Back To Schedule
Thursday, August 29 • 10:00am - 11:00am
Navigating the Red Forest

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Successful cyber attacks often involve gaining administrative access to a domain within a short amount of time. This results in bad actors having remote access to an organisation’s highly confidential information, which could include client information, source code and intellectual property. Attacks like these can have a severe financial impact through incident response and the implementation of remediations taking many person hours, along with intangible damage to reputation.
To combat these types of attack Microsoft introduced the concept of ESA (Enhanced Security Administration), also known as the Red Forest, to allow administrators to administrate with enhanced security and protection. 
This talk is aimed at those considering the implementation of the Red Forest but have not yet had the time to investigate in detail. The architecture and logistics of building the RedForest will be covered, along with 
Privileged Access Workstations (PAWs), which are given to all administrators as part of the Red Forest build out.
Windows Administration experience is presumed; the talk will provide advice on the strengths that the Red Forest can offer to a company and how to get up and running quickly and effectively. Gotchas and blockers found during the build out phases will also be discussed to save attendees from hitting the same issues.

avatar for Derek Price

Derek Price

Managing Security Consultant, NCC Group
Derek is a Managing Security Consultant at NCC Group with over 7 years of experience in cyber security. His expertise in penetration testing and consultancy spans most technologies, from Windows security to telephony, and he has worked with a variety of clients across all sectors... Read More →

Thursday August 29, 2019 10:00am - 11:00am BST
Track 2