David das Neves

David is a Premier Field Engineer at Microsoft Germany. His specialties are Dev, Powershell and Windows 10 Client and he is focused in client workshops and dev requests. Beside his work he writes his own blog and speaks at conferences on PS/Dev topics.

PowerShell Security Prioritization List

PowerShell Security is a very wide topic. Starting with Signing, Logging, WEF, Remoting, Privileged Access Management moving on to enforced Constrained Language Mode, AMSI, JEA, Exploit Guard and much more. But where to start and where to end? David will explain how the complex technology map can be divided into a prioritization list (adoption roadmap) by using a graph. In this session you will see how this graph is created and how we can retrieve many insights out of it.

Eric Berg

Eric is a MVP for Cloud and Datacenter Management since 2015, but was active member of several communities for several years. He is working as a Principal IT-Architect at COMPAREX AG. His main areas are: Infrastructure, Datacenter Management, Hyper-V, System Center and Microsoft Azure. He is known as a speaker from Events like ExpertsLive Europe, CDC Germany and Microsoft Ignite. His motto: “The community lives from the community and only those who join in keep her alive!”

Aure Automation and Security – better together

In this session we will have a look into the integration of Azure Automation in your Cloud and On-Premises environments. We will focus on actual features and have a look at some new ideas in Azure. At the same time it is important to think about securing your Azure Automation environment, while keeping it simple but secure. The session is driven by some live demos of Best Practices and things that could go wrong.

Hasain Alshakarti 

Hasain Alshakarti is a world leading IT security expert with a strong focus on networks, PKI and certificates. He’s a senior IT security consultant at TrueSec with deep experience of numerous design projects, audits as well as advanced implementation projects and penetration testing of systems.

For his hard, solid achievements over the years, Hasain has been rewarded “Sweden’s leading IT security expert” and Microsoft Most Valuable Professional(MVP) in Enterprise security multiple times. He is a sought-after speaker and extremely popular instructor at various events worldwide.

Hasain is also an active member of Microsoft Extended Experts Team(MEET) and one of the few that successfully combines his expertise in application development and IT technology.

Alexander Benoit

Alexander Benoit is a Senior Consultant and Head of Competence Center Microsoft at sepago, where he leads and develops the consulting business with his team. His focus is on enterprise security and modern management for 10 years. He brings his everyday experience from the enterprise environment into the community actively. He is also MVP for Enterprise Mobility the Community Lead of “Trust in Tech” and the host of GeekSprech Podcast.

Stephan Gerling  

Stephan Gerling is a 48 year old electronic technican, who works in the oil and gas industry more than 17 years. Before that, he joined the german army for more than 6 years as Navigation electronical expert for Helicopters. During this time, he was in several missions across the world. Electronical and mechanical background is his force to look from both sides on security. And last but not least, he his a volunteer firefighter more than 30 Years. He knows to be “under fire”.

Mike Hamilton

Creating innovative products is in the DNA of everyone at Ziften, and purpose building the future of endpoint security drives Chief Product Officer Mike Hamilton. When Mike isn’t getting his hands dirty with customers or speaking at conferences, Mike spends his days at Ziften shaping and guiding the overall product strategy and vision of Ziften. As a former ASIC designer in the network processor space, he has 15 years of security experience from bits and bytes on a wire all the way to security analytics and endpoint/server security.

Christina Lekati is a Social Engineering expert and ethical human hacker.  Raised by a sought-after cyber security expert, she found herself magnetized by the security field and many times found herself in projects that were beyond her age, giving her interesting stories to tell and an edge in her own knowledge and experience. She proceeded in earning a bachelor’s degree in psychology and a distinction in her master’s degree, due to her thesis on social engineering. Christina has participated among other things, in forensic investigations within companies, and in needs and vulnerabilities assessments. She is currently working with Cyber Risk GmbH, a provider of cyber security training programs, as a social engineering expert and trainer. Christina also enjoys speaking at cyber security events.

Hasain Alshakarti 

Securing Privileged Access First

Cyber-attackers target accounts and other elements of privileged access to rapidly gain access to targeted data and systems using credential theft and reuse attacks like token manipulation, Pass-the-Hash and Pass-the-Ticket.

Traditional security approaches have focused on using the organizations network as the primary security perimeter, but the network security is often bypassed especially when data and resources are hosted outside the traditional network boundary or when the adversaries obtains access on workstations inside the network boundary through phishing and other attacks.

Using examples from incidents, attacks and red team assignments to demonstrate the importance of governing privileged access and how it minimizes your organization’s attack surface and thwart in-progress attacks.

DIY – Cybersecurity Detection and Response Today’s biggest challenge is that many organizations are not capable of detecting security breaches and are not able to properly respond to attacks. The major failure noted when investigating a breach is the gap between the speed of compromise and the speed of detection.

IT security needs to shift from prevention and protection to investing in capabilities that can detect a threat when it occurs. Responders must be able to act quickly while investigating a threat and the potential business impact of the breach.

Using insights from numerous incident cases we walk you through a sample attack to showcase the importance of good detection and response capabilities.

Alexander Benoit

The new era of endpoint security. Why you should at least build showcases to detect, analyse and react to cyber-attacks now!

