Microsofts Threat Simulation to Harden the Cloud

To help combat emerging threats, Microsoft employs an innovative Assume Breach strategy and leverages highly specialized groups of security experts, known as the Red Team, to strengthen threat detection, response and defense for its enterprise cloud services.

Below is the document that outlines their strategy. Great read, understanding of Microsoft’s “Red Team” Approach.

http://download.microsoft.com/download/C/1/9/C1990DBA-502F-4C2A-848D-392B93D9B9C3/Microsoft_Enterprise_Cloud_Red_Teaming.pdf

Alongside this check out the channel 9 video that was released that discussing the following:

  • Methods of improving Azure security
  • How Azure security operates
  • Understanding emerging threats
  • Red team and blue team roles
  • Model real-world attacks, identify gaps, and demonstrate impact
  • Detect and respond, enhance awareness, and measure readiness and impact

http://channel9.msdn.com/Shows/Azure-Friday/Red-vs-Blue-Internal-security-penetration-testing-of-Microsoft-Azure

Great transparency on the approaches that Microsoft take.

Liam Cleary

I work as an Associate Director for Protiviti in Virginia. My main focus is to ensure that SharePoint can either natively or with minimal customization meet the business requirement securely. I am currently a SharePoint MVP focused on Architecture but also cross the boundary into Development and Security. I am often found at user groups, conferences speaking, offering advice, spending time in the community, teaching my kids how to code, raspberry PI programming, hacking the planet and sometimes building Lego robots.

You may also like...