Room C

Azure Infrastructure, Networking, Security and M365

Deep dives into Azure infrastructure, cloud architecture, identity, security practices, and Microsoft 365 for modern enterprises.

Sessions

Infra, Networking & M365 Intermediate

"You Can't Secure What You Can't See": Observability for AI Agents

As AI moves from hype to day-to-day reality, a new challenge has appeared: rogue AI agents built and used beyond official channels. These range from well-intentioned employee-made copilots to unvalidated third-party AI bots quietly plugged into enterprise data. This session dives into the dual nature of these agents: incredible productivity drivers and potential security nightmares. We'll unpack the key risk areas, like sensitive data leakage, lack of accountability and agents acting with unchecked privileges, showing why traditional defenses fall short. Then we'll pivot to solution, outlining Zero Trust-inspired strategies to regain control. Learn how to treat AI agents as first-class identities (unique credentials, least-privilege access) and apply continuous monitoring so that even autonomous code follows corporate security rules. We'll share best practices for logging and auditing AI-driven actions to build trust internally and with regulators. Attendees will also get a glimpse of how these concepts manifest in emerging enterprise tooling by a neutral look at Microsoft's Agent 365 as control plane and reliance on Microsoft security ecosystem for identity management, data security and monitoring/auditing capabilities.

Pouya Koushandehfar

Pouya Koushandehfar, Senior Cybersecurity Architect and Leader · PwC

Short Session

Infra, Networking & M365 Intermediate

Automate the Boring Stuff: Practical SecOps for Microsoft 365

Microsoft 365 security is often treated as a collection of one-time configuration decisions, but in reality it's a constantly moving target. New features, policy changes, and administrative actions can quickly introduce risk and this is true especially when security is managed manually and reactively. In this session, we'll explore how to apply practical SecOps principles to Microsoft 365 by automating the boring but critical parts of security operations. Rather than assuming unlimited budget or a fully staffed SOC, this session focuses on starting small and evolving over time. You'll learn how to continuously assess your tenant's security posture, detect configuration drift, and respond to common security issues using native Microsoft tools and automation capabilities you already own.

Chris Goosen

Technology Consultant and Microsoft MVP ·

Medium Session

Infra, Networking & M365 Advanced

Microsoft Agent 365

Principal Product Manager - Microsoft

Shobhit Garg

Principal Product Manager - Microsoft · Microsoft

Long Session

Infra, Networking & M365 Advanced

Top 5 Most Common Policy Misconfiguration

Misconfigured policies are one of the easiest ways attackers slip through the cracks and they're far more common than most organisations realise. In this session we will dive into the top 5 Geo-blocking policies in Microsoft Entra - where these often look "secure" but still leave major gaps Macro blocking with Microsoft 365 Business Premium - common assumptions vs what's actually enforced Defender for Office 365 - misaligned policies that weaken email protection Compliance policies - settings that exist on paper but don't deliver in practice SharePoint & OneDrive external sharing - how small configuration choices can create big exposure

Nathan Atkins

Helping organisations turn Microsoft 365 into a security advantage. ·

Hands on Workshops

Infra, Networking & M365 Advanced

Microsoft Adaptive Cloud Strategy and Azure Local

Senior Cloud and AI Architect at Microsoft

Mobin Daraie

Senior Cloud and AI Architect · Microsoft

Long Session

Infra, Networking & M365 Advanced

Build Your Own M365 Copilot Reporting Dashboard

Using Power Automate, Dataverse, Microsoft Graph, and Power BI - you can build your own usage reporting dashboard that shows you MUCH more than what you can get out of the box! Want to drill down by manager? You can! Want to see which job titles are getting the most usage? Sure! What about a leaderboard of top Copilot users in the entire organization? It's all possible with this dashboard solution. We don't just cover the theoretical here: we will also share lessons learned from implementing the Copilot Dashboard several global organizations ranging from hundreds to tens of thousands of Copilot users. This Copilot Reporting Dashboard can be a valuable tool for starting conversations with stakeholders, figuring out which groups to focus on, measuring growth after trainings, and proving business value to leadership, all of which we will discuss in this session. We'll also show you a sneak peak of how to perform your own prompt and conversation analysis!

Loryan Strant

Avanade, Microsoft 365 MVP, Builder of Widgets ·

Long Session

Infra, Networking & M365 Advanced

Your Migration Team Is Already Hired: Cross-Cloud Migrations in Hours, Not Months

Cross-cloud migrations are expensive, slow, and repetitive. You need someone to inventory every resource, map services to equivalents on the target cloud, rewrite your functions, convert your IaC, wire up secure CI/CD pipelines, and validate everything before it touches production. That's weeks of work too structured to be interesting, but too risky to rush. What if that same pipeline could run in hours? In this session we reveal a framework of custom GitHub Copilot and Azure Foundry agents each with a specific role, specific instructions, and a specific output that collectively orchestrate the entire migration from a single prompt. We'll use an AWS to Azure migration as our live example: discovery, architecture mapping, code refactor, Bicep IaC, pipelines, validation. Done. The twist? These agents are only as good as the person instructing them and that's the real skill this session teaches.