There's a wealth of webcasts that are coming up in January - they're all free of course. If you're an IT Professional and would like to broaden your understanding of developer issues then I suggest viewing some of their sessions (listed @ the end of this post) and vica versa.
There's a complete list of security webcasts at the following link Security Webcast Calendar
FOR EVERYONE (including Executives) Microsoft Executive Circle Webcast: Security360 with Mike Nash: Understanding the Security Challenges of Mobile Devices (Level 100)
FOR IT PROFESSIONALS
TechNet Webcast: Identity and Access Management (Part 1 of 2): Technical Overview (Level 200)
Thursday, January 05, 2006 - 9:00 AM - 10:00 AM Pacific Time
Chris Avis, TechNet Presenter, Microsoft Corporation
This two-part series describes how you can use identity management solutions to create and manage user account information efficiently and securely across multiple systems in an enterprise. This first webcast shows how identity information may be shared and synchronized even when distributed across several different locations. We show how access management solutions can help you to ensure that user accounts are granted the appropriate access to resources across different systems in an enterprise network
TechNet Webcast: Identity and Access Management (Part 2 of 2): Details of Intranet and Extranet Access Management (Level 200)
Friday, January 06, 2006 - 9:00 AM - 10:00 AM Pacific Time
This two-part series describes how you can use identity management solutions to create and manage user account information efficiently and securely across multiple systems in an enterprise. Having described the principles and concepts of access management in the first webcast, this second webcast explains in more detail how to apply these principles and methods specifically to your organization's intranet, and also how to apply them to an external network.
TechNet Webcast: How Microsoft Information Security Protects Critical Information Assets (Level 300)
Tuesday, January 10, 2006 - 9:00 AM - 10:00 AM Pacific Time
Igor Volovich, Microsoft Information Security, Security Engineer, Microsoft Corporation
How does the Microsoft Information Technology (IT) team secure a computing environment that has more than 300,000 network devices in 96 countries? This webcast shows how Microsoft Information Security manages security risks by adhering to the following standards: fast, reliable, protected, and secure by design. Learn how we align the Information Security organization with the security life cycle, translating risk into a coherent plan composed of key strategies and tactics. Then take a deeper dive into enhanced auditing and monitoring. We discuss two hot topics, automated vulnerability scans and network-based intrusion detection systems (NIDS). Learn our approach to protecting critical information by monitoring for vulnerabilities, complying with policy, and using NIDS.
TechNet Webcast: Defense in Depth: Sybari Antigen Solutions for E-Mail Hygiene (Level 200)
Wednesday, January 11, 2006 - 9:00 AM - 10:30 AM Pacific Time
Peter Eicher, Sr. Product Manager, Enterprise Access and Security Products, Microsoft Corporation
Now that 50% of all e-mail is spam and 85% of viruses use e-mail to propagate, comprehensive e-mail protection is critical for overall network integrity. This webcast presents defense-in-depth to strengthen e-mail—and thereby overall network—security. We describe the protection that Sybari Antigen Solutions offers from viruses, worms, and spam. We also discuss content protection technologies that you can combine to eliminate single points of failure and reduce the window of vulnerability for emerging threats. We also cover perimeter defense; layered elimination of unsolicited traffic; multi-engine, server-level threat detection, and incident containment. Learn how you can apply a defense-in-depth strategy to reduce infection rates and maximize performance in e-mail environments.
TechNet Webcast: Information About Microsoft January Security Bulletins (Level 200)
Wednesday, January 11, 2006 - 11:00 AM - 12:00 PM Pacific Time
Christopher Budd, CISA, CISM, CISSP, ISSMP Security Program Manager, PSS Security, Microsoft Corporation
Stephen Toulouse, Security Program Manager, Microsoft Corporation
On January 10, 2005, Microsoft releases its monthly security bulletins. Join us for a brief overview of the technical details of the January security bulletins. The intent of this webcast is to address your concerns. Therefore, most of our time is devoted to giving you the opportunity to ask questions about the bulletins and get answers from our security experts.
TechNet Webcast: Implementing Exchange Server 2003 Security (Part 1 of 2): Securing Services and Messaging Protocols (Level 200)
Monday, January 16, 2006 - 11:00 AM - 12:30 PM Pacific Time
Kevin Remde, TechNet Presenter, Microsoft Corporation
Securing communication over networks is essential to securing your organization from intrusions, overloads, and interruptions of many types. In this first webcast of a two-part series on Microsoft Exchange Server 2003 security, we describe how to deploy a more secure Exchange 2003 infrastructure and how to secure its server services and messaging protocols.
