Link to Spanish podcast

The Azure Security Podcast  

A twice-monthly podcast dedicated to Security, Privacy, Compliance, Governance and Reliability on the Microsoft Cloud Platform. Hosted by Microsoft security experts Michael Howard, Sarah Young, Gladys Rodriguez and Mark Simos. Meet the team.

Apple RSS logo   Listen on Spotify  RSS.com logo   Listen on Google Play Music  Listen on Amazon Podcasts 

  Episode 88 - December 1st, 2023 - [Attacker's Guide to Securing SQL Server]

  Episode 87 - November 15th, 2023 - [Advances in Always Encrypted and Transparent Data Encryption]

  Episode 86 - October 30th, 2023 - [Zero Trust Playbook]

In this episode Michael talks with guest Nikhil Kumar  ( ) and our own Mark Simos about a new book they have co-authored named "Zero Trust Playbook Series Zero Trust Overview and Playbook Introduction: Actionable Guidance for Business, Security, and Technology Leaders and Practitioners."

Links

  Episode 85 - October 11th, 2023 - [Security Response and Bug Bounties]

In this episode Michael and Sarah talk with guest Madeline Eckert  ( ) about Security Bug Bounties.
We also discuss Azure Security news about SQL Server 2022, Azure certificate changes, TLS 1.0 and 1.1 deprecation, GitHub security scanning, Ransomeware defenses, Zero Trust and more; and by 'more' we mean lock-picking!

Links

  Episode 84 - September 22nd, 2023 - [Attack Simulation]

  Episode 83 - August 14th, 2023 - [PowerShell Automation and Scripting for Cybersecurity]

In this episode Michael and Sarah with guest Miriam Wiesner  ( ) about her new book, "PowerShell Automation and Scripting for Cybersecurity" which comes out soon.

We also discuss Azure Security news about: Azure SQL DB Always Encrypted improvements, Azure SQL Managed Instance, App Gateway for Containers and Bring your own Key for AKS Ephemeral Disks.

Links

  Episode 82 - August 8th, 2023 - [Modern Security Strategy]

In this episode Michael and Mark talk with Microsoft Security MVP Truls Dahlsveen  ( ) about modern security strategy. Actually, Mark and Truls mainly do the talking :)
We also discuss Azure Security news about Application Gateway TLS policy, Defender for IoT and the Zero Trust Commandments.

Links

  Episode 81 - July 28th, 2023 - [Auditing in Azure SQL Database]

In this special episode Michael talks to prior podcast guest and Azure SQL DB colleague Sravani Saluru  ( ) about how to configure, monitor and manage audit logging in Azure SQL Database. She also shares some inside hints and tips!

Links

  Episode 80 - July 14th, 2023 - [Incident Response]

In this episode Michael and Sarah talk with guest Matt Zorich  ( ) about Microsoft's Incident Reponse process and services.
We also discuss Azure Security news about Azure Monitor RBAC and some Web Application Firewall (WAF) updates.

Links

  Episode 79 - June 13th, 2023 - [Threat Intelligence with MSTICPy]

In this episode Michael and Sarah talk with guest Thomas Roccia  ( ) about threat intelligence and MSTICPy and more.
We also discuss Azure Security news about Azure Files SMB shares, Private Link support for Application Gateway, Managed Identities support for Capture in Event Hubs and more.

Links

  Episode 77 - May 19th, 2023 - [Securing Infrastructure as Code (IaC)]

In this episode Michael, Gladys and Mark talk with guest Anthony Shaw  ( ) about what he looks for when reviewing Infrastructure as Code files, and some of the best practices he has learned over the years. He also made a fantastic comment:
    "Security pops up a lot when you stick things on the Internet"
Sarah is away in Singapore, presenting at Blackhat Asia 2023!
We also discuss Azure Security news about DDoS, Cosmos DB, Microsoft Defender for APIs, Load Balancer, Zero Trust and discovering Internet-facing devices.

Links

  Episode 76 - May 3rd, 2023 - [Microsoft Security Research]

In this episode Michael, Sarah, and Mark talk with guest Negar Shabab  ( ) about her work in Microsoft's Security Research group.
We also discuss Azure Security news about new Confidential Computing VMs, SQL Server, T-SQL Parsing, Auditing in Azure SQL DB, Sentinel and more.

Links

  Episode 75 - April 13th, 2023 - [Latest Microsoft Defender for Cloud News]

In this episode Michael, Sarah, Gladys and Mark talk with a good friend of the Podcast, Yuri Diogenes  ( ) about the latest Microsoft Defender for Cloud news.
We also discuss Azure Security news about Trusted VM Launch, Chaos Studio, Azure SQL DB, DDoS protection, Confidential Containers, Firewall and more.

Links

  Episode 73 - March 17th 2023 - [Microsoft Defender for Cloud as Code]

In this episode Michael and Gladys talk with guests Sean Wesonga  ( ) and Bojan Magusic  ( )  about using Infrastructure as Code (IaC) with Microsoft Defender for Cloud.
We also discuss Azure Security news about new Azure SQL Database migration abilities for authentication and Transparent Data Encryption (TDE).

Links

  Episode 72 - February 28th, 2023 - [The team reflects after almost three years]

In this episode Michael, Sarah, Gladys and Mark interview each other!

