Here are six minutes of the best moments of CISO Series Video Chat, “Hacking Windows Security: An hour of critical thinking on securing servers, workstations, and Active Directory”.

Watch the full video

Our guests for this discussion were:

Got feedback? Join the conversation on LinkedIn.

HUGE thanks to our sponsor Blumira

CISOs are all trying to do more with less these days; balancing compliance, security and business objectives. Consolidate your security with one end-to-end detection and response platform. Blumira works as a force multiplier, enabling your small teams to detect threats and respond to them quickly. Get a free 14-day trial of Blumira’s cloud SIEM that you can deploy in hours, not weeks or months. That’s Blumira.com.

Best Bad Ideas

Congrats to Kevin Hakanson, principal cloud solutions architect, OpsCompass for winning this week’s Best Bad Idea.

Other honorable mentions go to:

“Revert all systems to Windows 95 and Windows Server 3.0 because no malicious attacker is old enough to know how to breach completely unsecured systems.” – Andrew Aken, zero trust lead technical architect, Twitter

“Get your security advice from Clippy.” – Shawn M Bowen, CISO, Restaurant Brands International

“Go so old school that nobody knows how to attack you – Windows ME over a token ring network.” – Dutch Schwartz, principal security specialist, AWS

Best quotes from the chatroom

“You can get visibility in cloud. Just needs to be designed in Azure != whole cloud. The VM/containers/workloads have great observability options.” – David Zendzian, VMware Tanzu global field CISO, VMware

“We know more about what needs to be protected in on-prem Active Directory. Lack of visibility in Azure Active Directory (especially with Microsoft’s track record) is certainly an issue.” – Andrew Aken, zero trust lead technical architect, Twitter

“I just think local Active Directory creates such a dependency for on prem or VPN connectivity to really be an effective management tool and we are in a remote world now where Azure Active Directory / Intune / autopilot managed devices can take policy securely over public Internet.” – Jason Connors, information technology director, Marlin Equity Partners

“Let’s be honest, there isn’t another directory out there that competently does computers, groups, and user objects.” – Paul Lanzi, COO, Remediant

“The quickest way to increase your security budget is… Have a breach.” – Patrick Garrity, vp of operations, Blumira