Link to Spanish podcast

The Azure Security Podcast  

A twice-monthly podcast dedicated to Security, Privacy, Compliance, Governance and Reliability on the Microsoft Cloud Platform. Hosted by Microsoft security experts Michael Howard, Sarah Young, Gladys Rodriguez and Mark Simos. Meet the team.

          

  Episode 94 - April 1st, 2024 - [Copilot for Security]

In this episode Michael, Sarah and Mark talk with guest Ryan Munsch  ( ) about the newly released Copilot for Security.
We also discuss Azure Security news about Azure SQL DB, SSMS 20, Change Actor, Copilot for Azure SQL DB, Azure Container Apps, AI Prompt Shields, AI Groundedness Detection and BlueHat India and Israel.

Links

  Episode 93 - March 25th, 2024 - [Continuous SDL]

In this episode Michael, Sarah and Mark talk with guests Tony Rice  ( ) and David Ornstein about advances in Continuous SDL (Security Development Lifecycle).
We also discuss Azure Security news about Azure Key Vault, Cloud PKI, OAuth2, updated SQL Server password verifiers, Memory Safety and Azure SQL DB.

Links

  Episode 92 - March 15th, 2024 - [Global Azure (Security)]

In this episode Michael and Sarah talk with guest Martin Abbott  ( ) about the Global Azure event that starts soon, https://globalazure.net/. We talk about how to successfully fill out a Call for Papers (CFP) so YOU can present to a global audience about security topics that interest you.
We also cover security news AI security, SQL Always Encrypted, SymCrypt and Rust, SQL Security Fundamentals, and free Security 101 material.

Links

  Episode 91 - February 13th, 2024 - [Chaos Studio]

In this episode Michael talks with guest Rigel Carlson   ( ) about Azure Chaos Studio.
We also discuss Azure Security news about Midnight Blizzard and Michael has some advice about using Azure's DefaultAzureCredential()

Links

  Episode 90 - January 24th, 2024 - [AI red teaming]

  Episode 89 - December 18th, 2023 - [Our Year-end Thoughts]

In this episode Michael, Sarah, Gladys and Mark discuss what is top of mind as we draw to the end of 2023. Topics include what work we've done over the year, as well as items from Ignite. There's also a discsussion of EQ and IQ and a different sign-off! See you all in 2024!

Links

  Episode 88 - December 1st, 2023 - [Attacker's Guide to Securing SQL Server]

In this episode Michael talks with guests Sharath Unni  ( ) and Raul Garcia  ( ) about securing Azure SQL DB, SQL MI and SQL Server through the eyes of an attacker.

Links

  Episode 87 - November 15th, 2023 - [Advances in Always Encrypted and Transparent Data Encryption]

In this episode Michael talk with colleagues Pieter Vanhove  ( ) and Mirek Sztajno about recent updates to Always Encrypted and Transparent Data Encryption (TDE) in SQL Server 2022 and Azure SQL DB.

Links

  Episode 86 - October 30th, 2023 - [Zero Trust Playbook]

In this episode Michael talks with guest Nikhil Kumar  ( ) and our own Mark Simos about a new book they have co-authored named "Zero Trust Playbook Series Zero Trust Overview and Playbook Introduction: Actionable Guidance for Business, Security, and Technology Leaders and Practitioners."

Links

  Episode 85 - October 11th, 2023 - [Security Response and Bug Bounties]

In this episode Michael and Sarah talk with guest Madeline Eckert  ( ) about Security Bug Bounties.
We also discuss Azure Security news about SQL Server 2022, Azure certificate changes, TLS 1.0 and 1.1 deprecation, GitHub security scanning, Ransomeware defenses, Zero Trust and more; and by 'more' we mean lock-picking!

Links

  Episode 84 - September 22nd, 2023 - [Attack Simulation]

In this episode Michael, Sarah, Gladys and Mark talk with guest Roberto Rodriguez  ( ) about attack simulation, Cloud Katana and AI.
We also discuss Azure Security news about Azure SQL DB, Azure Key Vault, Cosmos DB, Trusted Launch VMs, Azure Artifacts, Zero Trust, Windows and TLS and Entra ID.

