2026-03-13 –, Main Stage
Multi-cloud and hybrid identity setups are now the standard in enterprise environments. Connecting on-prem directories, cloud environments, and third-party systems improves management and visibility, enabling organizations to oversee their infrastructure more effectively. But in return, these connections blur long-standing trust boundaries and introduce new, often overlooked attack paths.
In this talk, I explain how compromises can move in both directions across those bridges: an Active Directory breach can escalate into cloud tenant control, while cloud privileges and management planes can reach back into on-premises systems. Using real-world examples, I’ll map the common bridging points (identity syncs, metadata services, delegated management) and show how those integrations change the threat model for defenders.
Attendees will leave with a clear understanding of how attackers exploit these pathways in practice, how to detect and disrupt such activity, and what governance and hardening measures can help organizations minimize exposure. Both red teamers and defenders will gain insights they can apply during their engagements and in their own environments.
Guillaume Bossiroy is a Senior Security Consultant at Resilix with more than five years of experience in cloud security. His main focus is on Microsoft Azure and Microsoft 365, where he has built extensive expertise through numerous client engagements.
Guillaume helps organizations strengthen their cloud security posture by identifying and mitigating risks across cloud environments and interconnected platforms, combining offensive insights with practical defensive strategies.