Least Privilege in 2025 with Bailey Bercik

About Show #966

How is least privilege different in 2025? Richard talks to Bailey Bercik about the ongoing efforts to minimize users, administrators, and applications' privileges in 2025. Bailey talks about the power of Entra Permissions Management to help you see what permissions are going unused on various accounts so that you can tailor rights to individual accounts without things becoming unmanageable. Artificial intelligence is a forcing function for many permission issues, with these new tools potentially creating problems when given unnecessary rights. But those same tools can help you understand where permissions are being underutilized and help protect your systems!

Links

Recorded December 16, 2024

Bailey Bercik is a Senior Product Manager on Microsoft Security's identity team where she works on Entra and Copilot for Security, a generative AI-powered security assistant. She's a prolific public speaker and guest lecturer, having shared customer stories and security recommendations at various Microsoft events as well as Defcon Blue Team Village, SANS, (ISC)2: Security Congress, Blue Team Con, Authenticate Con, BSides, and more. She also hosts the 425 Show, a live webinar for 300-400 level technical content run by the Microsoft Security Community channel. In addition to speaking, Bailey has written about minimizing business impact during outages for Identiverse's newsroom. She also holds five patents in the identity and access management space. Outside of the office, Bailey serves on Bates Technical College's Advanced Technology Advisory Committee.

About Show #966

Show Comments