Improving Microsoft security - Ongoing Efforts to Help Customers

Jamie Sharp 2004

This presentation will involve a practical demonstration of how a comprehensive security management tool can prevent and manage the growing threat of malicious code. The number of threats, their technical sophistication and the speed with which they spread are all increasing. As such, it becomes increasingly important to have the capabilities to enforce policies, the flexibility to manage different policies and change them quickly if required, and the visibility to ensure all is how it should be. A demonstration of McAfee's ePolicy Orchestrator will ensure those who currently use McAfee maximise their investment and provide a good comparison point to the current solution for those who don't use McAfee. nova:/data/www/sites/securecon/2004# more p4.html On October 9, 2003, Steve Ballmer outlined new initiatives in Microsoft's ongoing security efforts designed to address the increasing threats faced by computer users around the world. Ballmer announced new programs and technology investments to be delivered over the coming months, all of which reflect a companywide focus on increasing the security of millions of users and critical business systems worldwide. Specific actions include improved patch management processes and technologies to help customers stay up to date and secure, global education programs to provide better guidance and tools for securing systems and updates to Windows XP and Windows Server 2003. This presentation will detail the Microsoft security strategy, patch management processes and technologies such as Microsoft Baseline Security Analyser and Software Update Services and provide information regarding the changes in Windows XP Service Pack 2.

Presentation slides

About Jamie Sharp

Jamie Sharp is a Security Architect with Microsoft. He has over 10 years of IT Security experience and holds a Certified Information Systems Security Professional (CISSP) certification. Jamie advises clients on best practice strategies for mitigating complex security issues. His technical security competencies include network and host security, communication protocols, network design, information security policy and process, threat and risk assessments, enterprise architecture and regulatory compliance. His customers include state and federal government departments, financial institutions, defence, manufacturing and traditional enterprise IT customers. He has conducted security assessments and risk analyses, deployed technologies for prevention and detection of security vulnerabilities and designed highly-available enterprise architectures.