Paul's Security Weekly (Audio) cover image

Paul's Security Weekly (Audio)

Secure By Default - How do we get there? - Andy Syrewicze - PSW #848

Oct 24, 2024
In this engaging discussion, Andy Syrewicze, a security evangelist at Hornet Security, shares his expertise on creating a 'secure by default' environment in Microsoft 365. He dives into the complexities of cloud migration, the struggles of managing permissions in SharePoint, and the importance of user training. The conversation also covers intriguing topics such as flaws in EDR systems, speculative execution vulnerabilities, and playful tech pranks. With a perfect blend of deep insights and light-hearted moments, Andy offers valuable perspectives on cybersecurity.
03:06:32

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

  • Security should be designed as 'secure by default' to minimize vulnerabilities and protect sensitive information effectively.
  • Transitioning to Microsoft 365 amidst security concerns highlights the need for increased clarity on default configurations and user permissions.

Deep dives

Importance of Secure by Default

The discussion emphasizes the need for systems to be designed in a 'secure by default' manner. This principle means that security features should be activated automatically, reducing the risk of unintentional vulnerabilities. The podcast highlights that many users operate on unmanaged devices and non-approved applications, which increases the potential for data breaches. By having security measures in place from the outset, companies can better protect their sensitive information.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner