Home > IT-Pro Speaker Training > Sami Laiho > BlackBelt – Securing Windows 10 and Server 2016/2019

Course information

BlackBelt – Securing Windows 10 and Server 2016/2019

Culemborg (NL) or RemoteMonday 24 June 20194€ 2.799,00Register now
Culemborg (NL) or RemoteMonday 16 December 20194€ 2.799,00Register now

Duration: 4 days

Material: Student Lab Manual, Slide deck, and lab files

Language: English

Your trainer: Sami Laiho

 Sami LaihoIT Pro Speaker Training

Exclusive instructor & unique training content 

Gartner has said that one of the most needed changes in enterprise security is to move to a least privilege approach, whitelisting of applications and overall proactive security. Microsoft said in February 2018 that 85% of all security threats would have been mitigated by moving to proactive security. In year 2017 all major antimalware companies reported more than 1.000.000 new malware samples EVERY day! Do you really need more convincing that you need to do it as well than these facts. Well there is more just make you sure ...
Whitelisting is considered as the most recommended security feature for 2018 and up, and it’s also a NATO requirement for Windows 10 implementations. Now that Windows 10 is the last Windows ever, shouldn’t you take the time to actually do it smart? The BEST thing you can do is to learn from the Best Security Expert, and the most educating and entertaining speaker in the world – Sami Laiho. Sami has been consulting companies with 10 computers and enterprises with close to 600.000 endpoints. Many things that you take for granted when it comes to energy or money is actually secured by his knowledge. Don’t miss out, this is the cheapest consulting you will ever get, while learning!

While the client and the server versions share the same Kernel there certain things that only apply to Windows Servers – this course also includes the needed info on how to protect Windows Server and infrastructure services!

Level: 300

Target audience: This training is meant for all administrators and security professionals who want to make sure their environments are ready for the new security era where traditional security measures like anti-malware are not effective anymore, and who want to make the best out of what Windows 10 has to offer. Sami teaches nurses, devs and CSO’s so don’t be afraid to join the class even if you are not the traditional ITPro.

- Basic experience with Windows Administration
- Basic understanding of Active Directory
- Basic understanding of networking infrastructure.

Join this four day workshop by Sami Laiho, one of the world’s leading Windows Security experts and get this thing sorted out and make sure you are prepared for the future. During this hands-on training you will see why proactive security is mandatory and also learn to implement it in practice.

Detailed content description:

Day 1:

  • Introduction to the current and future state of IT security
  • The showcase of how Windows really gets hacked!
  • Implementing hard disk encryption – Building a BulletProof BitLocker!
  • Implementing shielded VMs and Virtual TPMs
  • Cornerstones of Windows Security – How the Security Subsystem really works
  • Using Baselines to protect clients and servers (and how to fix Microsoft’s broken default ones)

Day 2:

  • Implementing the principle of least privilege – getting rid of admin rights!
  • Correct use of different levels of admin accounts in an enterprise
  • Why and How to use UAC effectively
  • Using containers and Windows Defender Application Guard to increase security
  • Server 2016/2019 Bastion/Red/ESAE forests and the future of Active Directory security
  • Protecting infrastructure services like DHCP, DNS and AD DCs

Day 3:

  • Mitigating Pass-The-Hash attacks and whatever Mimikatz can do to you
  • Implementing Credential Guard and other Secure Kernel technologies
  • Getting rid of lateral movement of admin accounts - Implementing a 3-tier infrastructure
  • Correct decisions when choosing secure hardware in the future
  • Moving to Biometrics and Two-Factor Authentication

Day 4:

  • Implementing the PAW – Privileged Access Workstation
  • Securely managing Servers
  • Protections RDP-connections
  • Implementing Whitelisting in Windows
  • AppLocker and Device Guard in Windows 10
  • Implementing REALISTIC Security in REAL life – comparing Office desktops to workstations that can launch missiles

About the trainer: Sami Laiho

Let the Master teach you all the tricks up his sleeves. Sami's been troubleshooting and teaching the art to others for 15+ years and counting. Sami's troubleshooting sessions have been awarded "Best in Show" in multiple worldwide conferences so he not only knows his stuff but can actually teach it in an effective and entertaining way.
This course teaches you how the OS works and how to troubleshoot it and it is applicable for every OS from NT 4 to Windows 10 - both servers and clients. Learn to troubleshoot the hardest errors and raise your abilities above others

Senior Technical Fellow


    Born in late 1979
    IT Admin since 1996
    MCT since 2001 (MCT / IAMCT Regional Lead – Finland)
    MVP in Windows OS since 2011

Specializes in and trains:

    Centralized Management
    Active Directory
    Penetration testing
    Social Engineering


    Ignite 2017 - Best External Speaker & Best Session by an External Speaker at        Microsoft 

    TechTalks 2017 - Best Sessions (#1 and #2) 

    TechEd North America 2014 - Best session, Best Speaker

    TechEd Australia 2013 – Best session, Best speaker

    TechEd Europe 2013 – Best Session by an external speaker

    Best session by Microsoft STEP in 2012

Publications & Recordings:

Avecto article

Videos on Ch9 


AppManagEvent2014 keynote session

AppManagEvent2017_Let’s keep everyone Admin when deploying Win10:not

AppManagEvent2017_How to install application packages for the modern secure Windows


BlackBelt Troubleshooting Windows Performance Issues

Black Belt Security with Windows 10

Zero Admins – Zero Problems

Technet Article - Three things you have to learn to stay in the IT Pro business

My Youtube channel 


Culemborg (NL) or RemoteMonday 24 June 20194€ 2.799,00Register now
Culemborg (NL) or RemoteMonday 16 December 20194€ 2.799,00Register now