{"id":7193,"date":"2026-03-27T15:03:14","date_gmt":"2026-03-27T20:03:14","guid":{"rendered":"https:\/\/andreas-wolter.com\/?p=7193"},"modified":"2026-04-16T18:47:52","modified_gmt":"2026-04-16T23:47:52","slug":"2026_precon_sqlserver_security_passsummiteast","status":"publish","type":"post","link":"https:\/\/andreas-wolter.com\/en\/2026_precon_sqlserver_security_passsummiteast\/","title":{"rendered":"I\u2019m Teaching a Full-Day SQL Server Security PreCon at PASS Summit East (Chicago)"},"content":{"rendered":"<section  class='av_textblock_section av-mn9arrfs-20c204b7b288331b7b6b99da03baa477 '   itemscope=\"itemscope\" itemtype=\"https:\/\/schema.org\/BlogPosting\" itemprop=\"blogPost\" ><div class='avia_textblock'  itemprop=\"text\" ><p>I\u2019ll be speaking at PASS Summit East this year in Chicago, and I\u2019ll be running a full-day pre-conference workshop:<\/p>\n<h2>SQL Server Security vs. Security Theater: Build a Defensible Data Estate<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-7194 size-medium\" src=\"https:\/\/andreas-wolter.com\/wp-content\/uploads\/2026\/03\/PASS-EAST_logo-date_dark_500px-300x130.png\" alt=\"\" width=\"300\" height=\"130\" srcset=\"https:\/\/andreas-wolter.com\/wp-content\/uploads\/2026\/03\/PASS-EAST_logo-date_dark_500px-300x130.png 300w, https:\/\/andreas-wolter.com\/wp-content\/uploads\/2026\/03\/PASS-EAST_logo-date_dark_500px-495x216.png 495w, https:\/\/andreas-wolter.com\/wp-content\/uploads\/2026\/03\/PASS-EAST_logo-date_dark_500px.png 500w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/p>\n<p>If you\u2019re responsible for SQL Server security, audits, or reducing data breach impact, this session is designed for you.<\/p>\n<p><a href=\"https:\/\/passdatacommunitysummit.com\/east\/pre-conference-sessions-and-speakers\/#speaker-andreas-wolter\" target=\"_blank\" rel=\"noopener\">https:\/\/passdatacommunitysummit.com\/east\/pre-conference-sessions-and-speakers\/#speaker-andreas-wolter<\/a><\/p>\n<h3>What this PreCon is about<\/h3>\n<p>Most environments aren\u2019t insecure because of missing features &#8211; they\u2019re insecure because of <strong>misconfigurations, over-privileged access, and false assumptions<\/strong>.<\/p>\n<p>Common recommendations often focus on individual features like TDE or flagging sysadmin membership, without addressing how attackers actually move through an environment. The result is often a false sense of security &#8211; or unnecessary alarmism- while real attack paths remain open.<\/p>\n<p>This workshop is <strong>based on real-world assessments and breach scenarios<\/strong>. We will look at how attackers operate in SQL Server, Azure SQL, and Fabric environments \u2014 and how to:<\/p>\n<ul>\n<li>make their job harder<\/li>\n<li>limit blast radius<\/li>\n<li>detect malicious activity earlier<\/li>\n<\/ul>\n<p>Adhering to proven security best practices not only strengthens your defenses, it also <strong>helps reduce the financial impact of a breach<\/strong> (for example through frameworks like <strong>HIPAA Safe Harbor<\/strong>).<\/p>\n<h3>Agenda Overview<\/h3>\n<ul>\n<li>Identity and authentication<br \/>\nSQL Server vs Windows AD vs Entra ID, NTLM deprecation, Kerberos readiness, service account hygiene, and relevant changes in SQL Server 2025<\/li>\n<\/ul>\n<ul>\n<li>Access control in practice<br \/>\nRoles, permissions, and common escalation paths, applying Least Privilege to minimize blast radius<\/li>\n<\/ul>\n<ul>\n<li>Data protection<br \/>\nEncryption strategies and tamper evidence with Database Ledger<\/li>\n<\/ul>\n<ul>\n<li>Auditing and detection<br \/>\nBuilding a minimal viable audit, Extended Events vs SQL Server Audit<\/li>\n<\/ul>\n<ul>\n<li>Network and system security configuration<br \/>\nWhat to avoid, what to use, and why it matters<\/li>\n<\/ul>\n<ul>\n<li>Security implications of Fabric \/ OneLake<\/li>\n<li>Microsoft Purview (intro)<br \/>\nData discovery and governance considerations<\/li>\n<\/ul>\n<p>The focus here is on practical measures you can implement in your environment &#8211; some quick wins, others requiring deeper changes &#8211; but all focused on reducing real risk.