2026 Webinars
- M365 Hardening: Modern Access Control Techniques, What-If Tool, and CA Backup & Import: Friday, February 27, 2026 11am-12pm
-
We wanted to share some techniques for hardening – if doing audit with us, you’ll definitely hear about these.
Also, I have created a “what if scenario” script that iterates through each device platform and client app combination for a user or users (email address), and also gives a dashboard to show whether access would be blocked if coming from an external IP address; it’s not a vulnerability assessment tool, but I would say it’s like one in that it will definitely point out holes in your environment if they exist.
Last, we’ve noticed that conditional access policies, named locations, authentication strengths, authentication methods, app protection profiles aren’t always being backed up with M365 backups (if they are, then excellent – we’ve just been seeing that they aren’t), so I have created a set of export and import scripts that can be used to back those things up locally and then when needed, reimport them. So, wanted to go through the techniques for hardening, then the “what if scenario” tool, and lastly the backup and import CA scripts.
- M365 - Copilot Intro - Walkthrough Example: Thursday, March 26, 2026 1pm-2:30pm
-
My plan here is to walk through either creating a basic Copilot chat or a fairly simple Copilot autonomous agent – both just as examples.
Reserving an hour and a half for this one just to make sure there’s enough time to make it through.
I think so many people are talking about Copilot, that this should generate value across the board.
2025 Webinars
- Securing Microsoft 365 Webinar Recording
-
Below is a link to the recorded (slightly edited) webinar!
-
Also, below are updated scripts. A couple of things I added - some additional cleanup after running MATT (Microsoft 365 conditional Access Triage Tool).
-
Also, in the other 3 scripts, there were some modules called that I didn't check whether were installed prior to running, so I've put if/else conditions; so if they aren't installed, they will get installed.
-
The webinar covers these scripts, how to run them, what they do and why, as well as introduces other security settings that should be tightened down in Microsoft 365.
- *** Updated v2 Script ***MATT (Microsoft conditional Access Triage Tool) v2 - Text Document - this updated version also checks what Grants are in place (e.g., multifactor authentication strength). Prior script wasn't listing all Grants.
- MATT (Microsoft conditional Access Triage Tool) - Text Document
- Mobile Device Email Access Reporting - Text Document
- Shared Mailbox Block Sign In Reporting - Text Document
- Verify Unified and Mailbox Audit Logging Enabled - Text Document
- Securing Microsoft 365 PowerPoint Slides
- Notes from email sent with links to settings and instructions on scripts, etc. - Word Doc
- Webinar Video Recording on YouTube
- Seth Earby Video on Intune enrollment notifications - workaround
To get below scripts, right click on the link itself and choose "Save link as".
Please note - the MATT script will not error out if the output file is already in the C:\Temp folder - but it won't overwrite it either - it'll just add to it.
So, please delete that file before running MATT scripts!
Old Webinars
Should there be a topic you might be interested in, please email (kkothari@sgcsecure.com) or call (515-229-5674) and let us know! Please click the link on any topic below (more will be added :)) to register!
- AD Audit Made Easy: Back to Basics Scripts for Enhancing Network Security and Oversight (Thursday, July 20 at 1pm Central Time)
-
We originally wanted to expand our audit offering to include an Active Directory audit; however, in testing our scripts with some banks, performing these scripts only once a year didn’t seem like it would add value; the amount of information obtained from these scripts makes them something that needs to be run more often (e.g., quarterly or even monthly).
-
So, we’ve decided to release our scripts for free.
-
Our script will summarize and provide you with various data related to your Active Directory environment, including, but not limited to: enabled accounts, disabled accounts, dormant accounts, privileged user accounts, Tombstone Policy, krbtgt Account, password policies, etc.
-
This webinar covers these scripts, how to run them, what they do and why, as well as introduces other potential tools that can be used for Active Directory oversight.
To get below scripts, right click on the link itself and choose "Save link as".