TechNet Webcast: How Microsoft IT Implements Exchange 2003 Anti-Spam Technologies (Level 300)
Tuesday, January 17, 2006 - 9:00 AM - 10:00 AM Pacific Time
Konstantin Ryvkin, Microsoft IT Group Manager, Microsoft Corporation
Alexander Nikolayev, Microsoft Program Manager, Microsoft Corporation
Wouldn’t we all like to improve how we manage spam? This webcast presents how Microsoft does just that, providing an overview of anti-spam technology in Microsoft Exchange Server 2003 with Service Pack 2 (SP2) and how the Microsoft Information Technology (IT) department uses these technologies to help control spam. The webcast also provides a complete overview of the anti-spam technologies available in SP2 and explains how the department implements them. Join us to learn best practices, tips, and other useful information for getting the most from the anti-spam technologies in SP2. We conclude with a question and answer session.
TechNet Webcast: Security Considerations When Upgrading to SQL Server 2005 (Level 200)
Wednesday, January 18, 2006 - 9:00 AM - 10:30 AM Pacific Time
Girish Chander, Program Manager, Microsoft Corporation
Microsoft SQL Server 2005 offers improved capabilities to secure the database, but there are still other things to consider when upgrading. From a security perspective, this webcast prepares you to upgrade from a previous version of Microsoft SQL Server to Microsoft SQL Server 2005. This webcast covers configuration option changes, surface area controls, and feature enhancements. Take advantage of the new capabilities in SQL Server 2005 by learning about the other steps you can take to further secure your system after the upgrade.
TechNet Webcast: Implementing Exchange Server 2003 Security (Part 2 of 2): Protecting Against Unwanted E-Mail (Level 200)
Monday, January 23, 2006 - 11:00 AM - 12:00 PM Pacific Time
This second webcast in a two-part series on Microsoft Exchange Server 2003 security describes how to increase the security of e-mail that flows through an organization's Exchange servers. We also introduce you to Exchange 2003 features such as Real Time Block List support and Intelligent Message Filtering, tools that make it easier to reduce the amount of unwanted e-mail before it spreads through your organization.
TechNet Webcast: Best Practices for Security Update Management with Systems Management Server 2003 (Level 200)
Wednesday, January 25, 2006 - 11:00 AM - 12:30 PM Pacific Time
John Baker, TechNet Presenter, Microsoft Corporation
Join this webcast to learn about the best practices you should consider when you develop an update management solution using Microsoft Systems Management Server 2003. Get detailed recommendations for all parts of a software update solution, including the setup stage and the software update cycle. We provide specific guidance on updating desktop, mobile, and server computers. We also discuss using the Dell inventory tool to update Dell servers.
TechNet Webcast: Antivirus and Antispam Managed Services: When and How to Outsource E-mail Hygiene (Level 200)
Thursday, January 26, 2006 - 11:00 AM - 12:30 PM Pacific Time
Forrest Hobbs, Senior Technology Specialist, Microsoft Corporation
Touted by many as a key component for the future of e-mail security, outsourced messaging protection has become the solution of choice for a number of informed information technology (IT) administrators and service providers. This webcast presents how outsourced e-mail security services provide enterprise antispam and antivirus protection and detail the benefits of such services in terms of cost, efficiency, security, policy enablement, and archiving. We also provide a checklist of considerations that you can use to decide when and how to outsource e-mail hygiene in a wide range of different business scenarios.
TechNet Webcast: Implementing Messaging Security for Exchange Clients (Level 200)
Monday, January 30, 2006 - 9:00 AM - 10:30 AM Pacific Time
Harold Wong, TechNet Presenter, Microsoft Corporation
To ensure that e-mail messages can be read only by the intended recipients, it is as important to provide security for the clients of Microsoft Exchange Server 2003 as it is to secure the server itself. This webcast describes solutions such as using Microsoft Exchange Secure/Multipurpose Internet Mail Service Extensions (S/MIME) and information rights management to protect e-mail content. We also discuss using remote procedure call (RPC) over Hypertext Transfer Protocol (HTTP) to help secure client connections to Exchange Server 2003 over the Internet. We conclude with a look at controlling access to e-mail attachments and show how to manage and secure Microsoft Outlook Web Access.
TechNet Webcast: How Microsoft Delivers Self-Service Identity and Access Management Solutions (Level 300)
Tuesday, January 31, 2006 - 8:00 AM - 9:00 AM Pacific Time
Michelle Beaulieu, Microsoft IT, Senior Service Manager, Microsoft Corporation
Learn how the Microsoft information technology (IT) department uses Microsoft Identity Integration Server (MIIS) 2003 to empower end users with a self-service identity and access management solution. The solution creates a personalized e-mail address, is user friendly, and provides flexibility for regional naming preferences. At the same time, the solution is robust, spans complexities, and enforces compliance with defined conventions for naming accounts. Join this webcast for an exclusive look at how Microsoft determined the business logic and deployed Easy ID in six months.