<\/p>\n<h3>Who should attend<\/h3>\n<ul>\n<li>SQL Server DBAs<\/li>\n<li>Security and compliance professionals<\/li>\n<li>Architects responsible for data platforms<\/li>\n<\/ul>\n<h3>What you\u2019ll walk away with<\/h3>\n<ul>\n<li>A practical model for defensible SQL Server security<\/li>\n<li>Clear understanding of real risks vs. security theater<\/li>\n<li>Techniques to reduce breach impact and improve detection<\/li>\n<\/ul>\n<p>If that sounds relevant to your SQL environment, you can find details and register here:<\/p>\n<p><a href=\"https:\/\/passdatacommunitysummit.com\/east\/pre-conference-sessions-and-speakers\/#speaker-andreas-wolter\" target=\"_blank\" rel=\"noopener\">https:\/\/passdatacommunitysummit.com\/east\/pre-conference-sessions-and-speakers\/#speaker-andreas-wolter<\/a><\/p>\n<p>See you in Chicago!<\/p>\n<\/div><\/section>\r\n\r\n<div  class='flex_column av-av_one_full-048119fdb636ea3d70edc0b975509c6c av_one_full  avia-builder-el-1  el_after_av_textblock  el_before_av_social_share  first flex_column_div  column-top-margin'     ><div  class='hr av-av_hr-23b3846cdd0fbd0e234720a594f6db24 hr-default  avia-builder-el-2  el_before_av_textblock  avia-builder-el-first '><span class='hr-inner '><span class=\"hr-inner-style\"><\/span><\/span><\/div>\n<section  class='av_textblock_section av-av_textblock-564067357eb74c20cdd60b282c9b50bd '   itemscope=\"itemscope\" itemtype=\"https:\/\/schema.org\/BlogPosting\" itemprop=\"blogPost\" ><div class='avia_textblock'  itemprop=\"text\" ><p>Need to secure your own SQL Server environment against these vulnerabilities? Andreas Wolter and the team at Sarpedon Quality Lab offer proprietary, deep-tier security assessments<\/p>\n<\/div><\/section>\n<div  class='avia-button-wrap av-av_button-c6c9e09391f77f3d6785f30b137ea0c9-wrap avia-button-center  avia-builder-el-4  el_after_av_textblock  el_before_av_hr '>\n<style type=\"text\/css\" data-created_by=\"avia_inline_auto\" id=\"style-css-av-av_button-c6c9e09391f77f3d6785f30b137ea0c9\">\n#top #wrap_all .avia-button.av-av_button-c6c9e09391f77f3d6785f30b137ea0c9{\nfont-size:14px;\nbackground-color:#75a823;\nborder-color:#75a823;\ncolor:#ffffff;\nbox-shadow: 0 0 5px 5px ;\ntransition:all 0.4s ease-in-out;\n}\n<\/style>\n<a href=\"https:\/\/sarpedonqualitylab.us\/sql-server-security-assessment\/\" class=\"avia-button av-av_button-c6c9e09391f77f3d6785f30b137ea0c9 avia-icon_select-yes-left-icon avia-size-medium avia-position-center\" target=\"_blank\" rel=\"noopener\"><span class='avia_button_icon avia_button_icon_left' aria-hidden='true' data-av_icon='\ue832' data-av_iconfont='entypo-fontello'><\/span><span class='avia_iconbox_title' >Explore Sarpedon Quality Lab Assessments<\/span><\/a><\/div>\n<div  class='hr av-av_hr-23b3846cdd0fbd0e234720a594f6db24 hr-default  avia-builder-el-5  el_after_av_button  avia-builder-el-last '><span class='hr-inner '><span class=\"hr-inner-style\"><\/span><\/span><\/div><\/div>\r\n\r\n<div  class='av-social-sharing-box av-5n5vpa-78ffdd9d224b4a246af65bdc00dce900 av-social-sharing-box-default  avia-builder-el-6  el_after_av_one_full  el_before_av_hr  av-social-sharing-box-fullwidth'><div