About
Jason is an experienced and innovative cyber security professional who possesses deep…
Activity
3K followers
-
Jason Larkin reposted thisMost cyber defenders are not ready for identity-based attacks. Over the past years working in SOC and Incident Response, I kept running into the same issue: identities are still widely underrated, misunderstood and heavily abused. That realization is exactly why I built SANS Institute SEC559: Cloud and Hybrid Identity Security. A hands-on course focused on: → How identity attacks really work in Entra ID & Hybrid AD → How tokens, apps, and federation are abused → How to detect this using real telemetry → How to respond: revoke, rotate, and contain If you're securing/defending Microsoft environments, this is knowledge you can’t afford to miss. 🚀 Beta is now live (14–15 May, Virtual or Amsterdam): https://lnkd.in/evvdzR9y SANS Cloud Security Lara Dawson Frank Kim NVISO SecurityJason Larkin reposted thisI recently joined an alpha run of the SEC559S: Cloud and Hybrid Identity Security course delivered by Maxim Deweerdt — SANS Institute — great experience overall — Thanks a lot Maxim !! Solid deep dive into Microsoft Entra ID and hybrid authentication, with a strong hands-on approach. We covered realistic attack paths, detection techniques, and worked with tools like BloodHound and KQL, which made everything very concrete. If you’re dealing with Entra ID / AD hybrid environments and simply want to learn or really better understand and detect identity-driven attacks, this course is definitely one to watch. https://lnkd.in/enTY366A
-
Jason Larkin reposted thisJason Larkin reposted thisRegistration is open for Find Evil! the first AI Hackathon for autonomous AI incident response. Built by the community and FREE for the community starting Apr 15. The AI hackathon will release the winning frameworks to the community! Find Evil! is the first hackathon dedicated to building autonomous AI for incident response that will respond and analyze attacks in minutes - not days. More Info/Details/Register: findevil.devpost.com Favor - and since this has a goal of a far-reaching community impact - could you please REPOST this in your personal feeds? SANS Institute Ed Skoudis Heather Barnhart Joshua Wright Robert M. Lee Wendi Whitmore Maxwell Shuftan Aspen Digital Morgan Adamski Jen Easterly Anne Neuberger Rob van der Veer OWASP AI Exchange #cybersecurity #DFIR #incidentresponse #hackathon #opensource #AI
-
Jason Larkin shared thisI'm looking forward to teaching SEC549: Cloud Security Architecture in Amsterdam next month, alongside Simon Vernon. Awesome content, 35 cloud security architecture review and design labs, and CloudWars CTF! https://lnkd.in/eQazt9Qp
-
Jason Larkin shared thisGIAC Cloud Security Architecture and Design (GCAD) was issued by Global Information Assurance Certification (GIAC) to Jason Larkin.GIAC Cloud Security Architecture and Design (GCAD) was issued by Global Information Assurance Certification (GIAC) to Jason Larkin.
-
Jason Larkin reposted thisJason Larkin reposted thisWe're hiring for seven roles across my Cyber Defence team at Tesco/Tesco Technology in the UK (Hybrid at Welwyn Garden City)! 🕷️ Cyber Threat Intelligence: - Senior Security Engineer: https://lnkd.in/eedsWaPw 🔎 Detection Engineering: - Security Engineer (x2): https://lnkd.in/etZdUPdK / https://lnkd.in/eXuujiDs 🛡️ Security Operations Centre & Digital Forensics/Incident Response: - Security Analyst: https://lnkd.in/eGyhAF9d - Senior Incident Responder (x2): https://lnkd.in/eQhuxCZH - Senior Security Engineer: https://lnkd.in/eedsWaPw If you’re passionate about cyber defence and want to work in a high-impact environment, alongside our fantastic team (and me!), please apply via the links above! Feel free to like, comment, or share to help this reach the right people. Please apply directly; I do not currently work directly with agencies or headhunters. Right-to-work (in the UK) status is required for these positions. #Hiring #CyberSecurityJobs #CyberDefence #InfoSec #BlueTeam #Tesco #UKJobs #CzechJobs
-
Jason Larkin reposted thisJason Larkin reposted thisLooking to further your career? I'm expanding my team and looking for a talented cyber security manager to become part of supporting the Tesco subsidiaries on their cyber security journeys. https://lnkd.in/eX-JSNpb
-
Jason Larkin shared thisPaid for my ticket! Will I see you there?Jason Larkin shared this🎟️ Tickets are now live 🙌 The next batch of tickets for BSides Kent 2026 are available now. If you’ve been planning to come along in May, now’s the time to secure your ticket. 👇 Ticket link in the comments.
