The Azure Security Podcast
Episodes
Episode 126: Microsoft Baseline Security Mode
21 Mar 2026
Contributed by Lukas
In this episode, Michael and Sarah talk to Sophie Ke and Dave Minasyan about Microsoft Baseline Security Mode, a new feature to help ease security set...
Episode 125: Origins of MITRE ATT&CK
27 Feb 2026
Contributed by Lukas
In this episode Michael and Mark talk with guest Blake Strom about the origins of the MITRE ATT&CK framework, how it was developed, and how it has...
Episode 124: Microsoft Security Response Center for AI
30 Jan 2026
Contributed by Lukas
In this episode Michael talks to Raji Vanninathan about the Microsoft Security Response Center for AI. We also cover security news about AKS Deploymen...
Episode 123: Agentic Identity
21 Jan 2026
Contributed by Lukas
In this episode, Michael, Sarah and Mark talk to Nick Wryter about agentic AI identity, with a big focus on least privilege issues. We also cover news...
Episode 122: Microsoft Ignite 2025 Wrap-up
15 Dec 2025
Contributed by Lukas
In this episode Michael, Sarah and Mark discuss security-related topics from the recent Microsoft Ignite 2025 event. Lots of AI-related security topic...
Episode 121: New Open Group Security Standards Documentation
21 Nov 2025
Contributed by Lukas
In this episode Michael and Sarah talk with co-host Mark Simos about new security standards documentation from the Open Group. It's a long episode but...
Episode 120: The Zero Trust Workshop (and so much more!)
29 Oct 2025
Contributed by Lukas
In this episode Michael talks with guest Merill Fernando about the Zero Trust Workshop, but we also spend time talking about all things identity! Meri...
Episode 119: Pedantic Security Wording and Taxonomies
09 Oct 2025
Contributed by Lukas
In this episode Michael, Sarah and Mark talk with guest Ryen Macababbad, Principal Security Program Manager at Microsoft about her current work on sta...
Episode 118 - Quantum Cryptography and Quantum Computing with Mark Russinovich
19 Sep 2025
Contributed by Lukas
In this episode Michael and Mark talk with guest Mark Russinovich, Technical Fellow, Deputy CISO and Chief Technology Officer of Microsoft Azure about...
Episode 117: Cloud Gaming Security
29 Aug 2025
Contributed by Lukas
In this episode Michael and Sarah talk to Russ Rogers from the Xbox team about gaming security in general and Xbox specifically. This is the first tim...
Episode 116: Microsoft Sentinel Data Lake
31 Jul 2025
Contributed by Lukas
In this episode Michael, Sarah and Mark talk to Mark Kendrick about Microsoft Sentinel Data Lake. We also cover news about The Open Group - Roles and ...
Episode 115: Security in Model Context Protocol (MCP)
10 Jul 2025
Contributed by Lukas
In this episode, Michael, Sarah and Mark talk to Den Delimarksy about the current posture of Model Context Protocol. Den serves on the committee that ...
Episode 114: SQL Server 2025 Security Improvements
09 Jun 2025
Contributed by Lukas
In this episode, Michael talks to Pieter Vanhove and Pratim Dasgupta about the new security changes in SQL Server 2025. The news includes updates on M...
Episode 113: Microsoft Red Team
16 May 2025
Contributed by Lukas
In this episode, Michael, Sarah, and Mark talk to Craig Nelson, VP of the Microsoft Red Team about how the Red Team works to help secure Microsoft and...
Episode 112: Security Copilot Agents
13 May 2025
Contributed by Lukas
In this episode Michael talks with guest Ran Munsch, Principal Product Manager at Microsoft about Security Copilot and Security Copilot Agents. We al...
Episode 111: Securing Agentic AI
17 Apr 2025
Contributed by Lukas
In this episode Michael and Sarah talk with guest Amanda Minnich about securing agentic AI systems, the security challenges they face, and how to secu...
