Summary
This demonstration showcases Cohesity's Directory Services Protector (DSP), an identity threat detection and response (ITDR) solution designed to secure Active Directory and Entra ID as tier zero assets. The video illustrates how DSP continuously evaluates identity infrastructure for real attack paths rather than simple configuration drift, identifying over-permissioned objects, stale privileges, and misconfigurations that attackers commonly exploit. The demonstration walks through a simulated privilege persistence attack where an unauthorized user is added to a high-privileged security group, showing how DSP detects the change in near real-time, prioritizes it by risk, and enables one-click remediation to revert the directory to a trusted state. The solution provides full audit documentation of every indicator, alert, and remediation action, giving security teams, auditors, and incident response personnel a defensible record of identity incidents and their resolution. Cohesity positions this capability as part of their broader Identity Resilience and cyber resilience strategy, emphasizing rapid containment and proactive security for identity environments.
