M365.FM - Modern work, security, and productivity with Microsoft 365

Secure-by-Design AI: Protecting MLOps in the Microsoft Cloud with Martin Dimovski [MVP-MCT]

55 min · 24. maj 2026
episode Secure-by-Design AI: Protecting MLOps in the Microsoft Cloud with Martin Dimovski [MVP-MCT] cover

Description

In this episode of the m365.fm podcast, Mirko Peters sits down with Microsoft MVP, MCT, cloud security expert, and community leader Martin Dimovski to explore one of the most important topics in modern enterprise IT: securing AI workloads and MLOps environments inside the Microsoft Cloud. Together, they dive deep into secure-by-design architecture, AI security risks, DevSecOps, Prompt Injection attacks, identity protection, Microsoft Defender, GitHub Advanced Security, and the future of AI-driven cyber threats. Martin shares his personal journey from IT support engineer into cloud security and AI security architecture, explaining how years of experience in infrastructure, Azure, DevOps, and Microsoft technologies ultimately pushed him toward cybersecurity and AI governance. The discussion highlights why AI security is no longer optional and why organizations that move too fast without proper security foundations could face major problems in the coming years. WHY AI SECURITY MATTERS NOW MORE THAN EVER One of the strongest themes throughout this episode is the speed at which organizations are deploying AI systems without fully understanding the security implications behind them. Martin explains that many companies are currently: * Deploying AI solutions rapidly * Experimenting with LLM integrations * Building AI agents * Creating cloud-native AI workloads * Using open-source AI models * Integrating APIs into production environments But at the same time, organizations often forget the security fundamentals that should protect these environments. The conversation explores how AI introduces completely new attack surfaces while simultaneously amplifying existing security problems. WHAT “SECURE-BY-DESIGN” REALLY MEANS A major focus of the episode is understanding the concept of secure-by-design architecture. Martin explains that security should never be added after development is complete. Instead, security conversations must begin at the very first design phase of any application or AI project. The discussion covers: * Threat modeling * Architectural reviews * Identity security * Authentication planning * Secure pipelines * Infrastructure protection * Secure APIs * Data governance Martin shares why collaboration between developers, architects, DevOps engineers, and security teams is absolutely essential for building resilient AI systems. One of the key takeaways: Security teams should not become blockers for innovation — they should become partners in building secure systems. UNDERSTANDING MLOPS & DEVSECOPS For listeners newer to AI infrastructure topics, Martin breaks down the differences between: * DevOps * DevSecOps * MLOps * Secure AI pipelines The episode explains how machine learning operations combine infrastructure, automation, data engineering, model deployment, and monitoring into one continuous operational process. Martin also highlights why traditional security approaches are no longer enough once organizations start integrating: * Large Language Models * AI agents * Cloud AI services * AI APIs * AI orchestration pipelines The discussion shows how modern security must now cover not only infrastructure and applications, but also models, prompts, training data, inference pipelines, and AI-generated outputs. THE REAL DANGER OF PROMPT INJECTION One of the most fascinating parts of the episode is Martin’s explanation of Prompt Injection attacks. Using simple real-world analogies, Martin explains how attackers manipulate Large Language Models by overriding or bypassing original system instructions. The conversation explores: * Direct Prompt Injection * Indirect Prompt Injection * AI manipulation * LLM instruction abuse * Malicious prompts * Unsafe AI agents * Context hijacking * Data extraction risks Martin explains why prompt injection is becoming one of the most discussed attack vectors in AI security today and why organizations need to start thinking about AI trust boundaries immediately. THE HIDDEN RISK OF OPEN-SOURCE MODELS Another major topic is the increasing use of publicly available AI models. Martin shares concerns around: * Downloading unverified models * Compromised Hugging Face repositories * Malicious AI packages * Unsafe dependencies * Supply-chain attacks * API key exposure * Secret leakage * Public model poisoning The discussion highlights how organizations may unknowingly introduce compromised models directly into production environments. This section serves as a major warning for companies rushing into AI adoption without proper governance and validation processes. WHY IDENTITY SECURITY IS EVERYTHING Identity and access management become another core theme throughout the episode. Martin strongly emphasizes the importance of: * Microsoft Entra ID * Privileged Identity Management * Just-In-Time access * Least privilege * Identity governance * Access reviews * Role separation * Conditional Access One of the strongest lessons from the conversation is that attackers often do not need to break systems — they simply abuse existing permissions and weak access configurations. Martin explains why organizations should avoid giving permanent privileged access and instead embrace short-lived administrative permissions wherever possible. MICROSOFT DEFENDER & AI SECURITY The episode also dives deeply into the Microsoft security ecosystem and how Microsoft Defender is evolving to protect AI workloads. Martin discusses: * Microsoft Defender for Cloud * Defender XDR * AI workload monitoring * Real-time scanning * Azure AI Foundry protection * Threat visibility * Security telemetry * Cloud-native protection According to Martin, Microsoft Defender is becoming one of the most powerful unified security platforms for organizations heavily invested in Microsoft technologies.  Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