Episode 110: Securing GenAI Applications with Entra (3 of 4): Monitoring and More
01 Apr 2025
Contributed by Lukas
In this episode Michael and Gladys talk to Sharon Chahal who is a Principal Program Manager in the Identity team at Microsoft about monitoring and aud...
Episode 109: Securing GenAI Applications with Entra (2 of 4) - Overpermissioning
19 Feb 2025
Contributed by Lukas
In this episode, Michael, Gladys and Mark talk to guest Bailey Bercik about the problem of overpermissioning and how to use Microsoft Entra Permission...
Episode 108: Securing GenAI Applications with Entra
20 Jan 2025
Contributed by Lukas
In this episode Michael, Gladys, Mark and Sarah talk to guest Diana Vicezar from the Microsoft Entra team about security Generative AI applications. N...
Episode 107: Secure by default and Copilot Overshare Blueprints
06 Jan 2025
Contributed by Lukas
Happy New Year!In this episode Michael, Sarah and Mark talk to Maxime Bombardier and Emily Blundo about the Secure by default and Copilot overshare bl...
Episode 106: Microsoft Ignite Security Wrap-up
10 Dec 2024
Contributed by Lukas
In this episode, Michael, Mark, and Sarah go over what they found interesting from Microsoft Ignite. Mark has a discount code for his Zero Trust Book,...
Episode 105: Azure and Entra ID Security Tools
22 Nov 2024
Contributed by Lukas
In this episode, Michael, Sarah, and Mark talk to Merill Fernando about a set of open source tools he and his team have developed to help people under...
Episode 104: The Post Bluehat Wrap-up
08 Nov 2024
Contributed by Lukas
In this episode, Michael talks to Nic Fillingham about the recent Microsoft Bluehat Security conference held at the Microsoft HQ in Redmond, WA. We al...
Episode 103: Security Conferences and Bluehat
17 Oct 2024
Contributed by Lukas
In this episode we speak to Nic Fillingham who is a Senior Program Manager at Microsoft about security conferences and mainly about the Microsoft Blue...
Episode 102: Entra ID Purple-teaming with Dr Azure AD
07 Oct 2024
Contributed by Lukas
In this episode Michael and Sarah talk to Nestori Syynimaa about Entra ID security and his purple-team tool, AADInternals. We also cover the latest se...
Episode 101: The GHOST Threat Hunting Team
20 Sep 2024
Contributed by Lukas
In this episode Michael, Mark and Sarah talk to Matt Zorich and Waymon Ho of the Microsoft GHOST team. We discuss the role GHOST plays in protecting b...
Episode 100: Our stories so far
29 Aug 2024
Contributed by Lukas
In this episode Michael, Sarah, Gladys and Mark talk about our careers so far, explain some funny stories and our wishes for a more secure future. Ou...
Episode 99: Securing Copilot AI Data and Purview
16 Aug 2024
Contributed by Lukas
In this (late) episode, we chat to Andrew McMurray, a Principal Product Manager at Microsoft about securing Copilot data as well as how Purview can pl...
Episode 98: Secure Future Initiative and Rust at Microsoft
21 Jun 2024
Contributed by Lukas
In this episode Michael and Gladys talk with guest Dave Weston about Secure Future Initiative and the growing use of the Rust programming language at ...
Episode 97: Securing AI
06 Jun 2024
Contributed by Lukas
In this episode Michael and Sarah talk with guest Richard Diver about securing solutions that use AI and LLMs. Richard also talks about his new book o...
Episode 96: Cloud Native Applications Protection Platform (CNAPP)
03 May 2024
Contributed by Lukas
In this episode Michael, Sarah, and Mark talk with guest (and good friend of the podcast) Yuri Diogenes about CNAPP - Cloud Native Application Protect...
Episode 95: Threat Intelligence
25 Apr 2024
Contributed by Lukas
In this episode Michael, Sarah and Mark talk with guest Sherrod DeGrippo, Director of Threat Intelligence Strategy at Microsoft about the current stat...
