but certainly not least. Shaping Cybersecurity: How Regulation Shapes Operational Cyber Defense @ 10:50 – 11:40AM In 2024, elections and growing cyberthreats pushed cybersecurity to the forefront of government priorities. The panel will explore governments’ efforts to strengthen cybersecurity and resilience through regulation, the impact on operational cyber defense, and discuss where greater alignment is possible. Attendees will gain an understanding of the quickly evolving global regulatory landscape. Speakers: Ted Maurer, Senior Director, Global Cybersecurity Policy, Microsoft; Christiane Kirketerp de Viron, Director for Digital Society, Trust & Cybersecurity, DG Connect, European Commission; Ari Schwartz, Managing Director, Cybersecurity Services, Venable LLP; Josephine Wolff, Associate Professor of Cybersecurity Policy, Tufts University, The Fletcher School; and Florian Schütz, Director, NCSC - National Cybersecurity Centre Taking the Fight Upstream: Pursuing Systemic Defense Against Phishing 12:20 – 11:10 PM Three decades into the public internet, cybercrime is booming and phishing remains a key vector. With AI-enhanced attacks rising, common users are increasingly ill-equipped to defend themselves. What can be done upstream to protect society? This session explores systemic defense strategies across the ICT ecosystem that hold the potential for significant ecosystem-wide impact. Speakers: Kelly Bissell, CVP Security & Fraud, Microsoft; Tal Goldstein, Head of Strategy, World Economic Forum Centre for Cybersecurity; Steven Kelly, Chief Trust Officer, Institute for Security and Technology; and Kemba Walden, President, Paladin Global Institute, Paladin Capital Group Fraud, Risk, Hollywood & Government—A Strategy for AI Across Industry 12:20 – 11:10 PM Dive into the high-stakes world of AI as the experts in this session unravel AI’s game-changing roles in Hollywood, government, and finance. Experience firsthand revolutionary strategies, ethical showdowns, and futuristic trends set to redefine industry landscapes. Get ready for a session that’s as dynamic and ambitious as a Hollywood blockbuster! Speakers: Vishal Amin, GM, National Security Group, Security; Gurpreet Bhatia, Acting Deputy CIO for Cybersecurity, Acting CISO, DOD; David Mahdi, CIO, Transmit Security; and Scott Mann, Film Director & Co-Founder/Co-CEO, Flawless Generative AI Meets Identity Governance: Automating the Overlooked @ 1:30 – 2:20 PM Identity governance is often the last thing to be implemented and rarely gets the attention it deserves due to its complexity. This session will explore how Generative AI agents can help overcome this by automating critical but often deprioritized tasks like role mining and identity lifecycle management, particularly addressing the challenges of managing 'movers' within organizations. Speakers: Angelica Faber, Sr Security Architect, Microsoft and Wesley Kuzma, Architect Manager, Microsoft 💻Theatre Sessions | Location: Microsoft Security Booth #5744 Catch the last day of theater sessions. How Enterprises will Continue to Learn from Open Source 11:00 AM – 11:20 AM Creating Bespoke Identity Governance Solutions with Microsoft Entra Suite 11:30 AM – 11:50 AM Identity-first security: Using an event-based approach for threat remediation @ 12:00 PM – 12:20 PM Securing and governing Agents built-in Microsoft Copilot Studio @ 12:30 PM – 12:50 PM Azure Platform Security in an Evolving Threat Landscape @ 1:00 PM – 1:20 PM 🎯 How to Make the Most of Microsoft Security at RSAC 2025 ✅ Plan Ahead: Bookmark this blog to easily find the things that interest you the most. ✅ Visit the Booth: Engage with our security experts and experience live demos. ✅ Follow Along Online: Stay updated by following Microsoft Security on LinkedIn and X. ✅ Book a Meeting: Want to connect 1:1 with a Microsoft Security expert? Secure your spot by visiting the Microsoft Security Experiences at RSAC 2025 Home Page. See you at RSAC 2025!Tech Accelerator: Azure security and AI adoption
Are you looking for guidance on how to effectively integrate security best practices within your Azure and AI projects? We know the pace of technological innovation offers as many opportunities as it does challenges. However, security cannot be an afterthought as you create Azure deployments and accelerate AI solutions. That’s why we’re inviting you to attend Tech Accelerator: Azure Security and AI Adoption on April 22. Designed for developers and cloud architects, this one-day virtual event will equip you with the essential guidance and resources you need to securely plan, build, manage, and optimize your Azure deployments and AI projects. Why should you attend? During this event, you will learn how to leverage Microsoft security guidance, products, and tooling throughout your cloud journey - from the time you consider Azure to the point that you’re regularly managing and optimizing workloads. Discover how Microsoft protects its platform, how to identify security risks in your Azure environments, protect your infrastructure from security threats, design secure AI environments, and build and protect your AI applications. What can you expect? During this event, you'll have the opportunity to: Learn from the experts: Get in-depth technical guidance from Microsoft experts to secure your Azure deployments and AI applications. Engage with the community: Connect with fellow developers, cloud architects, and IT professionals. Event details Dates: April 22, 2025 Duration: 8:00-11:30 AM Pacific Time Format: One keynote + six 25-minute sessions with technical guidance and demos April 22, 2025: Session Time Security: An essential part of your Azure and AI journey (keynote) 8:00 AM PT Secure by design: Azure datacenter and hardware security 8:30 AM PT Azure platform security: Embedded features and use cases 9:00 AM PT Enhancing security for cloud migration 9:30 AM PT How to secure your AI environment 10:00 AM PT How to design and build secure AI projects 10:30 AM PT Safeguard AI applications with Microsoft Defender for Cloud 11:00 AM PT All sessions will be streamed live on the Microsoft Tech Community platform with live Q&A during the event with the speakers and subject experts. Q&A will close at 12:00 PM PT on Friday, April 25, 2025. Sessions will be available on demand immediately, so you can watch at your convenience. Registration is not required. On each session page, you can find an Add to calendar link. Click the Attend button on the page to receive reminders. Please post questions early and often; we're here to help! Please save the date and join us: https://aka.ms/AzureEssentialsEvent
