Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

Identity Threat Detection & Response with Cohesity DSP

Cohesity
05/26/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


your identity and access management tools are tier zero assets. If compromised, all forms of authorization and access, it just grinds to a halt and identity becomes untrusted. In this video, I'll show you how some Paris Directory Services Protector, DSP, continuously assesses AD risks, detects dangerous changes in real-time, and can roll them back in seconds, all as part of Qoocity's identity resilience. DSP continuously evaluates Active Directory and Enter ID for real attack paths, not just configuration drift. This tells security teams what's wrong and not just what's changed in Active Directory and Enter ID right now. Over-permissioned objects, stale privileges, and misconfigurations are some of the things attackers exploit. This is how you reduce the attack surface before an identity attack happens. This is a classic attacker technique, establishing privilege persistence. Now, if we take a second to add a user to a high-privileged security group, we're going to be able to trigger an alert within the DSP console. DSP detects this in near real-time, prioritizing it by risk, and shows exactly what's changed and why it matters. This is the critical difference between visibility and response. With one action, we can automatically revert the directory to a trusted state and eliminate attacker persistence, no scripts, no manual cleanup. We can also look at the comparison before the changes were made and then after by clicking on Compare. Here you can see those changes before and after. This dramatically reduces the time to containment during an identity incident. We'll know what changes were made, and then we can undo those changes. This is the critical difference between visibility and response. With one action, we can automatically revert the directory to a trusted state and eliminate attacker persistence, no scripts, no manual cleanup. This dramatically reduces time to containment during an identity incident. Every indicator, alert, and remediation is fully documented. This gives security, auditors, and incident response teams a defensible record of what happened and how it was resolved. In short, today's demo showed how Cohesity Identity Resilience secures your identity environment as a tier zero asset. SEMPERA's Directory Services Protector reduces identity attack surface, detects identity attacks as they happen, and enables rapid containment, proactively securing identity as part of Cohesity's cyber resilience strategy. Thank you, have a good day.

TL;DR

  • Cohesity Directory Services Protector (DSP) continuously monitors Active Directory and Entra ID for real attack paths, not just configuration changes, identifying exploitable weaknesses before attacks occur.
  • The solution detects identity threats in near real-time and enables one-click remediation to revert directories to trusted states, eliminating attacker persistence without manual cleanup or scripting.
  • DSP provides comprehensive audit documentation of all indicators, alerts, and remediation actions, creating defensible records for security teams, auditors, and incident response personnel.

Summary

This demonstration showcases Cohesity's Directory Services Protector (DSP), an identity threat detection and response (ITDR) solution designed to secure Active Directory and Entra ID as tier zero assets. The video illustrates how DSP continuously evaluates identity infrastructure for real attack paths rather than simple configuration drift, identifying over-permissioned objects, stale privileges, and misconfigurations that attackers commonly exploit. The demonstration walks through a simulated privilege persistence attack where an unauthorized user is added to a high-privileged security group, showing how DSP detects the change in near real-time, prioritizes it by risk, and enables one-click remediation to revert the directory to a trusted state. The solution provides full audit documentation of every indicator, alert, and remediation action, giving security teams, auditors, and incident response personnel a defensible record of identity incidents and their resolution. Cohesity positions this capability as part of their broader Identity Resilience and cyber resilience strategy, emphasizing rapid containment and proactive security for identity environments.

Chapters

0:00 - Identity as Tier Zero Assets
0:39 - Continuous Attack Path Evaluation
1:08 - Detecting Privilege Persistence Attacks
2:07 - One-Click Remediation and Audit Documentation

Key Quotes

0:10 "... your identity and access management tools are tier zero assets. If compromised, all forms of authorization and access, it just grinds to a halt and identity becomes untrusted."
0:43 "DSP continuously evaluates Active Directory and Enter ID for real attack paths, not just configuration drift. This tells security teams what's wrong and not just what's changed in Active Directory and Enter ID right now."
2:07 "This is the critical difference between visibility and response. With one action, we can automatically revert the directory to a trusted state and eliminate attacker persistence, no scripts, no manual cleanup."

Categories:
  • » Webinar Library » Cohesity
  • » Data Protection
Channels:
News:
Events:
Tags:
  • Identity & Access
  • Threat Intelligence
  • Security Operations
  • Demo
  • Technical Deep Dive
  • Identity Threat Detection and Response
  • ITDR
  • Active Directory Security
  • Entra ID Protection
  • Privilege Persistence Attacks
  • Attack Path Analysis
  • Real-time Threat Detection
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: Identity Threat Detection & Response with Cohesity DSP

              Upcoming Webinar Calendar

              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting a Championship-Worthy Security Team for Unmatched Defense
                https://www.truthinit.com/index.php/channel/2025/crafting-a-championship-worthy-security-team-for-unmatched-defense/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-safeguarding-ai-accessible-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies for Effective Data Privacy and Protection
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-for-effective-data-privacy-and-protection/
              • 07/22/2026
                01:00 PM
                07/22/2026
                Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue
                https://www.truthinit.com/index.php/channel/2029/insights-from-attackers-during-the-fifa-world-cup-a-human-dialogue/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 07/29/2026
                01:00 PM
                07/29/2026
                Ask Your Cloud Anything: Unlocking Governance Silos in your Environments
                https://www.truthinit.com/index.php/channel/2048/ask-your-cloud-anything-unlocking-governance-silos-in-your-environments/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                14

                Crafting a Championship-Worthy Security Team for Unmatched Defense

                07/14/202601:00 PM ET
                • Jul
                  14

                  Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data

                  07/14/202602:00 PM ET
                  • Jul
                    21

                    Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                    07/21/202604:00 AM ET
                    • Jul
                      22

                      Insights and Strategies for Effective Data Privacy and Protection

                      07/22/202606:30 AM ET
                      • Jul
                        22

                        Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue

                        07/22/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version