Software Security at Microsoft: ACE Team Tour, Part 2
Play Software Security at Microsoft: ACE Team Tour, Part 3
Description
The Application Consulting & Engineering team (ACE Team) assesses all of Microsoft’s line of business applications for privacy and security vulnerabilities. This discussion among Ahmad Mahdi (Security Technologist), Ricardo Birmele (Security Technologist
and Training Coordinator), Talhah Mir (Senior Security Technologist), Chris Lundquist (Performance Technologist), and Tony Dang (Privacy and Program Manager) talk about what it involved in the assessment process. Robert Scoble conducts the interview.
Part 2
Part 1
Download
Download this episode
More episodes in this series
The ACE team at Microsoft: Threat Analysis and Modeling
Related episodes
What are TPMs used for and why? | One Dev Question
Why is the PIN for Windows Hello more secure than a password? | One Dev Question
Securing your IoT application with Azure Security Center
Role Based Access Control in Azure IoT solution accelerators
Defrag Tools #198 - AaronLocker
Defrag Tools #197 - Windows Defender ATP
Defrag Tools #196 - Windows Defender Application Guard
Mobile App Security with Kerry W. Lothrop
A Perspective on Industrial IoT Security by TrendMicro
Interview with Kelly Anderson, Product Marketing Manager, Azure Security
The Discussion
-
jason818_253.33 Any one on the team get the job because they hacked into something they "shouldn’t" have?
-
BillP Haha, I was wondering the same thing. Lot's of hackers/crackers end up getting good jobs with software companies and governments.
I love the guy's shades! -
ahmad_aceteam Hey that guy is me and yes, it took many many hours to find those shades!
Thanks for coming by, if you want to read more about the ACE (Application Consulting & Engineering) team, come by our blog here: https://blogs.msdn.com/ace_team
Ahmad -
ahmad_aceteam Oh and to answer your question, no we typically don't hire "black hat" hackers or "reformed" hackers around these parts. Not that we know of anyway
-
Jim Carr yes, convincing the coo && cto
the levels of associated risk they are vulnerable too
is a common problem right now.
~color coded executive level reports with cool pies charts always does the trick...
you should have seen it in the 90's when terminology wasn't in paperback form.
-
TonyMaupin Hey Ahmad, it's Tony Maupin, from past IOActive fame. Great to see you again. Very good interview, and still lady-killer I see. Keep in touch.
Tony Maupin -
alina85 It is the best job in the world to be a hacker