-
Jason Larkin reposted thisJason Larkin reposted thisStep into a realistic cyber incident and make critical decisions under pressure. This is not a technical workshop – it’s a hands-on leadership experience for business owners, directors, and senior decision-makers. What you’ll gain: • Practical executive checklist for cyber readiness • Insight into decision-making under pressure • Networking with Kent’s business and cyber community 🗓 4 February 2026 • Maidstone Free to attend – limited seats. Reserve your spot → https://lnkd.in/eVfM_nqq Delivered by KMCC (Kent & Medway Cyber Cluster), Cognitas Global, and Goaco. #CyberResilience #CyberRisk #BusinessLeadership #KentBusinesses #KentCyberResilience #BusinessStrategy #SMEs #KMCC #CognitasGlobal #GOACO
Jason Larkin commented on a post
1w
Congratulations Shreyas Tewari, and thanks for the kind words. 🥇
-
Jason Larkin liked thisJason Larkin liked thisAmazing weather and colleagues in LDR514 at the SANS London April event last week. We had friends from Austria, Bangladesh, Belgium, France, Germany, Saudi Arabia, Serbia, Singapore, and of course the UK join us both in person and online. Congratulations to Team Sherlock on winning the SANS Institute LDR514 Cyber42 Leadership Simulation challenge. Marco Mancini, Milos Savicevic, Pascal Knoll, and Victoria Nouhad stayed true to their strategy, managed their time and money, and consistently built their capabilities to take home the LDR514 challenge coin. It was a close race until the very end with every team showing a solid performance! Also should out to Charu Bansal for co-teaching with me and the incredible dinner experiences! Thanks to everyone in class for the great questions, contributing to the discussion, and making the week a lot of fun. sans.org/ldr514 SANS Security Leadership #cyber #security #cybersecurity #leadership #ciso #cisolife
-
Jason Larkin liked thisJason Larkin liked thisI’ve been deep diving into how identity works in Entra ID and hybrid environments, especially how it can fail when attackers put it to the test. When it comes to detection and incident response, we still focus too much on authentication, even though most modern attacks happen after someone logs in. This becomes clear when you start looking at tokens: - Access tokens don’t last long, but refresh tokens and PRTs are what really allow attackers to stick around. - People often see “Revoke sessions” as the way to contain threats, but it doesn’t always break the whole token chain. - Choosing between passwords and passwordless methods isn’t just about user experience. It also affects what gets included in the token (like amr and acr) and what you’re able to detect or enforce. Things get even more interesting when you look at hybrid environments. If an attacker gains privileged access on an Entra Connect server, they can make changes in Entra ID that appear to be normal sync activity. In federated setups, adding a rogue AD FS signing certificate means you can issue identities that Entra will accept as valid. I keep noticing that these attack paths are often underestimated or left out of detection and response playbooks. That’s why I have included these scenarios in my new SANS course, focusing on real attack paths and the data that reveals them. If you’re working with (hybrid) identities, this course is for you! SEC559: Cloud & Hybrid Identity Security https://lnkd.in/evvdzR9y
-
Jason Larkin reacted on thisJason Larkin reacted on thisView my verified achievement from GIAC Certifications. I’m excited to share that I’ve successfully achieved the SANS SEC549 (Enterprise Cloud Security Architecture) certification! 🚀 This journey has been a great opportunity to deepen my understanding of cloud security and architecture, and I’m grateful for the knowledge and skills I’ve gained along the way. Looking forward to applying these skills and continuing to grow in the cloud and cybersecurity space! #SANS #SEC549 #CloudSecurity #CloudComputing #LearningJourney #SaudiVision2030 #CloudMigration David HazarGIAC Cloud Security Architecture and Design (GCAD) was issued by Global Information Assurance Certification (GIAC) to Imran Ansari.GIAC Cloud Security Architecture and Design (GCAD) was issued by Global Information Assurance Certification (GIAC) to Imran Ansari.