Cyber Security & Defense is the emerging topic of the IT industry these days. A secure environment is no longer just a well-maintained firewall or a well-managed network. Rather, it is made up of several layers. However, most companies are „reactive“ instead of „proactive“, or neither, when it comes to securing their IT environments and detecting security breaches. In addition to this, the product portfolio and the security market is changing rapidly, and these changes make our jobs as IT Professionals significantly more difficult. But how can we deal with this challenge? In my session I will take a look into supposed “obvious“ security threats and how the Microsoft Cybersecurity stack can help to detect attackers and threats that have evaded our defenses.

Stephan Gerling  

“Do not forget the physical security.” When planning and reality clash”

Today i want to Talk about some time on physical security and pitfalls.

We will learn about facility access and their pitfalls in implementations. Do’s and don’ts in access controlls

and that the proper selection of a transponder type should be in focus.

Once in, we learn about things that could happen inside a building and what counter measures we could implement.

Part 1

Physical Access to property

here we will learn about pitfalls in desinging or implementing security controlls to enter a property

– fences, gates

– access controls

– card systems

Part 2

threats inside a building

– what could happens when a few minutes unattended

– rouge devices

– spy tools

Part 3

What we can do

– countermeasures

– tips and tricks

Mike Hamilton

The Lost Boys – How Linux and Mac platforms intersect with a Windows-centric Security World

So often the fact that Windows has such a large market share of the desktop/laptop market renders Linux and Mac as the Lost Boys in the world of security.  The session will focus on how neglecting Linux and Mac systems in your environment can radically affect your overall security posture.  We’ll cover quite a few real-world scenarios to highlight the importance of ensuring full and total coverage of endpoints, servers and cloud infrastructure, regardless of operating system.

Social Media: How you make yourself a target and help obstruct corporate security

In today’s world, online presence is important. Social networking profiles can create a competitive advantage for many organizations and individuals. Despite the benefits, a strong online presence can also become a vulnerability. Christina Lekati, a social engineering expert, will explain how the online presence of a company’s employees on social media can attract social engineers to target them, and then use them as “open doors” through the organizational security. The talk will cover the topic of information gathering through social media (information gathering is the most common denominator in every social engineering attack) and explain how even seemingly innocent information can be exploited and used to manipulate targets. The talk includes a two-part demonstration on how a hacker’s mind works when harvesting information on social media; The first part includes real examples of posts that expose vulnerabilities, attract attackers and ultimately lead to security breaches. The second part includes a demonstration on how the information one provides online are gathered, categorized, analyzed and then used to craft an attack, as well as how one ends up revealing online more than one intends to. The talk closes with practical recommendations and best practices. Keep in mind, that the purpose on this talk is not to turn people away from using online platforms but rather, to teach them how to use them responsibly. In security, training and awareness can be the catalytic factor between a successful or an unsuccessful attack attempt.

ist Microsoft MVP für Cloud und Datacenter Management und arbeitet als IT-Architekt bei der COMPAREX AG. Seine Schwerpunkte liegen hierbei in folgenden Bereichen: Infrastruktur, Windows Server und Client Management, Hyper-V, System Center und Microsoft Azure. Eric ist aktiver Speaker auf diversen technischen Events und Communities, darunter beispielsweise die Microsoft Ignite 2016. Zudem ist Eric Microsoft P-TSP (Partner Technology Solutions Professional) und arbeitet eng mit den Kollegen von Microsoft zusammen. Sein Motto lautet: “Die Community lebt von der Community und nur wer mitmacht hält sie am Leben!

ist seit 1983 mit dem Computervirus infiziert. Seit jeher fasziniert ihn die IT-Sicherheit in ihren verschiedenen Facetten. Zwischendurch machte er einige Abstecher über die Elektrik in die Elektronik und hat schließlich bei der Bundeswehr Navigationssysteme für Helicopter instandgesetzt. Heute stehen für ihn Computer-Forensik, Penetration Tests und Awareness-Maßnahmen auf dem Programm. Das heißt im Speziellen Hacker-Angriffe und ihre Schutzmaßnahmen. Dabei ergänzen sich die Erfahrungen aus der physikalischen und der virtuellen Welt.
Derzeit ist er seit mehr als einer Dekade bei einem weltweit operierenden Unternehmen in Lingen als IT-Sicherheitsexperte beschäftigt. In der IT-Sicherheitsszene ist er schon lange kein Unbekannter und tummelt sich seit Jahren auf diversen “Hacker-Konferenzen“.

IT Consultant mit Fokus auf Windows-Security und Deployment-Themen bei sepago

hat eine tiefe Historie in Netwerktechnik und Pentester und arbeitet als Security Consultant bei neam IT Services. Seine heutigen Schwerpunktthemen hat er in den Bereichen Pentesting für Internet/Intranet, Web und Social Engineering.

ist spezialisiert auf die Bereiche IT-Sicherheit, Hochverfügbarkeit und Virtualisierung. In den letzten 15 Jahren hat er in diesen Fachbereichen zahlreiche Publikationen verfasst sowie Projekte und Lösungen erarbeitet. Er arbeitet als Leiter der IT bei der Vitos Haina gemeinnützige GmbH.