A Their Story conversation with Sean Martin and Marco Ciappelli with Semperis
What are some common mistakes organizations make when deploying, migrating, and integrating on-premises and cloud-based directories and how can they be avoided?
With the increasing adoption of cloud technology, syncing on-premises and cloud-based directories becomes necessary for many organizations. However, there are potential risks and challenges when it comes to syncing Active Directory and Azure AD. In a recent ITSPmagazine podcast episode, Daniel Lattimer and Guido Grillenmeier from Semperis discuss some common mistakes organizations make when syncing directories and share some best practices to avoid them.
One common mistake organizations make is failing to properly secure their directory services. A compromise of directory services can lead to significant data breaches and loss of sensitive information. Daniel Lattimer notes that many organizations believe that their on-premises directory services are secure, but they lack visibility into the vulnerabilities that can be introduced when syncing to the cloud. To avoid this mistake, organizations need to assess their directory security posture regularly and implement proper security controls.
Another mistake organizations make is purchasing a cloud solution and assuming its security. Guido Grillenmeier explains that many organizations put their blind trust in a cloud solution without fully understanding its security. It is crucial that organizations properly evaluate the security controls and compliance of any cloud solution they are considering. Organizations should also have a clear understanding of their responsibilities and those of their cloud provider when it comes to security.
A third mistake organizations make is failing to properly monitor and detect malicious activity. As Lattimer and Grillenmeier explain, attackers today are very sophisticated and can easily go undetected. Organizations need to monitor their directory services on an ongoing basis to ensure that there are no unauthorized activities occurring. Additionally, they need to have proper detection rules and take action quickly in the event of suspicious activity.
Finally, many organizations do not understand the responsibility and ownership of directory services. In particular, determining the ownership of applications, systems, and cloud solutions can be a challenge. Organizations need to establish clear ownership and responsibilities to ensure that controls and security measures are applied consistently across all areas.
In conclusion, managing an integrated collection of on-premises and cloud-based directories brings benefits but also considerable challenges. Organizations that fail to recognize the potential risks and take proactive security measures can face significant consequences. To avoid common mistakes, CISOs and IT/security teams should regularly assess the security posture of their directory services, properly evaluate cloud security controls, implement proper monitoring and detection rules, and establish clear ownership and responsibilities.
For more insights on securing Active Directory and Azure AD in the modern cloud era, listen to the full podcast episode with Semperis on ITSPmagazine.
Guests:
Daniel Lattimer, Area Vice President - UK & Ireland at Semperis [@SemperisTech]
On Linkedin | https://www.linkedin.com/in/daniel-lattimer-37533016/
Guido Grillenmeier, Principal Technologist EMEA at Semperis [@SemperisTech]
On Linkedin | https://www.linkedin.com/in/guidogrillenmeier/
Note: This story may contain promotional content. Learn more.
Get your free Active Directory security vulnerability assessment