-
Jason Larkin reacted on thisJason Larkin reacted on thisCongratulations to Matt, Abdeljaouad OUAHID, Colin Jordan, Ryan Hill, Darragh, Simon Vedder, and Ardit Humoli for winning the SANS Institute #SEC510 challenge coin at SANS London April 2026! We had a lot of amazing conversations, great food, and surprisingly awesome weather. Right then, I'm off! SANS Cloud Security #CloudSecurity #SecurityControls #MitigationStrategies #CloudAgnostic #Multicloud #AWS #Azure #GCP #SANSCloudAce #SANSLiveTraining
-
Jason Larkin liked thisJason Larkin liked this🎉 A round of applause for Jason Dely on being promoted to SANS Principal Instructor! Jason is an instructor for ICS515, and an instructor and co-author for ICS612 and ICS613. We are excited to celebrate his dedication to instructing the future leaders in ICS. Learn more about Jason and his journey in cybersecurity, here: https://lnkd.in/eBcMHQBT #SANSTraining #ICS #CriticalInfrastructure #Cybersecurity
-
Jason Larkin reacted on thisJason Larkin reacted on thisThrilled to share that I’ve officially earned the 𝐆𝐈𝐀𝐂 𝐂𝐥𝐨𝐮𝐝 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐄𝐬𝐬𝐞𝐧𝐭𝐢𝐚𝐥𝐬 (𝐆𝐂𝐋𝐃) 𝐜𝐞𝐫𝐭𝐢𝐟𝐢𝐜𝐚𝐭𝐢𝐨𝐧! ☁️🛡️ This journey was intense, diving deep into cloud architecture, security controls, and incident response. 𝐌𝐲 𝐛𝐢𝐠𝐠𝐞𝐬𝐭 𝐭𝐚𝐤𝐞𝐚𝐰𝐚𝐲? Cloud security isn’t just about the tools; it’s about mastering the shared responsibility model, identifying misconfigurations, and understanding the "why" behind the "how" when things go wrong. A huge highlight was earning the 𝐒𝐀𝐍𝐒 𝐂𝐡𝐚𝐥𝐥𝐞𝐧𝐠𝐞 𝐂𝐨𝐢𝐧 during the course, a great reminder of the progress made during the labs. Also, a big shoutout to Jason Larkin; having an expert for the in-person sessions really made these complex concepts click. 𝐎𝐧 𝐭𝐨 𝐭𝐡𝐞 𝐧𝐞𝐱𝐭 𝐜𝐡𝐚𝐥𝐥𝐞𝐧𝐠𝐞! #CloudSecurity #GCLD #SANSInstitute #Cybersecurity #Infosec
-
Jason Larkin liked thisJason Larkin liked thisReally excited to be welcoming Melanie Pabifio to speak at BSides Kent 🔥 Melanie is a VP Delivery Manager and a true security enabler—focused on how security actually gets delivered, not just designed. She’ll challenge a powerful idea: security doesn’t fail in design—it fails in delivery. Perfect for anyone in cyber or leadership roles navigating real-world execution. https://lnkd.in/eqJgsSXi 📍 Curzon Riverside, Canterbury 📅 Friday 8th May 2026
Experience & Education
-
SANS Institute
View Jason’s full experience
By clicking Continue to join or sign in, you agree to LinkedIn’s User Agreement, Privacy Policy, and Cookie Policy.
Licenses & Certifications
-
-
Microsoft Certified IT Professional:Enterprise Messaging Administrator on Exchange 2010 (MCITP)
Microsoft
Issued -
-
-
-
-
-
-
-
Courses
-
AWS Security Engineering
-
-
CISSP
-
-
Chef Fundamentals
-
-
Cisco UCS
-
-
Cisco UCS Director (Cloupia)
-
-
F5 Load Balancers
-
-
ITIL Foundation V3
-
-
ITIL Intermediate 2011 - Service Design
-
-
Installing and Configuring Microsoft SCOM 2012
-
-
NetApp OnTap 8 7-Mode Boot Camp
-
-
NetApp OnTap 8.1 Cluster Mode
-
-
NetApp OnTap Foundation
-
-
Offensive Security Penetration Testing With Kali Linux (PWK)
-
-
SANS FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics
-
-
SANS SEC401: Security Essentials
-
-
SANS SEC488: Cloud Security Essentials
-
-
SANS SEC502: Cloud Security Tactical Defence
-
-
SANS SEC504: Hacker Tools, Techniques, Exploits and Incident Handling
-
-
SANS SEC510: Public Cloud Security: AWS, Azure, and GCP
-
-
SANS SEC540: Cloud Security and DevSecOps Automation
-
-
SANS SEC541: Cloud Security Attacker Techniques, Monitoring, and Threat Detection
-
-
SANS SEC542: Web App Penetration Testing and Ethical Hacking
-
-
SANS SEC545: GenAI and LLM Application Security
-
-
SANS SEC549: Enterprise Cloud Security Architecture
-
-
SANS SEC555: SIEM with Tactical Analysis
-
-
SANS SEC560: Network Penetration Testing and Ethical Hacking
-
-
VMware 5.1 Fast Track
-
-
Windows Active Directory Advanced Troubleshooting
-
Honors & Awards
-
SANS SEC488 Challenge Coin
SANS
-
SANS SEC488 Creator Coin
SANS
-
SANS SEC504 Challenge Coin
SANS
-
SANS SEC542 Challenge Coin
SANS
Recommendations received
6 people have recommended Jason
Join now to viewExplore more posts
Explore collaborative articles
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Explore More