Hybrid Identity Protection (HIP) is the premier educational forum for identity-centric cybersecurity practitioners charged with defending hybrid cloud environments. Join us October 20-21, 27-28.
The podcast for cybersecurity pros charged with defending hybrid identity environments. Hosted by 15-time Microsoft MVP and Active Directory security expert, Sean Deuby.
"If there’s something that you’re curious about especially in the hybrid identity world, there’s someone at the HIP events that has something to say about it."
Mobile workforces, cloud applications, and digitalization are changing every aspect of the modern enterprise. And with radical transformation come new business risks. The Hybrid Identity Protection (HIP) event series is for IT and InfoSec professionals charged with supporting hybrid, multi-cloud environments and defending against emerging threats.
Speak in bits and bytes? Us too! Join the world’s foremost identity and access management experts, Microsoft MVPs, and industry peers working to solve complex infrastructure and cybersecurity challenges.
Andy Greenberg
Senior Writer, WIRED | Author of the book “Sandworm"
Andy Robbins
Technical ArchitectSpecterOps | Co-creator of BloodHound
Alex Weinert
Director of Identity Security, Microsoft
Andrew Jun
Vice President of Product Development, TrustKey
Ben Johnson
Co-Founder and CTO,Obsidian Security
Brian Desmond
Principal, Ravenswood Technology Group
Chris Roberts
Hacker in Residence, Semperis
Christoffer Anderson
Principal Advisor, Enfo
Darren Mar-Elia
Vice President of Products, Semperis | The “GPOGUY”
Gil Kirkpatrick
Chief Architect, Semperis
Guido Grillenmeier
Chief Technologist, DXC Technology
Joe Kaplan
Architecture and Strategy Lead, Accenture
Jorge de Almeida Pinto
Lead Identity/Security Consultant, IAM Technologies
Julie Smith
Executive Director of Identity Defined Security Alliance (IDSA)
Juliet Okafor
CEO & Founder, RevolutionCyber
Kat Sweet
Technical Evangelist, Capsul8
Moty Cristal
CEO of NEST, Negotiation Strategies
Roelf Zomerman
Cloud Solutions Architect, Microsoft
Sander Berkouwer
Chief Technology Officer, SCCT
Sean Deuby
Director of Services, Semperis | Host of the Hybrid Identity Protection podcast
Opening Remarks , Gil Kirkpatrick & Darren Mar-Elia
In this talk, Darren will present practical steps you can take right away to help reduce the “attack surface” of your Active Directory environment. He will show some of the most common ways that AD is exploited to help attackers move laterally, and show the top modifications you can make to AD to eliminate those pathways.
10:30 am – 11:00 am
Coffee Break
11:00 am – 12:00 pm
OpenID Connect and WebAuthN – Strong Passwordless Authenticatication, Gil Kirkpatrick OpenID Connect is the current standard when it comes to authentication and single sign-on, and the new W3C Web Authentication standard (which evolved from FIDO) makes strong, easy-to-use, passwordless authentication in the browser a reality. The combination of the two technologies is an ideal approach for enterprise application developers whether on-premises or in the cloud.
12:00 pm – 1:00 pm
Lunch, Networking
1:00 pm – 2:00 pm
Modernizing Customer Identity Journey’s with Azure AD B2C, Allen Brokken Are you having challenges with different customer identities across service lines? Are you having challenges integrating SaaS solutions to enhance your customer experience? Are your customers beginning to demand strong authentication as a part of their experience with your company? This presentation will describe the Modern Customer Identity journey including concepts such as: Sign-up; Profile Management; Sign-in across applications and providers; Multi-Factor Authentication and Password Reset. With that as a basis for discussion we will then turn to a discussion of the Azure AD B2C platform, demonstrate it’s capabilities and then provide best practices for adopting Azure AD B2C as an identity solution for your organization.
2:00 pm – 3:00 pm
Azure AD Conditional Access Deep Dive, Joe Kaplan Conditional Access is the feature of the Azure Active Directory platform that allows you to restrict access to applications and services based on a set of policies you apply. For example, you can allow access to resources based the user’s ability to perform multi-factor authentication, their device status, their location or the overall assessed risk of their login. In this session, we will survey how the platform works including all of the conditions and controls in the policy framework and then do a deep-dive into the mechanics of how the device-based controls actually work. We will also touch on new and upcoming features that will greatly expand how Conditional Access can be used and administrated.
