Ilias el Kasmi

0 %
avatar
Ilias el Kasmi
Cyber Security Engineer
Windows Security Specialist
  • Residence:
    Netherlands
  • City:
    Amsterdam
  • Age:
    27
Languages
Dutch
English
Amazigh
Skills
Microsoft 365 (Defender Suite)
Azure
Windows (Server)
BurpSuite
Linux
MacOS
ELK Stack
Certificates
  • ISO/IEC 270001
  • SC-900: Microsoft Security, Compliance, and Identity Fundamentals
Trainings
  • Windows and Active Directory Security
  • Defend Against Modern Targeted Attacks
  • TRANSITS II
  • TRANSITS I
  • Jira Essentials
  • Confluence Server
  • Splunk 7.x Fundamentals Part 1
  • Brunel Big Data Experience
Download cv

Microsoft Defender for Identity

27/02/2023

Protecting your organization against cyber threats is critical in today’s ever-evolving technology landscape. As such, we recently implemented MDI (Microsoft Defender for Identity) to safeguard our company’s identities and devices from cyber threats. In this blog post, I’ll share my experience and insights on the implementation process, features, and benefits of MDI.

Implementation: As we already had the Microsoft 365 E5 license, we activated MDI through the Azure portal and installed the MDI sensor on our domain controllers and ADFS server to start monitoring identity-related activities. We then configured alerts and notifications to be sent to our IT security team in case of any suspicious activities.

Features: One of the key features of MDI is its ability to detect threats and provide insights into compromised devices and identities. The solution uses machine learning and behavioral analysis to detect suspicious activities such as brute force attacks, password spraying, and lateral movement. MDI also offers a centralized dashboard that provides real-time visibility into the health and security of our identities and devices.

Benefits: By implementing MDI, we’ve improved our overall security posture by protecting our identities and verifications, which are the keys to our digital assets. We’re now able to detect and respond to cyber threats in real-time, preventing potential data breaches and financial losses. With its user-friendly interface and automated response capabilities, MDI has reduced the workload of our IT security team, enabling them to focus on more strategic security initiatives.

Conclusion: In conclusion, MDI is an essential solution for any organization that wants to safeguard their digital assets and protect against cyber threats. Its powerful features, user-friendly interface, and automated response capabilities have made it an excellent addition to our security stack. We highly recommend it to any organization looking to enhance their security posture and protect their identities and devices.

Posted in Microsoft 365 by IliasWhoElseTags:
Previous
All posts
Next
© 2023 All Rights Reserved.