BlackBelt – Securing Windows 10/11, Server 2019-2025 and your Directory Services

Securing Windows: In this hands-on Windows Security training course with security expert Sami Laiho, you will learn how to effectively protect Windows Clients, Windows Server, Active Directory and Entra ID with proactive security measures. The focus is on the principle of least privilege, application allowlisting, Directory Tiering, Privileged Access Workstations and the latest security requirements, including specifications for Windows 10/11 and Server 2019-2025. Prepare for the future and secure your infrastructure with proven methods for securing your Microsoft environment. Whether you want to prepare for NIS2 or other regulations or just secure your environment without losing user productivity and usability, this is the course for you!

Day 1:

• Introduction to the current and future state of IT security
• The showcase of how Windows really gets hacked!
• Cornerstones of Windows Security – How the Security Subsystem really works
• Using Baselines to protect clients and servers (and how to fix Microsoft/CIS broken default ones)
• Implementing hard disk encryption – Building a BulletProof BitLocker!
• Realistic hacks of BitLocker
• Virtual TPMs

 Day 2:

• Blocking/Controlling USB-devices
• Mitigating Pass-The-Hash attacks and what ever Mimikatz can do to you
• Implementing LAPS
• If you RDP, you MFA!
• Windows Hello
• Phishing Resistant MFA
• VSM - Secure Kernel
• Implementing Credential Guard and other Secure Kernel technologies

Day 3:

• Getting rid of lateral movement of admin accounts – Implementing Directory tiering (AD/EntraID)
• Correct use of different levels of admin accounts in an enterprise
• Implementing the PAW – Privileged Access Workstation (Physical/Virtual)
• Why and How to use UAC effectively
• Privileged Identity Management (PIM)
• Privileged Access Management (PAM)
• Implementing the principle of least privilege – getting rid of admin rights! 

 Day 4:

• Securely managing Servers
• Protecting infrastructure services like DHCP, DNS and AD DCs
• Windows Firewall and IPsec
• Zero Trust Networking
• Implementing Allowlisting in Windows (AppLocker/WDAC/3rd Party)
• Implementing REALISTIC Security in REAL life – comparing Office desktops to workstations that can launch missiles

This training is designed for all administrators and security professionals who want to ensure that their environments are prepared for the new era of security—where traditional measures such as anti-malware are no longer effective—and who want to get the most out of Windows 10/11 and Windows Server 2019-2025.
You are not a traditional IT professional? No problem — Sami also teaches medical staff, aid workers, and CSOs.

• Grundkenntnisse in der Windows-Verwaltung, in Active Directory und der Netzwerkinfrastruktur.