class=\"av-share-box\"><h5 class='av-share-link-description av-no-toc '>Share article<\/h5><ul class=\"av-share-box-list noLightbox\"><li class='av-share-link av-social-link-facebook' ><a target=\"_blank\" aria-label=\"Share on Facebook\" href=\"https:\/\/www.facebook.com\/sharer.php?u=https:\/\/andreas-wolter.com\/en\/2026_precon_sqlserver_security_passsummiteast\/&#038;t=I%E2%80%99m%20Teaching%20a%20Full-Day%20SQL%20Server%20Security%20PreCon%20at%20PASS%20Summit%20East%20%28Chicago%29\" aria-hidden=\"false\" data-av_icon=\"\ue8f3\" data-av_iconfont=\"entypo-fontello\" title=\"\" data-avia-related-tooltip=\"Share on Facebook\" rel=\"noopener\"><span class='avia_hidden_link_text'>Share on Facebook<\/span><\/a><\/li><li class='av-share-link av-social-link-twitter' ><a target=\"_blank\" aria-label=\"Share on Twitter\" href=\"https:\/\/twitter.com\/share?text=I%E2%80%99m%20Teaching%20a%20Full-Day%20SQL%20Server%20Security%20PreCon%20at%20PASS%20Summit%20East%20%28Chicago%29&#038;url=https:\/\/andreas-wolter.com\/en\/?p=7193\" aria-hidden=\"false\" data-av_icon=\"\ue8f1\" data-av_iconfont=\"entypo-fontello\" title=\"\" data-avia-related-tooltip=\"Share on Twitter\" rel=\"noopener\"><span class='avia_hidden_link_text'>Share on Twitter<\/span><\/a><\/li><li class='av-share-link av-social-link-linkedin' ><a target=\"_blank\" aria-label=\"Share on LinkedIn\" href=\"https:\/\/linkedin.com\/shareArticle?mini=true&#038;title=I%E2%80%99m%20Teaching%20a%20Full-Day%20SQL%20Server%20Security%20PreCon%20at%20PASS%20Summit%20East%20%28Chicago%29&#038;url=https:\/\/andreas-wolter.com\/en\/2026_precon_sqlserver_security_passsummiteast\/\" aria-hidden=\"false\" data-av_icon=\"\ue8fc\" data-av_iconfont=\"entypo-fontello\" title=\"\" data-avia-related-tooltip=\"Share on LinkedIn\" rel=\"noopener\"><span class='avia_hidden_link_text'>Share on LinkedIn<\/span><\/a><\/li><\/ul><\/div><\/div>\r\n\r\n\n<style type=\"text\/css\" data-created_by=\"avia_inline_auto\" id=\"style-css-av-4ofg9q-c2108540b480aba02923089240a3a176\">\n#top .hr.hr-invisible.av-4ofg9q-c2108540b480aba02923089240a3a176{\nheight:50px;\n}\n<\/style>\n<div  class='hr av-4ofg9q-c2108540b480aba02923089240a3a176 hr-invisible  avia-builder-el-7  el_after_av_social_share  el_before_av_comments_list '><span class='hr-inner '><span class=\"hr-inner-style\"><\/span><\/span><\/div>\r\n\r\n<div  class='av-buildercomment av-284ftq-f5a1564cd6b8ffad6ce835e2d40de4b7  av-blog-meta-author-disabled av-blog-meta-html-info-disabled'><\/div>","protected":false},"excerpt":{"rendered":"","protected":false},"author":4,"featured_media":7194,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[97,57,64],"tags":[24,206],"class_list":["post-7193","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-conferences-en","category-security-en","category-sqlpass-en","tag-conference-en","tag-sql-security"],"_links":{"self":[{"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/posts\/7193","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/comments?post=7193"}],"version-history":[{"count":7,"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/posts\/7193\/revisions"}],"predecessor-version":[{"id":7432,"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/posts\/7193\/revisions\/7432"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/media\/7194"}],"wp:attachment":[{"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/media?parent=7193"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/categories?post=7193"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/andreas-wolter.com\/en\/wp-json\/wp\/v2\/tags?post=7193"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}