Skip to main content

Search

Request Info Apply Now

Undergraduate Certificates
Begin or advance your cybersecurity career at any age with our hands-on certificate programs.
Bachelors Degree
Transfer your credits to SANS.edu and become one of the most job-ready candidates in cybersecurity.
Graduate Certificates
Gain job-specific skills in highly technical certificate programs designed for working professionals.
Master’s Degree
Take your InfoSec career to the highest levels—developing both hands-on technical skills and the ability to lead.
Single Courses
Start with a course, advance to a cybersecurity certificate or degree
All Academic Programs
Explore hands-on undergraduate and graduate programs for every stage of your cybersecurity career.

Featured Program

Hands typing on a laptop

Applied Cybersecurity Certificate (ACS)

Get Your Questions AnsweredJoin a free online info session to see which program is right for you.

Why SANS.edu?
How To Apply
Tuition & Funding

Join us for a free online info session to learn more.

Resources for Veterans

Learn how to get the most from your Veterans Education Benefits.

Women in Cybersecurity

Empowering women to thrive in cybersecurity.

Get Your Questions AnsweredJoin a free online info session to see which program is right for you.

Research Overview
Learn how SANS.edu research is strengthening the field of cybersecurity.
Cybersecurity Research Papers
Explore real-world solutions to pressing issues across AI, cloud security, digital forensics and more.
Internet Storm Center
Discover the world's largest global cyber threat detection network.

Featured Research

Research Review Journal Volume 5

Explore the latest research from SANS.edu graduate students—professionals on the front lines of cybersecurity—tackling today’s toughest threats across AI, cloud security, digital forensics, zero trust, malware detection, and more.

Download the Journal

Get Your Questions AnsweredJoin a free online info session to see which program is right for you.

About Us
Students
Alumni
- Alumni Resources Alumni Resources
- Alumni Outcomes Report Alumni Outcomes Report

Launch Your Cyber Career

Let SANS.edu guide you on a proven path to success.

Sentinels Referral Program

Get recognized for your impact on the SANS.edu community.

Get Your Questions AnsweredJoin a free online info session to see which program is right for you.

Search

Request Info Apply Now

Cyber Research Papers
/Securing the Future with Microsoft Defender for Cloud: Best Practices and Insights

Cyber Research Papers

Securing the Future with Microsoft Defender for Cloud: Best Practices and Insights

The rapid migration to cloud environments brings unprecedented complexity and unique security challenges for organizations.

In this paper, you’ll learn how to enhance your cloud security posture through actionable insights and use cases involving Microsoft Defender for Cloud. Gain a deeper understanding of key areas such as cloud security posture management, DevOps security, and detection and response strategies—all tailored to help you future-proof your organization in an ever-changing threat landscape.

SANS_Product-Review_Microsoft (PDF, 3.70MB)

26 Mar 2025

ByDave Shackleford

Share

All papers are copyrighted

No re-posting of papers is permitted

Related Content

Identifying Security Vulnerabilities in Kubernetes Environments

This research aims to develop a practical methodology for identifying security misconfigurations in Kubernetes environments, across both Infrastructure-as-Code (IaC) and live cluster states.

14 May 2026

Marketing or Added Value? The Truth About Purpose-Built Detection and Response for Containers

With the rise of Cloud Detection and Response (CDR), this paper dives deeper into the added value and gaps of these solutions compared to the traditional pillar, Endpoint Detection and Response (EDR).

5 Dec 2025

ZTA Unpacked: The Critical Technical Components of Zero Trust Architecture

This paper demystifies the technical foundation of Zero Trust Architecture (ZTA) and outlines the key technologies that drive modern, mature implementations.

15 Aug 2025
Greg Scheidel

Navigating the Challenges of Securing Hybrid Environments

This paper explores ways to bring clarity and control back to your hybrid security strategy—with practical guidance on Zero Trust, unified monitoring, and the evolving role of AI in modern defense.

24 Jul 2025
Matt Bromiley

Securing Azure with PIM: A Just-in-Time Access Study

This study assesses Azure Privileged Identity Management (PIM) and its Just-in-Time access model within a controlled Azure environment, simulating enterprise scenarios across Azure Subscription Roles.

11 Jul 2025

Resiliency and Business Continuity in the Cloud Era

In this white paper, Dave Shackleford unpacks today’s evolving cloud threat landscape.

21 May 2025
Dave Shackleford

Out-of-Band Defense: Securing VPNs from Password-Spray Attacks with Cloud Automation

This research examines an out-of-band solution to detect and block password-spray attacks on Remote Access VPN services, addressing vulnerabilities like Cisco’s CVE-2024-20481 amid rising threats post-COVID-19.

12 May 2025
SANS Institute

The Flavor of Clouds: Are Some Cloud Platforms More Attractive to Attackers?

Significant financial loss and sensitive data exposure continue to be a significant risk for entities that host systems in the cloud.

17 Feb 2025

Detecting Azure Hybrid Machine Attack Paths with Graph Theory

This research extends the data collected by the security tool BloodHound to uncover hidden connections between on-premises devices and their cloud identities within an Azure environment.

7 Jan 2025

The Cost of Container Runtime Security

Containerization has fundamentally changed how applications are developed, deployed, and managed....

5 Dec 2024

Never Trust, Always Verify: Analysis of Zero Trust Best Practices for Conditional Access

This study examines the effectiveness of Microsoft Entra's Conditional Access policies in thwarting...

26 Sep 2024

Memory Safety and Beyond: Unveiling the Missing Piece in Golang

This study examines Go's default HTTP implementation while undergoing certain Denial of Service...

2 Aug 2024

Active Directory: Tactical Containment to Curb Domain Dominance

More than two decades after Microsoft released Active Directory, the identity platform remains in...

22 Apr 2024

Evaluating Detection Time Delta in Amazon GuardDuty

Understanding the effectiveness of security solutions like Amazon GuardDuty is essential for...

30 Nov 2023

Apples to Oranges: Understanding the Changing Attack Surface for Applications Migrated from Self- Hosted to SaaS

Why would you defend two instances of the same application differently? Self-hosted applications...

15 Sep 2023

Kubernetes: Stealing Service Account Tokens to Obtain Cluster-Admin

Kubernetes security is a complex subject that relies on well-designed Role-Based Access Control...

14 Jun 2023

Is Your Cloud Environment Secure? How Do You Know?

The adoption and utilization of cloud environments continue to proliferate for businesses of all...

8 Dec 2022

Enterprise Observable Security: A Holistic Approach Using Azure

The information security industry has been plagued with many technical and social challenges that...

5 Oct 2022

2021 Ransomware Case Study: Identifying High Priority Security Controls for Public Institutions

Three quarters through 2021 and malicious cyber actors appear to be taking full advantage of the...

1 Dec 2021

Decreasing Attacker Dwell Time in Azure Active Directory

As companies continue to embrace the cloud, attackers also have shifted their attack methods to...

21 Jul 2021

Cybersecurity is all we teach, and nobody does it better.

Research
Resources
Learn More

Privacy Policy
Terms and Conditions
Admissions
Do Not Sell/Share My Personal Information
Cookie Notice

© 2026 The Escal Institute of Advanced Technologies, Inc. d/b/a SANS Institute.

Our Terms and Conditions detail our trademark and copyright rights. Any unauthorized use is expressly prohibited.

SANS Institute
Internet Storm Center