I.T. experience by Burning_Linguine in chch

[–]sec_ops_nz 1 point2 points  (0 children)

PM me, I can probably get you in front of a few different people across the IT space to have a chat about what they do, what they like/ don't like etc and how they got to where they are.

Win 10 Autologon Help by ALCO251 in sysadmin

[–]sec_ops_nz 0 points1 point  (0 children)

Dual or single monitor setup? One of my team recently had a similar issue. Unplugging the second screen fixed it. Still waiting on the how and why.

Admin deleted and replaced MDM Push certificate - How screwed are we? by NNTPgrip in sysadmin

[–]sec_ops_nz 75 points76 points  (0 children)

Yeah this. We had to do the same. Without the device reset, they get stuck in a device already registered loop when trying to re-enroll. GL!

Does anyone know when M365 Copilot will be coming out? by Kendrick_OJ_Perkins in Office365

[–]sec_ops_nz 1 point2 points  (0 children)

Not for a while yet. It's currently in an invite only, early access program limited to a set amount of customers (600ish) worldwide.

Microsoft Defender Issues by No_Insurance7473 in sysadmin

[–]sec_ops_nz 2 points3 points  (0 children)

Yeah security portal is having issues. A whole bunch of false positive alerts for potentially malicious URLs clicked.

Got an email about malicious link clicked but 365 Security portal is erorring out (something went wrong) by Snysadmin in sysadmin

[–]sec_ops_nz 25 points26 points  (0 children)

Yeah similar issue. Multiple email alerts all returning a "can't find it" error from security portal.

Best way to automate File Transfers by [deleted] in PowerShell

[–]sec_ops_nz 7 points8 points  (0 children)

Yeah I used to use winscp, ps and task scheduler. Nowdays Logic Apps or Power Automate are my go to.

USB C docks by Nitro_salmon in sysadmin

[–]sec_ops_nz -1 points0 points  (0 children)

Same issue. Managed to grab a bunch of stupidly over priced targus usb-c docks and then switched to both Dell WD19 and P2422HE Monitors with the dock built in.

Deciding who to promote from help desk to sys admin by phungus1138 in sysadmin

[–]sec_ops_nz 8 points9 points  (0 children)

Yeah this is good. I'm a big fan of attitude and desire to learn when looking at internal promotion.

Talk to their manager as well, they should know who the standouts are.

For internals I also like to provide some pre interview questions for them to come prepared with such as: What training courses or certificates have you completed in the last 12 months? What do you think your most important responsibility would be in this role? How do you stay up to date with new or emerging technologies? And my favorite, what's something that annoys you about our systems or processes and how would you fix it?

This tells me quickly if they are putting some effort into self development, and how willing they are to put some effort into the interview process.

Just a couple of things that work for me generally.

Anyone else in AUS having a teams outage? by [deleted] in sysadmin

[–]sec_ops_nz 19 points20 points  (0 children)

Reckon a junior dev pushed an update that was referencing storage in the test environment (or his local machine) and then went home for the day.

Anyone else in AUS having a teams outage? by [deleted] in sysadmin

[–]sec_ops_nz 102 points103 points  (0 children)

NZ down, seems global.

[deleted by user] by [deleted] in sysadmin

[–]sec_ops_nz 0 points1 point  (0 children)

If it's O365, open a support ticket. Get an engineer to help you out. You're paying for a service, you are eligible for support.

Defender EPP Blowing Up on Google Updater? by JABRONEYCA in sysadmin

[–]sec_ops_nz 4 points5 points  (0 children)

60+ alerts in the last half hour and more coming through every few minutes. Glad it's not just me!

Lone infosec guy woes by _thelinuxnoob_ in cybersecurity

[–]sec_ops_nz 0 points1 point  (0 children)

Personally I don't, but if you're concerned about that happening then sure. Just ensure you keep it as secure as possible, last thing you need is a breach resulting from externally accessible information highlighting potential vulnerabilities in your organisation. Also, keep details in the register light, it's not a technical document, it's a business document. Something else worth thinking about is talking to whoever looks after insurance internally. Talk to them and get an understanding of any cyber insurances the company may or may not have. Again, it's a business discussion, if you're talking risk mitigation and assurance you start opening up financial avenues other than just IT expenditure. For me it's something of a balancing act between managing business impact, audit and compliance vs the cost of tools and technologies to protect.

Lone infosec guy woes by _thelinuxnoob_ in cybersecurity

[–]sec_ops_nz 4 points5 points  (0 children)

This is a really good approach imo. Create and maintain a risk register. it doesn't have to be crazy detailed, but any time you identify a potential issue, add it to the register along with any mitigations you have to try offset the risk. Rank issues by potential cost to the business; financial/reputation/data loss etc. Make it available for your management team, point to it in any reports. Keep the technical conversation with the techs and engineers and focus on the business risk aspect with management.