- ChatGPT: Unleashing Creativity and Knowledge with Generative AI (Tuesday, August 8 at 1pm Central Time)
This webinar will be a brief introduction into generative AI. If you attended our presentation at FutureOps earlier this year, then this will be a replica of that. It will be mostly live demo of how I’ve been using ChatGPT and why we believe all of you should be using it. We’ll review and provide a Generative AI Policy Template we created to ensure you’re all covered in this area.
- Log Event Monitoring: Events Every Bank Should Consider Monitoring (September 14 at 1pm Central Time )
Whether you have a SIEM or LEM solution, or nothing, this webinar’s focus is on what Windows events should be monitored for and why. We’ll cover other elements that should be monitored as well (e.g., Microsoft 365, Firewall, etc.).
- Securing Microsoft 365 (Thursday, October 19 at 1pm Central Time)
Although our audits cover high risk areas of Microsoft 365, this webinar is intended to dive deeper into the M365 environment. We’ll be covering how to strengthen your M365 environment “beyond the audit”.
Templates
Our approach to everything is to focus on action items and meaningful actions organizations can take to protect themselves. As a result, we provide free templates that bank's can use in their own information security programs if needed.
Please check back regularly - as needs arise, we will continue to add to this list. If there's something you are looking for that you don't see below, please let us know. We will try to provide whatever we can to assist your bank or organization in meeting it's IT needs. Please contact us at info@sgcsecure.com, or (515) 229-5674 for more information.
- Generative AI (ChatGPT) Policy Tempate
- Webinar on Ransomware and Ransomware Self Assessment Tool (R-SAT)
- R-SAT Sample Board Report
- Ransomware Self Assessment Tool (R-SAT) - SGC Marked Up Version
- R-SAT Sample Board Report
- Vendor Management Enhanced Due Diligence - Questionnaire
- Cybersecurity Self Assessment Tool
- CATO Risk Assessment
- CATO Board Report
- CATO Incident Response Wording
- CATO Onsite Visit Questions
- CATO Agreement Sample Wording
- Vendor Management Risk Assessment and Due Diligence Tracking
- Incident Response Testing
- Disaster Recovery Plan Walkthrough
- Disaster Recovery Roundtable Test
- Quick Tips Phishing Training for Customers
- FDIC Consumer News --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. ---
- Instructions to Clear your web browser's cache, cookies, and history --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. ---
- Reserve a .om domain --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. --- Also, we do not profit in any way from use of this domain service or link. ---
Videos
In keeping with our approach to transparency, we periodically record videos that we feel assist banks with information security training.
Please check back regularly - as needs arise, we will continue to add to this list. Please contact us at info@sgcsecure.com, or (515) 229-5674 for more information.
- Implementing One Time Temporary Access Pass (TAP) for Initial Access to Email via Mobile Device
- Please Read: Note: 1 time TAP for mobile ONLY works if you've implemented Intune OR MAM - not if you've implemented BOTH Intune AND MAM. Truly, MAM is for personal owned mobile devices; Intune is for corporate owned mobile devices - it's not bad if you're doing both, but one needs to be chosen to properly apply TAP and we feel like TAP protects from malicious actors in a signficant way. ... The mobile device quarantine process this past few months doesn't appear to work consistently. We're certain there's a reason why it isn't working, but when something is working sometimes, but not all the time, it's not a true control. So, the above link is a video to implementing TAP for initial access to email on a mobile device. Remember - the video above ONLY works if you've established Intune or MAM (app protection policies) properly. If doing both TAP and quarantine process - then when quarantine works, after the TAP, you may have to release acces within quarantine. That being said, TAP is strong enough that it would be ok to remove the quarantine process once TAP is implemented. If you are still only using a registration campaign, and no authentication methods specified, we do recommend hiring Seth Earby who can be reached at (813) 358-8474.
- * Recorded Webinar * Ransomware Self-Assessment Tool (R-SAT) (Conducted January 11, 2021) This was our first Webinar for 2021. A practical walkthrough of the R-SAT, how to complete it and how to use it.