Jay Kerai
Cybersecurity Automation Architect
๐ Biography
Leveraging experience on the frontline to make organizations more resilient to attacks by automating Security Response and placing preventative controls.
โจ High-Impact Contributions 3
Session on Defender for Cloud apps showcasing the art of the possible with App Discovery Policies and talking about why shadow IT is such a problem in the modern age of work.
Joint talk with MVP Jonas Bogvad talking about Securing identities using microsoft native functionality such as restricted admin units, access reviews, protected actions and token protection.
I spoke at M365 Security & Compliance User Group. Title "So You've Got MFA? Defending and Responding Against MFA Bypass Techniques in Entra". This talk focused was mostly focused on defending/protecting against AiTM (adversary in the middle) type attacks based on own personal research and real world attacks. Points discussed including the usage of conditional access, however also touched on FIDO2/WebAuthn, Intune Compliance, TPM attestation and the non-conditional access type hardening such as defense in depth strategies against initial access vector using Defender For Office, Defender for Endpoint.