In the latest episode of The Microsoft Threat Intelligence Podcast, host Sherrod DeGrippo is joined by Jeremy Dallman, Kimberly Ortiz, and Steve Ginty to delve into the world of threat intelligence. The episode covers a variety of topics, including how collaborating with multiple Microsoft teams enhances intelligence delivery, the interaction between Microsoft Defender Threat Intelligence and Security Copilot, and the process of publishing actor profiles based on internal observations of techniques and procedures.
One key theme of the discussion is the importance of understanding vulnerabilities before they are exploited in the wild. Sherrod emphasizes the urgency of patch deployment, particularly for vulnerabilities targeted by ransomware groups. The conversation highlights the Security Copilot, a tool built on Microsoft’s extensive threat intelligence, designed to make SOC analysts’ work more accessible by providing immediate, relevant information on threats.
The episode offers an insider’s view on how these professionals track internal incident responses, share crucial intelligence with customers, and continuously evolve their processes to ensure swift, accurate delivery of threat intelligence.
Throughout the episode, the panel of experts addresses important questions about the role of AI in the world of threat intelligence, discussing how AI will affect the role of threat intelligence, what they are most excited about when it comes to AI in cybersecurity, and how the process of sharing intelligence with customers has evolved over the years.
For those interested in learning more about the professionals featured in the episode, resources and LinkedIn profiles are provided for each guest, including Kimberly Ortiz, Steve Ginty, Jeremy Dallman, and Sherrod DeGrippo.
The episode also references a number of related Microsoft podcasts, encouraging listeners to check out Afternoon Cyber Tea with Ann Johnson, The BlueHat Podcast, and Uncovering Hidden Risks. Audience members are also directed to visit microsoft.com/podcasts to discover and follow other Microsoft podcasts.
The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of the N2K media network.
Listeners are encouraged to explore additional resources related to the topics covered in the episode, including sessions such as “MDTI: Now Anyone Can Tap Into Game-Changing Threat Intelligence,” “The Future of Security with AI,” “A Year in Intel: Highlights from Microsoft’s Global Stand Against APTs,” and “The risk of trust: Social engineering threats and cyber defense.”
Overall, the episode provides a comprehensive look at the world of threat intelligence, offering valuable insights for anyone interested in the field of cybersecurity. With a diverse panel of experts and a range of topics covered, the episode serves as an informative and engaging resource for both professionals in the industry and those looking to learn more about the evolving landscape of threat intelligence.