Phillip Wylie Show

Sean Metcalf: Active Directory Security

Listen Later

Summary

 

In this episode of the Phillip Wylie Show, Sean Metcalf, an

expert in Active Directory security, discusses his journey into cybersecurity, the evolution of Active Directory and Azure AD, and the common mistakes organizations make in cloud security. He emphasizes the importance of security assessments over penetration testing and shares insights into Trimarc's unique approach to security assessments. Sean also highlights the significance of scripting in security roles and discusses the future of Active Directory in hybrid environments. The episode concludes with information about Trimarc's new product, Trimarc Vision, aimed at enhancing Active Directory security.

 

Takeaways

 

  • Sean Metcalf has assessed environments with up to 960,000
    • users.
  • Active Directory security is often overlooked in
    • organizations.
  • Many organizations are making the same security mistakes in
    • the cloud as they did on-premises.
  • Security assessments are crucial for identifying potential
    • vulnerabilities.
  • Trimarc uses proprietary tools for in-depth security
    • assessments.
  • Scripting knowledge, especially in PowerShell, is beneficial
    • for security professionals.
  • Active Directory is not going away anytime soon due to
    • legacy applications.
  • Organizations should conduct security assessments every
    • couple of years.
  • Trimarc's assessments provide actionable insights for
    • improving security.
  • The new Trimarc Vision product aims to enhance Active
    • Directory security monitoring.

     

    Sound Bites

     

    • "It's been quite a year."
    • "I saw something change in the URL."
    • "We're the identity experts."

      •  

      Chapters

       

      00:00 Introduction to Active Directory Security

      03:33 Sean Metcalf's Hacker Origin Story

      06:20 The Evolution of Active Directory and Azure AD

      09:31 The Importance of Specialization in Cybersecurity

      12:30 Active Directory Security Challenges

      15:39 The Role of Security Assessments

      18:26 Comparing Trimarc and Bloodhound

      20:56 Understanding Active Directory Security Assessments

      22:35 Getting Started in Active Directory Security

      25:30 The Importance of Scripting in Security

      34:43 The Hybrid Environment: On-Prem vs Cloud

      37:23 Trimarc's Unique Services and Assessments

      40:17 Frequency of Active Directory Assessments

      42:21 Introducing Trimarc Vision

       

      Resources

      https://www.linkedin.com/in/seanmmetcalf/

      https://x.com/PyroTek3

      https://www.linkedin.com/company/trimarcsecurity/

      https://x.com/TrimarcSecurity

      https://www.trimarcsecurity.com/

      https://adsecurity.org/

       

       

      ...more
      View all episodesView all episodes
      Download on the App Store
      Phillip Wylie ShowBy Phillip Wylie
      • 5
      • 5
      • 5
      • 5
      • 5

      5

      16 ratings

      More shows like Phillip Wylie Show

      View all
      Risky Business by Patrick Gray

      Risky Business

      361 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      626 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      364 Listeners

      Hacked by Hacked

      Hacked

      182 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,009 Listeners

      Smashing Security by Graham Cluley & Carole Theriault

      Smashing Security

      312 Listeners

      Click Here by Recorded Future News

      Click Here

      396 Listeners

      Malicious Life by Malicious Life

      Malicious Life

      928 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      7,859 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      168 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      187 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      77 Listeners

      Cyber Security Headlines by CISO Series

      Cyber Security Headlines

      117 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      33 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      158 Listeners