
Winter SHIELD: Closing the Security Control Gap
From Microsoft Threat Intelligence Podcast by Microsoft
March 25, 2026 · 37 min · Season 3 · Episode 65
About this episode
The episode discusses the importance of closing the security control gap in cybersecurity with insights from the FBI's Cyber Division.
In this episode of the Microsoft Threat Intelligence Podcast, host Sherrod DeGrippo speaks with Jarrod Forgues Schlenker of the FBI’s Cyber Division about the pattern's investigators see in cyber incidents and how initiatives like Operation Winter Shield aim to close the gap between knowing what to do and actually implementing it. They discuss the importance of foundational controls like phishing-resistant authentication, secure logging, and strong identity protection, as well as the role threat intelligence and prevention play in strengthening organizational defenses. The conversation highlights how small, practical security improvements can significantly disrupt attackers and help organizations reduce risk before an incident occurs. In this episode you’ll learn: How the FBI identifies recurring patterns in cyber-attacks across investigations Why phishing-resistant authentication and MFA are critical for stopping credential theft What Operation Winter Shield is and how it encourages organizations to move from awareness to action Some questions we ask: Which security control themes in the program stand out to you the most? Why are log retention and protection so critical…
People in this episode
Host: Sherrod DeGrippo
Guest: Jarrod Forgues Schlenker
Topics covered
- cybersecurity
- threat intelligence
- phishing-resistant authentication
- organizational defenses
- risk reduction
Keywords
- cyber incidents
- security controls
- credential theft
- MFA
- log retention
- threat intelligence
- risk reduction
Mentioned in this episode
Organizations: FBI, Operation Winter Shield
More episodes of Microsoft Threat Intelligence Podcast
- Supply Chain Attacks: Open Source or Open Door? · June 3, 2026 · 39 min
- Eviltokens: A Conversation with Huntress on an AI‑Enabled Device Code Phishing Campaign · May 20, 2026 · 42 min
- Russia’s Forest Blizzard Is Abusing Home + Small Office Routers for Cred Theft · May 6, 2026 · 52 min
- The Cybercrime Shift: From Opportunistic Attacks to Marketplace-Driven Ecosystem · April 22, 2026 · 40 min
- Ransomware: From Isolated Attacks to Global Criminal Ecosystem · April 8, 2026 · 48 min
- AI as Tradecraft: How Threat Actors Are Operationalizing AI · March 11, 2026 · 22 min
Explore listener stats, chart rankings, contacts and more on the Microsoft Threat Intelligence Podcast podcast page.