Links

  Episode 83 - August 14th, 2023 - [PowerShell Automation and Scripting for Cybersecurity]

In this episode Michael and Sarah with guest Miriam Wiesner  ( ) about her new book, "PowerShell Automation and Scripting for Cybersecurity" which comes out soon.

We also discuss Azure Security news about: Azure SQL DB Always Encrypted improvements, Azure SQL Managed Instance, App Gateway for Containers and Bring your own Key for AKS Ephemeral Disks.

Links
  • (Use 20MIRIAM at checkout)

  Episode 82 - August 8th, 2023 - [Modern Security Strategy]

In this episode Michael and Mark talk with Microsoft Security MVP Truls Dahlsveen  ( ) about modern security strategy. Actually, Mark and Truls mainly do the talking :)
We also discuss Azure Security news about Application Gateway TLS policy, Defender for IoT and the Zero Trust Commandments.

Links

  Episode 81 - July 28th, 2023 - [Auditing in Azure SQL Database]

In this special episode Michael talks to prior podcast guest and Azure SQL DB colleague Sravani Saluru  ( ) about how to configure, monitor and manage audit logging in Azure SQL Database. She also shares some inside hints and tips!

Links

  Episode 80 - July 14th, 2023 - [Incident Response]

In this episode Michael and Sarah talk with guest Matt Zorich  ( ) about Microsoft's Incident Reponse process and services.
We also discuss Azure Security news about Azure Monitor RBAC and some Web Application Firewall (WAF) updates.

Links

  Episode 79 - June 13th, 2023 - [Threat Intelligence with MSTICPy]

In this episode Michael and Sarah talk with guest Thomas Roccia  ( ) about threat intelligence and MSTICPy and more.
We also discuss Azure Security news about Azure Files SMB shares, Private Link support for Application Gateway, Managed Identities support for Capture in Event Hubs and more.

Links

  Episode 78 - June 2nd, 2023 - [Entra Permissions Management]

In this episode Michael and Gladys talk with guests Marcelo di lorio  ( ) and Neil Walker  ( ) about all the latest news in Microsoft Entra Permissions Management.
We also discuss Azure Security news about Microsoft Build, Confidential Computing, Key Vault, SQL MI, and Azure Content Safety.

Links

  Episode 77 - May 19th, 2023 - [Securing Infrastructure as Code (IaC)]

In this episode Michael, Gladys and Mark talk with guest Anthony Shaw  ( ) about what he looks for when reviewing Infrastructure as Code files, and some of the best practices he has learned over the years. He also made a fantastic comment:
    "Security pops up a lot when you stick things on the Internet"
Sarah is away in Singapore, presenting at Blackhat Asia 2023!
We also discuss Azure Security news about DDoS, Cosmos DB, Microsoft Defender for APIs, Load Balancer, Zero Trust and discovering Internet-facing devices.

Links

  Episode 76 - May 3rd, 2023 - [Microsoft Security Research]

In this episode Michael, Sarah, and Mark talk with guest Negar Shabab  ( ) about her work in Microsoft's Security Research group.
We also discuss Azure Security news about new Confidential Computing VMs, SQL Server, T-SQL Parsing, Auditing in Azure SQL DB, Sentinel and more.

Links

  Episode 75 - April 13th, 2023 - [Latest Microsoft Defender for Cloud News]

In this episode Michael, Sarah, Gladys and Mark talk with a good friend of the Podcast, Yuri Diogenes  ( ) about the latest Microsoft Defender for Cloud news.
We also discuss Azure Security news about Trusted VM Launch, Chaos Studio, Azure SQL DB, DDoS protection, Confidential Containers, Firewall and more.

Links

  Episode 74 - April 7th, 2023 - [What's New in Azure Policy]

In this episode Michael and Mark talk with guest Kemley Nieva  ( ) about the latest news in Azure Policy.
We also discuss Azure Security news about Microsoft Security Copilot, Azure Cache for Redis, Azure SQL Database, Azure SQL Managed Instance, Azure Monitor, API Management, Azure Maps, Azure Functions, Azure Backup and VMs.

Links