Andreas Wolter is a Program Manager for SQL Server- and Azure Security at Microsoft. In this role he is working on Security features of SQL Server, Azure SQL Database und Managed Instance. He is currently focussing on “Separation of Duties”-concepts and RBAC-Integration.
In his 18 years of experience with SQL Server before joining Microsoft he also founded Sarpedon Quality Lab, the Germany-based company specialized on SQL Server HA, Performance and Security.
He is Microsoft Certified Master (MCM) for SQL Server and Microsoft Certified Solutions Master for the Data Platform (MCSM) as was recognised as MVP for multiple years in row.

You can also find him at Twitter under @AndreasWolter.

Sessions

In this purely demo-based session, I will show several real-life attacks, from mere reading up to disrupting service availability via various types of manual and automated SQL Injection, including a broadly unknown elevation of privileges attack.
Extended Events are replacing the old SQL Trace & Profiler, and there are many good reasons for that. In this session I want to demonstrate to you some of the best features and possibilities of this Tracing Framework.
Security is one of the top topics for the new release of SQL Server. A total of 3 completely new features are coming to us: Always Encrypted, Dynamic Data Masking and Row Level Security.
This session will focus on the new features and capabilities that help you meet compliance and security needs with SQL Server on-premises as well as in Azure SQL Database. This includes the new Static Data Masking, new authentication capabilities, new functionalities in Vulnerability Assessment and Threat Detection as well as Always Encrypted. If you want to know about the latest developments in SQL Security, this session is for you.
Andreas_Wolter1280952.jpg