Azure Security Evening

This is a past event

39 people went

Location image of event venue

Details

ClearCloud is hosting an evening event entirely focused on two of my favourite things - 'Azure' and 'security'.

Note that this is not a workshop event like our usual ones, so laptops aren't a requirement - with it being half-term, we're changing the style of the event to cater for a wider audience. (how exciting!).

This is our first event with all external speakers and we have some amazing sessions lined up for it (full session info further down).

Agenda:

17:30 - 17:45 - Arrive and networking.

17:45 - 18:00 - Matt Bradley (ClearCloud) - Automating quality assurance in your build/release pipelines.

18:00 - 18:45 - Josh Ashton Session (Fujitsu) - Protecting APIs with the OAUTH2.0 Framework and Open ID Connect in Azure.

18:45 - 19:15 - Joe Hodkinson (Nordcloud/NAUG) - Azure Sentinel

19:15 - 19:45 - Food break

19:45 - 20:30 - Darren Conway (RedShield) - Mitigating sslsqueeze and other no-crypto, brute force SSL handshake attacks

Matt Bradley Session Info:
Automating quality assurance in your build/release pipelines. ARM templates are amazing until you make a mistake. Deploying a storage a account publicly accessible, not encrypting databases, WebApps without SSL...all of these at best would leave you with a red face.
In this session, I'm going to demo the Azure Security Kit with Azure Devops to show how you can automate your QA process.

Joe Hodkinson Session Info:
A demo-heavy deep dive into Azure’s SIEM service, Sentinel. With a look at how Sentinel can integrate nicely with your existing security strategy and how you can aggregate all your enterprise security data with built-in connectors. We’ll also look at how you can quickly and easily Investigate and hunt for suspicious activities before using Microsoft’s powerful AI toolset to Analyse and detect threats tom your enterprise.

About Me:
I’m currently working as an Azure Architect at Nordcloud, a leading provider of end-to-end Multi-Cloud Solutions across Europe. On a day to day basis, I help my customers understand where Azure services can assist their business in growing and adopting Azure in the right way.

I also co-runs the Northern Azure User Group (#NAUG) an Azure user group that runs in Manchester City Centre and covers anything Microsoft Azure related.

Josh Ashton Session Info:
Protecting APIs with the OAUTH2.0 Framework and Open ID Connect in Azure.

In this talk we will explore the OAUTH 2.0 framework and Open ID connect protocol with a deep dive into the Azure API Management Service and its role in todays micro service architecture!

About me:

Working as Lead Cloud Native Engineer on the Cloud Native Services team at Fujitsu UK, a leader in Cloud adoption and migration for both greenfield and hybrid. Working across EMEIA to drive customers Digital Transformation journey and deliver the best solutions and explore new business opportunities.

Darren Conway Session Info:
Mitigating sslsqueeze and other no-crypto, brute force SSL handshake attacks.

Analysis on how resistant we are to SSL handshake attacks. Covering original SSL Renegotiation as well as a new class referred to as “No Crypto” attack tools, as well as mitigation techniques.

RedSheild are the world's first web application shielding-with-a-service cybersecurity company.

I look forward to seeing you there.