Resolved a Sev2 data sync issue for Entra Connect in less than a day. The problem was caused by the security team having excessive permissions to the production Entra / Intune environment and they then consequently enabled policies that killed multiple Entra connected services due to improper permission scoping.
Month: February 2025
AWS Sev1 Data Leak Resolution – Full Story
The NOC team escalated the ticket to me as a Severity 1 incident: our vulnerability scanning tool, Tenable Nessus, had discovered that an AWS FTP account may have been configured to have an inappropriate level of access, potentially exposing data that should have been restricted. A Sev1 meant potential data breach, immediate business impact, and…
15 min Sev1 Resolution
NOC Team reported a Sev1 data leak from a vendor. So I recognized the impact and jumped on the task, despite having ZERO experience managing that aspect of AWS file access and permission. I was able to lock down the inappropriate access in less than 15 minute. READ THE FULL STORY HERE