Cybersecurity agencies from the Five Eyes alliance, including the Cybersecurity Infrastructure and Security Agencies (CISA) and the National Security Agency (NSA), have urged organizations to strengthen security controls for Active Directory (AD), a prime target for cyber attackers. In “Detecting and Mitigating Active Directory Compromises,” the agencies highlighted more than a dozen tactics used by threat actors to exploit AD and offered guidance on protective measures, including using free tools such as Semperis’ Purple Knight security assessment tool to find and fix vulnerabilities.
Several federal mandates now focus on addressing these security weaknesses in hybrid identity environments. In this new report, Edward Amoroso, founder and CEO of TAG Infosphere, discusses important functional demands for hybrid identity security specified by the Five Eyes Alliance, including:
- Adopting a Zero Trust strategy, which includes security identity systems
- Assessing and mitigating risks related to an Active Directory attack, including AD recovery and secure administration
- Ensuring robust identity federation and secure hybrid AD integrations with cloud providers such as Entra ID
By adhering to federal directives, implementing advanced security tools, and continuously monitoring identity systems, agencies can achieve a stronger security posture that aligns with evolving threats and compliance requirements. Download “Federal Requirements for Securing Hybrid Identity” for a fast breakdown of what you need to know.
