Real World Lessons Learned from 18 months of CIEM implementations in the Enterprise

Least privilege is a key part of any Zero Trust strategy. It was difficult on-prem and has gotten much worse as you move into a multi-cloud environment. When combined with a common cloud misconfiguration that is exposed on the internet, this can lead to a catastrophic breach. In this talk we’ll discuss what we’ve learned by implementing CIEM at large enterprises to help them get to least privilege. We’ll cover what the most common mistakes are, how many overprivileged users, groups, and service accounts are really out there, and how to get them to least privilege. You’ll leave this presentation with a list of go-do’s your team can accomplish within the next 30 days to strengthen your security posture across multiple clouds. SANS CloudSecNext Summit 2023 Real World Lessons Learned from 18 months of Cloud Infrastructure Entitlement Management (CIEM) implementations in the Enterprise Speakers: Bailey Bercik, Product Manager II, Microsoft Mark Morowczynski, Principal Program Manager, Microsoft View upcoming Summits: http://www.sans.org/u/DuS

Join Today
Oops, I Leaked It Again - How We Found PII in Exposed RDS Snapshots
▶︎

Oops, I Leaked It Again - How We Found PII in Exposed RDS Snapshots

What is CNAPP and Why To Adopt It
▶︎

What is CNAPP and Why To Adopt It

Failing to Scale: Bumps in the Road While Scaling Cloud Access
▶︎

Failing to Scale: Bumps in the Road While Scaling Cloud Access

What to teach when AI writes the code | Rainer Stropek | TEDxLinz
▶︎

What to teach when AI writes the code | Rainer Stropek | TEDxLinz

Beyond Google: How to Prepare Your Home Services Business for the AI Search Revolution
▶︎

Beyond Google: How to Prepare Your Home Services Business for the AI Search Revolution

Elevate Cloud Security Using Permissions Management in Microsoft Defender for Cloud
▶︎

Elevate Cloud Security Using Permissions Management in Microsoft Defender for Cloud

Beyond the Basics: What Cloud Defenders Need to Know
▶︎

Beyond the Basics: What Cloud Defenders Need to Know

Check Point CloudGuard Deep Dive into AWP, CIEM and ERM
▶︎

Check Point CloudGuard Deep Dive into AWP, CIEM and ERM

Trump Tries to Catch Reflecting Pool “Vandals” & Miami Gets a Scottish Takeover | The Daily Show
▶︎

Trump Tries to Catch Reflecting Pool “Vandals” & Miami Gets a Scottish Takeover | The Daily Show

CNAPP, CSPM, CWPP; What’s the Difference and How Can They Improve My Cloud Security?
▶︎

CNAPP, CSPM, CWPP; What’s the Difference and How Can They Improve My Cloud Security?

Market Insights Webinar 2026 | Financial Life Advisors & BlackRock
▶︎

Market Insights Webinar 2026 | Financial Life Advisors & BlackRock

Türkei – USA Highlights | Gruppe D, FIFA WM 2026 | sportstudio
▶︎

Türkei – USA Highlights | Gruppe D, FIFA WM 2026 | sportstudio

Cybersecurity Architecture: Who Are You? Identity and Access Management
▶︎

Cybersecurity Architecture: Who Are You? Identity and Access Management

Understanding CIEM: Managing Cloud Entitlements and Infrastructure
▶︎

Understanding CIEM: Managing Cloud Entitlements and Infrastructure

How to Successfully Implement a Cloud Security Platform
▶︎

How to Successfully Implement a Cloud Security Platform

How to use AI and Machine Learning to Drastically Improve Fundraising Email Outcomes | Quick Byte
▶︎

How to use AI and Machine Learning to Drastically Improve Fundraising Email Outcomes | Quick Byte

Secure Your Cloud Entitlements and Avoid an Identity Crisis
▶︎

Secure Your Cloud Entitlements and Avoid an Identity Crisis

Human-Centric Selling and Risk-Aware Growth with Jack Haworth
▶︎

Human-Centric Selling and Risk-Aware Growth with Jack Haworth

What Is Cloud Infrastructure Entitlement Management (CIEM)? A Key Cloud Access Solution
▶︎

What Is Cloud Infrastructure Entitlement Management (CIEM)? A Key Cloud Access Solution

Webinar: How Executives Make Informed Cyber Decisions
▶︎

Webinar: How Executives Make Informed Cyber Decisions