Episode 94: Copilot for Security
01 Apr 2024
Contributed by Lukas
In this episode Michael, Sarah and Mark talk with guest Ryan Munsch about the newly released Copilot for Security. We also discuss Azure Security news...
Episode 93: Continuous Security Development Lifecycle
25 Mar 2024
Contributed by Lukas
In this episode Michael, Sarah, and Mark talk with guests Tony Rice and David Ornstein about insights into the Continuous SDL (Security Development Li...
Episode 92: Global Azure is soon, sign up and give a security presentation!
15 Mar 2024
Contributed by Lukas
In this episode Michael and Sarah talk to Martin Abbott about the Global Azure event that starts soon, https://globalazure.net/. We talk about how to ...
Episode 91: Azure Chaos Studio
13 Feb 2024
Contributed by Lukas
In this episode, Michael talks with Rigel Carlson from the Chaos Studio development team about Chaos Studio through a security lens. Michael also disc...
Episode 90: AI Red Teaming
29 Jan 2024
Contributed by Lukas
This is a MUST LISTEN episode for anyone involved in products using AI, or for people who want to learn some of the latest attacks against large langu...
Episode 89: We Look Back on 2023
18 Dec 2023
Contributed by Lukas
In this episode we look back at what stood out for each of us and what we go up to. We also cover something not security-related, but of interest to a...
Episode 88: Securing SQL Databases though the eyes of an attacker
01 Dec 2023
Contributed by Lukas
In this episode Michael talks with colleagues in the Azure Data Platform Security Team, Sharath Unni and Raul Garcia about securing Azure SQL DB, SQL ...
Episode 87: Advances in Always Encrypted and Transparent Data Encryption
15 Nov 2023
Contributed by Lukas
In this episode, Michael talks with his colleagues Pieter Vanhove and Mirek Sztajno about updates to Always Encrypted and Transparent Data Encryption ...
Episode 86: Zero Trust Playbook Series Zero Trust Overview and Playbook Introduction
31 Oct 2023
Contributed by Lukas
In this episode Michael talks with guest Nikhil Kumar and our own Mark Simos about a new book they have co-authored named "Zero Trust Playbook Series ...
Episode 85: Security Bug Bounties
11 Oct 2023
Contributed by Lukas
In this episode Michael and Sarah talk with guest Madeline Eckert about Security Bug Bounties.We also discuss Azure Security news about SQL Server 202...
Episode 84: Attack Simulation
22 Sep 2023
Contributed by Lukas
In this episode Michael, Sarah, Gladys, and Mark talk with guest Roberto Rodriguez about attack simulation, Cloud Katana, and AI.We also discuss Azure...
Episode 83: PowerShell Automation and Scripting for Cybersecurity
14 Aug 2023
Contributed by Lukas
In this episode Michael and Sarah with guest Miriam Wiesner about her new book, "PowerShell Automation and Scripting for Cybersecurity" which comes ou...
Episode 82: Modern Security Strategy
08 Aug 2023
Contributed by Lukas
This week Michael and Mark talk to Microsoft Security MVP Truls Dahlsveen about his thoughts on Modern Security Strategy. It's a fascinating and pract...
Episode 81: Audit logging in Azure SQL Database
28 Jul 2023
Contributed by Lukas
In this special episode Michael talks to his colleague Sravani Saluru about how to configure, monitor and manage audit logging in Azure SQL Database. ...
Episode 80: Microsoft Incident Response
14 Jul 2023
Contributed by Lukas
In this episode Michael and Sarah talk with guest Matt Zorich from the Microsoft Incident Response team. We also cover the latest Azure security news ...
Episode 79: Threat Intelligence with MSTICPy
13 Jun 2023
Contributed by Lukas
In this episode, Michael and Sarah talk to Thomas Roccia about Threat Intelligence with MSTICPy. We also cover security news about Azure Files SMB, Ap...
Episode 78: Entra Permissions Management updates
02 Jun 2023
Contributed by Lukas
In this episode Michael and Gladys talk with guests Marcelo di lorio and Neil Walker about all the latest news in Entra Permissions Management.We also...
