Track
Date & Time
Thursday, April 23, 2026, 11:30 AM - 12:00 PM
Room Location
Lomond Auditorium
Session Code
TT04.02
Name
Tech Talk Series 4 - Evidence-Based Defense: What Works, According to Microsoft’s Experiences in Incident Response
Description
Cybersecurity guidance often leans on intuition and anecdotes, but Microsoft’s incident response data and trillions of daily signals reveal what truly works. This session breaks down the controls that most effectively reduce cyber harm—phishing‑resistant MFA, strong identity hygiene, and rapid response that compresses dwell time. We’ll share analysis of compromise patterns, why identity‑based attacks dominate, and which mitigations reliably disrupt adversaries.
Attendees will leave with evidence‑backed, actionable recommendations aligned with NCSC priorities—shifting from intuition to data‑driven defense.
Session Keywords
Detection, response, and forensics, Human factors and culture, Identity, authentication, and access, Threat landscape and intelligence
With thanks to our Sponsor
