This year marks the tenth BlueHat at Microsoft, and my sixth round in participating in the event that has been so instrumental in keeping Microsoft developers and executives in touch with the pulse of security research outside Microsoft, and serves as one of the key crossroads for the exchange of ideas from our internal security experts to the outside world. It is this bi-directional exchange of ideas that not only enriches our security knowledge and awareness, but helps to showcase our expertise to the external security research community. But this is old news. Good news, but old. ;-)
So what is new? One major change for our team this time around is that I now have the honor of leading the team that organizes BlueHat. I officially stepped into the role of head of security community outreach and strategy at the beginning of September, taking on not only the BlueHat planning team, and overseeing all of TwC Security's worldwide security conference sponsorship, but also I now run the program I founded in 2008: Microsoft Vulnerability Research (MSVR).
The security community outreach team at Microsoft has a challenging job – act as bi-directional liaisons between external and internal people whose passion is security. For some, that passion is focused on attack, and for us, it is focused on defense. We need to understand attacks in order to be good defenders, and so our relationships with the external security community are vital to keeping us aware of current and emerging trends in threats. The work of the team is most visible at BlueHat, but it continues throughout the year at established and emerging security conferences around the world.
The expanded scope of the security community outreach team to include MSVR will allow us to not only help shape how Microsoft engages with the security research community, but also to help usher in the next evolutionary step in Windows platform security, as we continue to expand our own security research to include finding, reporting, and helping to resolve more third party vulnerabilities that affect our customers.
So look for more news this year from MSVR, more innovations in security community outreach, and more cowbell in everything we do. As this year's BlueHat comes to a close, my further work as leader of this team begins in earnest. I am excited for this next chapter in Microsoft's security history where our team will get to pen a few more lines in an already impressive novel. As always, we welcome input from the security community, including security researchers, partners, and customers. You can find me on Twitter, and coming soon to a security conference near you!
*Postings are provided "AS IS" with no warranties, and confers no rights.*
Hanging out with us in the speaker lounge today and tomorrow are nearly 150 attendees from across the security ecosystem. Attendees span the industry, from those in the security researcher communities at large to our friends in government, security protection partner groups, and security response teams. It’s amazing to have such a diverse group of people here for two-way conversations with our engineers. It’s those talks, as well as the countless side meetings, community mixer events, and “hallway tracks” that make BlueHat successful. The interactions between our internal and external audiences always leave us more excited and committed as we all work toward building a more secure planet through shared ideals.
Last week I had the pleasure of being invited by Cisco to keynote their very first BlueHat-esque type of conference, which aims to improve their own security posture by bringing in key researchers who can share their findings with Cisco security professionals. It’s encouraging to see our peers and partners continuing the formula that has been so successful for us at Microsoft and inviting us to be a part of it. When Chris Hoff from Cisco gave a talk at BlueHat v9, it was one of the most highly rated talks on the cloud that our conference had ever seen. Sharing our platforms for these types of win-win outcomes makes it all worth it.
Okay, I need to go grab the mic and step back into my MC duties…until next time.
- Mike