Episode 77: Securing Infrastructure as Code (IaC)
19 May 2023
Contributed by Lukas
This week, Michael, Mark and Gladys talk to Anthony Shaw about some of the best practices and tooling for securing Infrastructure as Code (IaC) soluti...
Episode 76: Microsoft Security Research Insights
03 May 2023
Contributed by Lukas
In this episode Michael, Sarah, and Mark talk with guest Negar Shabab. We also discuss Azure Security news about new Confidential Computing VMs, SQL S...
Episode 75: What's new in Microsoft Defender for Cloud
14 Apr 2023
Contributed by Lukas
In this episode Michael, Sarah, Gladys, and Mark talk with a good friend of the Podcast, Yuri Diogenes, about the latest Microsoft Defender for Cloud ...
Episode 74: What's New in Azure Policy
07 Apr 2023
Contributed by Lukas
Michael and Mark talk to Kemley Nieva from the Azure Governance team about some of the recent updates and improvements to Azure Policy. We also cover ...
Episode 73: Microsoft Defender for Cloud as Code
23 Mar 2023
Contributed by Lukas
In this episode Michael and Gladys talk with guests Sean Wesonga and Bojan Magusic about using Infrastructure as Code (IaC) with Microsoft Defender fo...
Episode 72: What's top of mind for the hosts and career advice!
08 Mar 2023
Contributed by Lukas
In this episode Michael, Sarah, Gladys and Mark interview each other! The Podcast is almost three years old, and things have changed for each of us, s...
Episode 71: Azure SQL Database and Always Encrypted using Virtualization-Based Security Enclaves
15 Feb 2023
Contributed by Lukas
In this special episode, Michael sits down with Pieter Vanhove about a new addition to the SQL Server 'Always Encrypted' family. The new addition, Vir...
Episode 70: Microsoft Purview
13 Feb 2023
Contributed by Lukas
In this episode Michael and Sarah talk with guests Beau Faull and Lou Mercuri about some new features and updated naming in Microsoft Purview. Beau an...
Episode 69: Secured Supply Chain and Software Bill of Materials (SBOM)
02 Feb 2023
Contributed by Lukas
In this episode, Michael and Mark talk to Adrian Diglio about Software Bill of Materials and its role in helping secure the software supply chain.We a...
Episode 68: SQL Server 2022
07 Dec 2022
Contributed by Lukas
Michael sits down with Ajay Jagannathan who is the Principal Group PM Manager for SQL Server. Michael also covers a couple of SQL Server related news ...
Privileged Access
24 Nov 2022
Contributed by Lukas
Michael and Sarah talk to Bronwyn Mercer from Microsoft Australia about Privileged Access as well as some ideas and processes to help you succeed. Als...
Workload Identities
11 Nov 2022
Contributed by Lukas
In this episode Michael, Sarah and Mark talk with guest Joey Snow about Workload Identities in Azure. We also chat about least privilege and privilege...
Microsoft Defender for Threat Intelligence
04 Nov 2022
Contributed by Lukas
EDIT: Nov 11th, there was an error at around 27m; Gladys and Rijuta were talking over each other. In this episode Michael, Sarah, Gladys and Mark talk...
The SQL Server Permission Model Explained
15 Oct 2022
Contributed by Lukas
In this special, out of band episode, Michael talks to Andreas Wolter about the SQL Server and Azure SQL Database permission model. To many, the model...
Microsoft Entra Permissions Management
07 Oct 2022
Contributed by Lukas
In this episode we talk to Nick Wryter about Microsoft Entra Permissions Management. We also cover the latest security news about Azure Firewall, Azur...
Microsoft Defender for Endpoint Tamper Protection
28 Sep 2022
Contributed by Lukas
In this episode, Josh Bregman discusses a critically important feature in MDE - Tamper Protection which helps prevent unwanted changes to your securit...
