Paul's Security Weekly (Audio) Secure By Default - How do we get there? - Andy Syrewicze - PSW #848
13 snips
Oct 24, 2024 In this engaging discussion, Andy Syrewicze, a security evangelist at Hornet Security, shares his expertise on creating a 'secure by default' environment in Microsoft 365. He dives into the complexities of cloud migration, the struggles of managing permissions in SharePoint, and the importance of user training. The conversation also covers intriguing topics such as flaws in EDR systems, speculative execution vulnerabilities, and playful tech pranks. With a perfect blend of deep insights and light-hearted moments, Andy offers valuable perspectives on cybersecurity.
AI Snips
Chapters
Transcript
Episode notes
SMB Security Struggles
- SMBs struggle with Microsoft 365 security due to limited IT resources.
- Either small businesses rely on non-IT staff or mid-sized businesses have overworked admins, hindering proper security implementation.
SharePoint Online Security
- Implement governance and visibility for external sharing in SharePoint Online.
- Default settings allow external sharing without oversight, requiring PowerShell scripts or third-party tools for administrative control.
SharePoint, OneDrive, and Teams Interconnection
- OneDrive for Business and Teams file storage are built on SharePoint.
- This interconnectedness can create security complexities if not managed correctly.