Before we get into the good stuff – I want to give a shout out to Microsoft 365 Nation contributor Dana Epp and his community involvement. With his well-earned successes already in-hand, Epp has never lost his community commitment and has been a security MVP at Microsoft for over ten years.
Figure 1: Dana Epp (left) in the old days at a community conference with Aaron Booker from VarVid
Recently my LinkedIn notification made mention of Dana’s professional update. https://www.linkedin.com/in/danaepp/
I double-clicked down and discovered that Dana had exited Kaseya and was out in the wild again, starting Wildrook in his hometown of Vancouver BC. I spoke at length with Epp to get the scoop. Epp’s tenure at Kaseya arrived at a completion milestone once he integrated Scorpion Software into its operations and he helped fundamentally transform the CTO role. The call of the wild to get back into the startup scene resulted in the formation of Wildrook (www.wildrook.com). The core solution, called AuditWolf, is the cloud threat protection platform to protect your cloud resources in Azure. The topic of a whole ‘nother future blog post, AuditWolf takes advantage of Microsoft’s Cloud Management APIs to start aggregating data related to configuration changes, host setup and activity and user interactions with resources in Azure ,all without impacting live services. It then applies Dana’s expertise and experience in Azure security (he’s been a Microsoft Security MVP for 14 years now) to make sure your data and deployments are properly secured. “We allow you to gain operational intelligence and insight into the security of your data and deployments hosted in the cloud.” Epp shared.
When asked “why” he was building his new startup, Epp responded by saying “it is far too easy for IT professionals to screw up security in Azure. I see it every day. With the proliferation of public cloud computing outpacing cybersecurity defenses, and the concepts or IT administration blurring with DevOps to drive “Infrastructure as Code (IaC), a single click or command in the Azure Portal can cause a security violation if you don’t know the impact of that decision. And you won’t even know you did it… until it’s too late. That’s a real pain point. We can solve it.”
“At the highest level, we help you get the big picture with a contextual view of your Azure environment, and constantly monitor for change. Our report card paradigm and grading system allows you to see how we rank your cloud risks and helps to prioritize remediation efforts.” Epp said. “Then AuditWolf helps you remediate your risk by by generating the commands to run in Azure to fix the security violation(s), educating your administrators responsible for managing the cloud infrastructure while helping them fix it.”