The Podcast is almost three years old, and things have changed for each of us, so we thought we'd re-introduce ourselves, reflect, give career advice, and talk about what's top of mind for each of us!
We also discuss Azure Security news about SQL Server and Azure SQL DB, MFA and AAD, AAD and IPv6, new SC-100 study guide and more.

Links

  Episode 71 - February 15th, 2023 - [ANNOUNCEMENT: Azure SQL DB, Always Encrypted with VBS Secure Enclaves ]

In this episode Michael talks with guest Pieter Vanhove  ( ) about a new addition to the Always Encrypted family: Always Encrypted with Virtualization-Based Security (VBS) Enclaves. This new feature is available today in Public Preview.
Links

  Episode 70 - February 9th, 2023 - [Microsoft Purview]

In this episode Michael and Sarah talk with guests Beau Faull  ( ) and Lou Mercuri  ( ) about Microsoft Purview. Beau and Lou are also co-hosts of the Coast2Coast Podcast.

We also discuss Azure Security news about Trusted Boot VMs, Sentinel and Defender for Cloud.

Links

  Episode 69 - January 29th, 2022 - [Secure Software Supply Chain and SBOM]

In this episode Michael and Mark talk with guest Adrian Diglio  ( ) about Secure Software Supply Chain and Software Bill of Materials or SBOM.
We also discuss Azure Security news about SQL Server, Azure SQL DB, Azure Database for MySQL, Azure Database for PostgreSQL and Application Secure Groups in Private Endpoints. Mark goes over MCRA, Immutable Laws of Cybersecurity and Security Architecture Design.

Links

  Episode 68 - December 7nd, 2022 - [SQL Server 2022]

In this episode Michael sits down with Ajay Jagannathan  ( ) to talk about the recent release of SQL Server 2022 especially some of the new security features and hooks into Azure.
We also discuss other SQL database security news.

Links

  Episode 67 - November 24th, 2022 - [Privileged Access]

In this episode Michael and Sarah talk with guest Bronwyn Mercer  ( ) about Privilegd Access.
We also discuss Azure Security news about Defender for DevOps, ARM, Application Gateway, and Managed HSM.

'Designing and Developing Secure Azure Solutions' from Microsoft Press is now available!

Links

  Episode 65 - November 4th, 2022 - [Microsoft Defender for Threat Intelligence]

  Episode 64 - October 14th, 2022 - [SQL Server Permission Model]

In this episode Michael talks with guest Andreas Wolter  ( ) about SQL Server and Azure SQL Database permissions. If you have never gotten your head around SQL Server permissions, you came to right place! Andreas and Michael are colleagues in the Azure Data Platform.

Links

  Episode 62 - September 28th, 2022 - [Microsoft Defender for Endpoint Tamper Protection]

In this episode Michael, Sarah, Gladys and Mark talk with guest Josh Bregman  ( ) who is a Principal Product Manager at Microsoft about Microsoft Defender for Endpoint and a feature that makes it harder for bad actors to change sensitive security-related settings that could disable security software.
We also cover the latest security news about Synapse SQL, Service Bus, Storage, Redis, Azure SQL, MySQL, AKS, Managed Disks and Microsoft Defender.

Links

  Episode 61 - August 26th, 2022 - [Operational Technology (OT) Security]

  Episode 60 - August 23th, 2022 - [Defender for Cloud]

In this episode Michael, Gladys and Mark talk with guest Safeena Begum  ( ) about current Microsoft Defender for Cloud news as well as using it to monitor AWS and GCP.
We also discuss Azure Security news about changes to Certificate Authority root certificates in Azure, Microsoft Entra and threat intelligence.

Links

  Episode 59 - August 9th, 2022 - [CISO Workshop]

In this episode Michael and Sarah talk to Mark about the updated Chief Information Security Officer (CISO) Workshop.
We also discuss Azure Security news about Gateway Load Balancer, Azure Database for MySQL, Confidential Ledger and Trusted Launch.

Links

  Episode 58 - July 22nd, 2022 - [Latest Innovations in Azure Confidential Computing]

In this episode Michael geeks out with guests Vikas Bhatia () and Run Cai () about some of the recent announcements about Azure Confidential Computing. Most importantly, the recent release of Azure Confidential Computing VMs from AMD.

Links

  Episode 57 - July 12th, 2022 - [Microsoft Sentinel Content Hub]

In this episode Michael, Sarah, Gladys and Mark talk with guest Roey Ben Chaim  ( ) about the plethor of material available as part of the Microsoft Sentinel Content Hub.
We also discuss Azure Security news about: Microsoft Entra Permissions Management, MSTICPy 2.0, Microsoft Purview, Azure Monitor Agent, Azure Backup, App Insights and the table of contents from Designing and Developing Secure Azure Solutions :)

Links

  Episode 56 - July 8th, 2022 - [Microsoft Defender Advanced Hunting]

In this episode Michael talks with guest Michael Melone  ( ) a Principal Product Manager in the Microsoft 365 Defender team about tips tricks and tools available to help hunt adversaries using Microsoft 365 Defender.
We also discuss Azure Security news about MySQL, AKS, Comsos DB, and API Management.

Links