BEGIN:VCALENDAR VERSION:2.0 PRODID:-//wp-events-plugin.com//7.2.3.1//EN BEGIN:VEVENT UID:13@sarpedonqualitylab.us DTSTART;VALUE=DATE:20260507 DTEND;VALUE=DATE:20260508 DTSTAMP:20260327T222335Z URL:https://sarpedonqualitylab.us/events/pass-summit-east-precon/ SUMMARY:PASS Summit East (Chicago) - Full day Security-workshop with Andrea s Wolter DESCRIPTION:\n \nWorkshop: SQL Server Security vs. Security Theater: Build a Defensible Data Estate\n\n Event website: https://passdatacommunitysum mit.com/east/\n\nAbstract:\n\nStop the "Security Theater" and build a trul y defensible data platform. This full-day workshop on security for SQL dat abases across SQL Server\, Azure SQL\, and Fabric is driven by real securi ty risks encountered - and abused - in the field.\n\nCommon security recom mendations often focus blindly on features like Transparent Data Encryptio n (TDE) or flagging sysadmin membership without providing practical guidan ce. This approach creates a false sense of security or unnecessary alarmis m while leaving actual attack paths ignored.\n\nThis PreCon focuses on wha t actually holds up in real environments. Based on real-world assessments and breach scenarios\, you will learn how attackers move through database environments - and how to make their job harder\, limit blast radius\, and detect them earlier using practical approaches grounded in Zero Trust and real-world operability.\n\nWe will also look at what auditors actually ch eck - and where common implementations fall short.\n\nDrawing on 25+ years in the field - including leading security feature development for SQL Ser ver and Azure SQL at Microsoft\, contributing to the SQL Server 2022 permi ssion model\, and advancing vulnerability assessment and Microsoft Purview -based governance capabilities – Andreas Wolter provides an inside-out v iew of the built-in security features\, how to use them effectively and wh ere there are gaps to consider.\n\nWe move beyond checkboxes and learn abo ut:\n\n Identity and authentication: SQL vs Windows AD vs Entra ID\, NTLM deprecation\, Kerberos readiness\, service account hygiene\, and where pl atform changes in SQL Server 2025 improve security.\n Access control in p ractice: roles\, permissions\, and common escalation paths\, applying Leas t Privilege to minimize the blast radius.\n Data protection: encryption s trategies and tamper evidence with Database Ledger\n Auditing and detecti on: building a minimal viable audit\, Extended Events vs Auditing.\n Netw ork- and system security configuration: what to avoid\, what to use and wh y it matters\n Security implications through Fabric OneLake.\n Microsoft Purview for Data Discovery and Data Governance (intro).\n\n \;\n\n..a nd of course\, demos of privilege escalation and authorization bypasses an d how to prevent them. ATTACH;FMTTYPE=image/jpeg:https://sarpedonqualitylab.us/wp-content/uploads /2026/03/PASS-EAST_logo-date_dark_500px.png LOCATION:Chicago\, \, X-APPLE-STRUCTURED-LOCATION;VALUE=URI;X-ADDRESS=\, ;X-APPLE-RADIUS=100;X-TI TLE=Chicago:geo:0,0 END:VEVENT END:VCALENDAR