Securing Operational Technology (OT)
26 Aug 2022
Contributed by Lukas
In this episode we speak to Elizabeth Stephens about practices and philosophies for protecting OT. We also cover news about SQL MI, Private Endpoints,...
Microsoft Defender for Cloud - AWS and GCP
23 Aug 2022
Contributed by Lukas
In this episode, we talk to Safeena about Begun about Microsoft Defender for Cloud to monitor multi-cloud environments including Azure, on-prem, AWS a...
Chief Information Security Officer (CISO) Workshop
09 Aug 2022
Contributed by Lukas
In this episode Michael and Sarah talk to Mark about the newly version of the CISO Workshop. We also have news about Confidential Ledger, Gateway Load...
Innovations in Azure Confidential Computing
22 Jul 2022
Contributed by Lukas
In this episode, Michael talks to Run Cai and Vikas Bhatia about some of the latest Confidential Computing services available on Azure including new C...
Microsoft Sentinel Content Hub
12 Jul 2022
Contributed by Lukas
In this episode, Michael, Sarah and Mark talk to Roey Ben Chaim about Microsoft Sentinel Content Hub. We also cover the latest security news about Exc...
Advanced Threat Hunting with Microsoft 365 Defender
08 Jul 2022
Contributed by Lukas
Michael sits down with Michael Melone to discuss hunting for adversaries using Microsoft 365 Defender's Advanced hunting capabilities.Azure security n...
Practical Zero Trust
28 Jun 2022
Contributed by Lukas
Michael and Sara talk to Matt Soseman about his take on practical Zero Trust and Michael goes on a rant about Zero Trust's Assume Breach pillar. We al...
Azure SQL Managed Instance Windows Authentication
14 Jun 2022
Contributed by Lukas
In this episode Michael talks to Sravani Saluru who is a Senior Program Manager in the Azure Data Platform, about Azure SQL Managed Instance and Windo...
Azure SQL Database Ledger
24 May 2022
Contributed by Lukas
In this special episode Sarah and Michael talk to Pieter Vanhove about Azure SQL Database Ledger.Ledger is a new feature built into Azure SQL DB and S...
Microsoft Defender for Containers
18 May 2022
Contributed by Lukas
In this episode we talk to Shay Amar about Microsoft Defender for Containers, we go into the weeds in places! Also, Azure security news about Confiden...
Updates to CosmosDB Security
18 Apr 2022
Contributed by Lukas
In this episode we speak to Thomas Weiss from the Azure Data team about new security capabilities in CosmosDB, specifically Always Encrypted and data-...
Microsoft Cybersecurity Reference Architectures
04 Apr 2022
Contributed by Lukas
In this special episode, Mark chats about the MCRA as well as the Cloud Adoption Framework (CAF), and various related topics. We shied away from the n...
RiskIQ Explained
23 Mar 2022
Contributed by Lukas
Gladys and Michael talk to Jason Zann, VP, Head of Platform about RiskIQ, a recent Microsoft acquisition. We also cover the latest security news about...
Microsoft Compliance Manager
11 Mar 2022
Contributed by Lukas
We chat with Al Eardley about Compliance, Security and Microsoft Compliance Manager, as well as news about CosmosDB, Azure Load Testing, CodeQL, Azure...
Microsoft Defender for IoT
22 Feb 2022
Contributed by Lukas
We talk to Chris Hallum about all things Microsoft Defender for IoT. He also discusses IoT security in detail, as well as some new features on the hor...
Microsoft Sentinel Extensions
11 Feb 2022
Contributed by Lukas
In this episode we speak to Matt Egen about how Microsoft Sentinel can pull in telemetry and threat intel data from various sources. He talks about th...
Lessons from moving to Zero Trust in a SOC
26 Jan 2022
Contributed by Lukas
We talk to Kristin Burke about some of the lessons learned and best practices when moving to Zero Trust and how that affects the Security Operations C...
Security: The Boring Bits!
14 Jan 2022
Contributed by Lukas
In this episode we talk to Jess Dodson about some of the basic security practices she sees Azure users do well and could improve. We also discuss the ...
