In this episode of the Know Your Adversary podcast, hosts Jared Atkinson and Justin Kohler speak with Javier Azofra Ovejero, Head of Continuous Assessments at Siemens Healthineers. The discussion explores how his team utilizes BloodHound to measure and improve security posture across a massive enterprise, specifically focusing on the intersection of identity risk and continuous assessment. Javier details the creation of a custom integration that connects CyberArk privileged access management data with identity relationships in Active Directory and Entra ID via OpenGraph.
The conversation highlights the critical visibility gaps that occur when security teams analyze platforms in silos. By mapping the relationships between Active Directory users and CyberArk safes and accounts, the Siemens team uncovered hidden attack paths that allow low-privilege users to reach highly privileged identities. The episode emphasizes the strategic advantage defenders gain by visualizing these hybrid identity graphs, enabling them to remediate risky privilege paths before they are exploited by adversaries.
Top comments (0)