3:00 pm – 3:30 pm
Coffee Break
3:30 pm – 4:30 pm
10 Quick Identity Wins with Azure AD, Brian Desmond
Whether you’ve already purchased Azure AD Premium, or you’re thinking about it, you should have a plan to start using the services you’ve paid for. Wel’ll talk about 10 easy wins that you can start taking advantage of without a ton of work. After this session, yo’ll be equipped to start using Azure AD quickly, save money, and get measureable wins from your cloud identity investment.
4:30 pm – 4:45 pm
Closing Remarks, Gil Kirkpatrick & Darren Mar-Elia
4:45 pm – 5:00 pm
Networking
9:00 am – 9:15 am
Registration, Networking
9:30 am – 10:30 am
Opening Remarks , Gil Kirkpatrick & Darren Mar-Elia
In this talk, Darren will present practical steps you can take right away to help reduce the “attack surface” of your Active Directory environment. He will show some of the most common ways that AD is exploited to help attackers move laterally, and show the top modifications you can make to AD to eliminate those pathways.
10:30 am – 11:00 am
Coffee Break
11:00 am – 12:00 pm
OpenID Connect and WebAuthN – Strong Passwordless Authenticatication, Gil Kirkpatrick OpenID Connect is the current standard when it comes to authentication and single sign-on, and the new W3C Web Authentication standard (which evolved from FIDO) makes strong, easy-to-use, passwordless authentication in the browser a reality. The combination of the two technologies is an ideal approach for enterprise application developers whether on-premises or in the cloud.
12:00 pm – 1:00 pm
Lunch, Networking
1:00 pm – 2:00 pm
Modernizing Customer Identity Journey’s with Azure AD B2C, Allen Brokken Are you having challenges with different customer identities across service lines? Are you having challenges integrating SaaS solutions to enhance your customer experience? Are your customers beginning to demand strong authentication as a part of their experience with your company? This presentation will describe the Modern Customer Identity journey including concepts such as: Sign-up; Profile Management; Sign-in across applications and providers; Multi-Factor Authentication and Password Reset. With that as a basis for discussion we will then turn to a discussion of the Azure AD B2C platform, demonstrate it’s capabilities and then provide best practices for adopting Azure AD B2C as an identity solution for your organization.
2:00 pm – 3:00 pm
Azure AD Conditional Access Deep Dive, Joe Kaplan Conditional Access is the feature of the Azure Active Directory platform that allows you to restrict access to applications and services based on a set of policies you apply. For example, you can allow access to resources based the user’s ability to perform multi-factor authentication, their device status, their location or the overall assessed risk of their login. In this session, we will survey how the platform works including all of the conditions and controls in the policy framework and then do a deep-dive into the mechanics of how the device-based controls actually work. We will also touch on new and upcoming features that will greatly expand how Conditional Access can be used and administrated.
3:00 pm – 3:30 pm
Coffee Break
3:30 pm – 4:30 pm
10 Quick Identity Wins with Azure AD, Brian Desmond
Whether you’ve already purchased Azure AD Premium, or you’re thinking about it, you should have a plan to start using the services you’ve paid for. Wel’ll talk about 10 easy wins that you can start taking advantage of without a ton of work. After this session, yo’ll be equipped to start using Azure AD quickly, save money, and get measureable wins from your cloud identity investment.
4:30 pm – 4:45 pm
Closing Remarks, Gil Kirkpatrick & Darren Mar-Elia
4:45 pm – 5:00 pm
Networking
Upcoming Events
The HIP community believes that education is our strongest defense. Whatever your industry vertical or job function, our events will arm you with the insight and relationships needed to take your Identity and Access Management (IAM) programs to the next level.
HIP fosters a community of knowledge-sharing, with topics ranging from multifactor authentication (MFA), identity governance, privileged access management (PAM), and more!
Get involved in the HIP movement! Subscribe to updates regarding new content and events.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
HIP sponsor:
Semperis is the pioneer of identity-driven cyber resilience for cross-cloud and hybrid environments. The company provides cyber preparedness, incident response, and disaster recovery solutions for enterprise directory services—the keys to the kingdom. Semperis’ patented technology for Microsoft Active Directory protects over 40 million identities from cyberattacks, data breaches, and operational errors.
