The PowerShell Podcast

Miriam Wiesner on Identity Hygiene, Security Tools, and Finding Balance

Dec 16, 2024

Miriam Wiesner, a Senior Security Research Program Manager at Microsoft with over 15 years of IT and cybersecurity experience, dives into identity hygiene and the nuances of the Graph API. She discusses the significance of script block logging and the benefits of Kusto in security analytics. Balancing a demanding career with parenthood, Miriam opens up about the emotional challenges of returning to work and juggling family responsibilities. She emphasizes the importance of proactive security measures and self-advocacy in tech, aiming for a healthier work-life balance.

40:42

Creator website

Episode guests

Miriam Wiesner

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Miriam Wiesner emphasizes the critical need for proactive security measures like enabling PowerShell script block logging to prevent breaches.

She highlights the importance of maintaining identity hygiene to protect against privilege escalation by ensuring secure administrative practices.

Deep dives

Transitioning to a Program Manager Role

Miriam Wiesner discusses her recent shift from being a security researcher to taking on the role of a security research program manager. She shares that this new position adds responsibilities around strategic planning and team alignment, which challenge her to combine her security knowledge with project management skills. Balancing her professional life with motherhood has also proven to be a difficult endeavor, as she navigates both roles and their demands. Despite these challenges, she emphasizes that stepping outside of her comfort zone has led to personal and professional growth.

Intro

3min

Balancing Parenthood and Professionalism

9min

Enhancing Cybersecurity with Proactive Measures

3min

Prioritizing Security in Budget-Constrained Environments

20min

Navigating Work-Life Balance as a Parent

4min

Emphasizing Self-Advocacy and Engagement in Tech

2min

In this episode of the PowerShell Podcast, we sit down with Miriam Wiesner, a Senior Security Research Program Manager at Microsoft, to dive into the fascinating world of security and identity hygiene. Miriam shares her expertise on the GraphAPI and the critical importance of maintaining proper identity hygiene in today's digital landscape.

We explore the day-to-day life of a security researcher and discuss how tools like script block logging can provide invaluable insights. Miriam also highlights the power of Kusto for analyzing data and solving complex challenges in the security space.

In addition to technical insights, Miriam opens up about the challenges of maintaining a healthy work-life balance, offering a candid look at the human side of working in a demanding and impactful field.

Guest Bio and links:

Miriam C. Wiesner is a Sr. Security Research Program Manager at Microsoft with over 15 years of experience in IT and IT Security. She has held various positions, including Administrator/System Engineer, Software Developer, Premier Field Engineer, Program Manager, and Security Consultant and Pentester.

She is also a renowned creator of open-source tools based in PowerShell, including EventList and JEAnalyzer. She was invited multiple times to present her research behind her tools at many international conferences like Black Hat (USA, Europe & Asia), PSConf EU, MITRE ATT&CK workshop, and more.

Miriam is the author of the book "PowerShell Automation and Scripting for CyberSecurity: Hacking and Defense for Red and Blue Teamers." Outside of work, Miriam is a dedicated wife and mother, residing with her family near Nuremberg, Germany.

Previous episode with Miriam - https://www.youtube.com/watch?v=0Csw8YYGyCg&pp=ygUObWlyaWFtIHdpZXNuZXI%3D

Practical PowerShell Empowerment For Protectors - https://www.youtube.com/watch?v=JgqbR-7O7TI&pp=ygUObWlyaWFtIHdpZXNuZXI%3D

Echoes of Intrusion: Demystifying commonly used MS Graph API Attacks - https://www.youtube.com/watch?v=YDK5xYx1rKg&t=677s&pp=ygUObWlyaWFtIHdpZXNuZXI%3D

PowerShell ❤️ the Blue Team - https://devblogs.microsoft.com/powershell/powershell-the-blue-team/

https://techcommunity.microsoft.com/blog/microsoftsentinelblog/the-power-of-data-collection-rules-detect-disabling-windows-defender-real-time-p/4236540

PowerShell Podcast Home page: https://www.pdq.com/resources/the-powershell-podcast/

Listen to the PowerShell Podcast: https://powershellpodcast.podbean.com/