Everything you need to know about Azure Policy
29 Dec 2021
Contributed by Lukas
In this episode Michael, Sarah, Gladys and Mark talk to Liz Kim about the innards of Azure Policy as well as best practices for effective deployment o...
Inside Azure Monitor
10 Dec 2021
Contributed by Lukas
In this episode Michael and Mark talk to Dave Lubash about Azure Monitor. We also cover news about Zero Trust Commandments, Azure SQL DB, Logic Apps, ...
MS Ignite Security Highlights
16 Nov 2021
Contributed by Lukas
In this episode we chat with Abbas Kudrati about the latest security news and announcements from the recent Microsoft Ignite event. There were numerou...
Jupyter Notebooks for Incident Response
05 Nov 2021
Contributed by Lukas
We speak to Julie Koesmarno about Jupyter Notebooks on Azure generally, and specifically about using them to help with Incident Response. We also cove...
Microsoft Digital Defense Report
22 Oct 2021
Contributed by Lukas
We talk to Mark McIntyre about the recent Microsoft Digital Defense Report. The two Marks discuss at length the report as well as cyber-crime, ransomw...
Azure Active Directory Conditional Access
06 Oct 2021
Contributed by Lukas
In this episode we talk to Daniel Wood about Conditional Access in Azure Active Directory, some best practices and a few hints about future updates,We...
Attacker Tradecraft with Simuland
22 Sep 2021
Contributed by Lukas
In this episode we talk to Roberto Rodriguez about a Microsoft open source tool to help researchers understand how attackers attack and compromise sys...
Azure Defender for SQL - Vulnerability Assessment
10 Sep 2021
Contributed by Lukas
Michael and David Trigano of the Azure Defender for SQL Vuln Assessment geek out about SQL security. Gladys discusses the ramifications of the recent ...
A Deep Look at Azure Defender for SQL - Threat Protection
24 Aug 2021
Contributed by Lukas
In this episode we talk to Michael Makhlevich about Azure Defender for SQL - Threat Protection. Michael Howard and our guest geek out about common SQL...
Study Guide for SC-200: Microsoft Security Opertions Analyst
02 Aug 2021
Contributed by Lukas
This episode is a little different; no news! Michael talks with Yuri Diogenes and Sarah about the various Azure Security certifications, and Sarah and...
Zero Trust at Microsoft
28 Jul 2021
Contributed by Lukas
In this episode Michael, Sarah, Gladys and Mark talk with guest Carmichael Patton, a Senior Security Architect in the Digital Security and Resiliency ...
Azure Sentinel SOC Process Workbook
07 Jul 2021
Contributed by Lukas
In this episode Michael, Sarah, Gladys and Mark talk with guest Rin Ure about the Azure Sentinel SOC Process Framework Workbook. We also discuss Azure...
Azure Security Automation
29 Jun 2021
Contributed by Lukas
In this episode we talk to Nicholas DiCola about automating security tasks in Azure. We also cover security news about Azure Monitor, Confidential Com...
Microsoft Threat Intelligence - MSTIC
15 Jun 2021
Contributed by Lukas
In this episode we interview Pete Bryan from the Microsoft Threat Intelligence Center - MSTIC - about lessons learned from the recent highly-public na...
Azure Data Explorer
04 Jun 2021
Contributed by Lukas
In this episode Michael, Sarah, Gladys and Mark talk with Minni Walia about Azure Data Explorer, a fast and highly scalable data exploration service f...
Azure Purview
21 May 2021
Contributed by Lukas
In this episode Michael, Gladys and Mark talk with guests Gopal Shankar and Arvind Chandaka discuss a new data governance product Azure Purview. We al...
Applied Data Science, AI and machine learning in Security
05 May 2021
Contributed by Lukas
In this episode Michael, Sarah, Gladys and Mark talk with guest Sharon Xia about applied Artificial intelligence and Machine Learning in Cybersecurity...