TechNet Webcast: Enabling Secure Remote Access to Exchange Server 2003 (Level 200)
Tuesday, January 31, 2006 - 9:00 AM - 10:30 AM Pacific Time
Tom Bartlett, ISA Solution Specialist, Microsoft Corporation
As operations become increasingly decentralized and working practices evolve to better suit market demographics, the need for efficient remote access has become increasingly prevalent. In this webcast, we outline best practices for securing Microsoft Exchange Server 2003 to ensure that network management, policy, and security are not compromised by remote e-mail access. The discussion covers a wide range of topics, such as faster Exchange publishing, more secure remote access, e-mail hygiene considerations, efficient bandwidth management, and enhanced Microsoft Outlook Web Access security. This webcast offers the knowledge you need to provide remote users with efficient, secure, and well-managed access to Exchange.
FOR DEVELOPERSMSDN Webcast: ASP.NET Soup to Nuts: Web Site Security (Level 200)
Monday, January 09, 2006 - 9:00 AM - 10:00 AM Pacific Time
Bill Steele, MSDN Developer Community Champion, Microsoft Corporation
Explore Web sites from a hacker’s point of view to learn what you can do to protect your site, and, more importantly, the information it contains. In this webcast, we demonstrate several types of hacks so that you see exactly what types of vulnerabilities hackers are looking for in a Web site.
MSDN Architecture Webcast: Using Active Directory and ADAM as Part of Your Identity Strategy (Level 200)
Tuesday, January 10, 2006 - 11:00 AM - 12:00 PM Pacific Time
Kannan C. Iyer, Program Manager, Microsoft Corporation
Microsoft Active Directory and Active Directory Application Mode (ADAM) represent a breakthrough in directory services technology, providing flexibility and the ability to support identity-enabled applications while helping to keep infrastructure costs down. This webcast shows how to use Active Directory and ADAM as a part of your organization’s identity strategy. Learn how many features of ADAM, such as Microsoft Windows integrated authentication, user proxy objects, and ADAMSync, help with identity consolidation, rapid application development and deployment, and increased security. Find out how to incorporate these features into your application and how to recognize when to use Active Directory and ADAM in the various directory roles.
MSDN Architecture Webcast: Microsoft Identity and Access Management Strategy and Road Map (Level 200)
Stuart Kwan, Director of Program Management, Microsoft Corporation
Identity and access management are rapidly becoming the top business priorities as organizations look to increase security, reduce risk, and decrease operational costs. Learn about the Microsoft approach to identity and access management for employees, partners, and customers who use corporate intranets and extranets. Find out how products such as Microsoft Active Directory, Active Directory Application Mode (ADAM), and Microsoft Identity Integration Server (MIIS) play a key role in identity and access management now and in the future.
MSDN Architecture Webcast: patterns and practices Live! Securing Web Services with X.509 Certificates in WSE 3.0 (Level 300)
Wednesday, January 11, 2006 - 1:00 PM - 2:00 PM Pacific Time
Don Smith, Product Manager, Microsoft Corporation
Do you face the complexities of improving security in communications? This webcast shows how to implement message layer security with X.509 certificates in Web Services Enhancements (WSE) 3.0 to provide authentication and secure communications between client applications and Web services. We begin by exploring design-level decision criteria that help you determine when to use X.509 certificates, and we finish by taking a look at an implementation strategy. Join us to learn how the solution works and walk through the implementation’s code and configuration.
MSDN Architecture Webcast: Authorization Manager from the Developer Perspective (Level 200)
Tuesday, January 17, 2006 - 11:00 AM - 12:00 PM Pacific Time
Dave McPherson, Program Manager, Microsoft Corporation
As corporate security and regulatory compliance requirements increase, the need for a simple and common application authorization model grows. Application developers and enterprise administrators are aligning around role-based access control (RBAC), but they are frustrated by the differences in terminology between various implementations of RBAC. In this webcast, we discuss the Microsoft RBAC model and demonstrate how to integrate Authorization Manager, an RBAC implementation, in your applications.
MSDN Architecture Webcast: patterns & practices Live!: Securing Web Services with Kerberos in WSE 3.0 (Level 300)
Wednesday, January 18, 2006 - 1:00 PM - 2:00 PM Pacific Time
In this webcast, we take an in-depth look at implementing message layer security with Kerberos in Web Services Enhancements (WSE) 3.0 to provide authentication and secure communications between client applications and Web services. We begin by considering the design-level criteria that would lead to the decision to use Kerberos, and then we walk through an implementation strategy. We then explain how the solution works and examine its code and configuration.
MSDN Architecture Webcast: patterns & practices Live!: Authentication to Web Services with UsernameToken in WSE 3.0 (Level 300)
Wednesday, January 25, 2006 - 1:00 PM - 2:00 PM Pacific Time
This webcast offers an in-depth look at authentication with a Web service using the Web Services Enhancements (WSE) 3.0 UsernameToken, and shows how to secure the communications with X.509 certificates. Learn about extensibility points in WSE, such as using a custom UsernameTokenManager to validate credentials presented to the Web service in a UsernameToken against various identity stores and authentication services. During the discussion, we consider design-level criteria that would lead to the decision to implement UsernameToken authentication. We then explain how the solution works, examining the code and configuration of the implementation along the way.