Comments

0

Be the first to comment

Sign up now and become a member of the M365.FM - Modern work, security, and productivity with Microsoft 365 community!

Get Started

1 month for 9 kr.

Then 99 kr. / month · Cancel anytime.

  • Podcasts kun på Podimo
  • 20 lydbogstimer pr. måned
  • Gratis podcasts

All episodes

694 episodes

episode Microsoft Graph: The Enterprise Nervous System artwork

Microsoft Graph: The Enterprise Nervous System

Enterprise IT has reached a tipping point. Organizations now manage millions of identities, files, applications, permissions, policies, and AI-powered workloads across Microsoft 365. Yet many IT departments still rely on manual administration, periodic audits, and reactive governance that simply cannot keep pace with modern business. In this episode, we explore why Microsoft Graph is evolving far beyond a developer API and becoming the enterprise nervous system that continuously detects, evaluates, and responds to changes across the entire Microsoft ecosystem. You'll discover how autonomous governance, AI agents, and policy-driven automation are transforming IT operations while preparing organizations for the next generation of intelligent infrastructure. FROM MANUAL ADMINISTRATION TO AUTONOMOUS GOVERNANCE Enterprise administration has continuously evolved over the past decades. Organizations moved from graphical interfaces to PowerShell scripting and eventually toward Microsoft Graph. Each generation reduced manual effort while increasing automation capabilities. However, Graph represents something fundamentally different. Rather than simply providing another API, it enables systems to monitor themselves, evaluate compliance continuously, and automatically remediate issues without requiring human intervention. This architectural shift transforms IT teams from administrators performing repetitive operational tasks into architects defining governance policies that intelligent systems enforce automatically across the tenant. WHY MANUAL GOVERNANCE NO LONGER SCALES Modern Microsoft 365 environments change every second. New Teams are created, permissions evolve, applications receive additional access, users change roles, and AI services continuously consume organizational data. Manual governance simply cannot keep pace with this level of complexity. As organizations grow, configuration drift, inconsistent security policies, excessive permissions, and undocumented exceptions become unavoidable. Traditional audits discover problems weeks or months after they occur, while autonomous governance identifies and resolves them almost immediately. Critical challenges include: * Configuration drift * Shadow IT * Permission sprawl * Manual compliance reviews * Delayed incident response MICROSOFT GRAPH AS THE ENTERPRISE NERVOUS SYSTEM Rather than thinking of Microsoft Graph as another REST API, this episode presents Graph as the unified operational layer connecting Microsoft Entra ID, Teams, SharePoint, Exchange Online, OneDrive, Microsoft Defender, Microsoft Purview, and countless Microsoft 365 services. Like the human nervous system, Graph constantly collects signals, distributes information, coordinates decisions, and enables automated responses. Every identity change, permission update, compliance event, and security alert becomes part of a single operational data plane that intelligent systems can consume in real time. This unified architecture enables organizations to correlate events across multiple services instead of managing isolated technology silos. THE THREE LAYERS OF AUTONOMOUS OPERATIONS Building a self-managing tenant requires more than automation. Successful architectures combine three essential operational layers. The detection layer continuously observes tenant activity using Microsoft Graph change notifications, event-driven architectures, anomaly detection, and continuous compliance monitoring. The evaluation layer compares detected changes against governance policies, classifies risk, enriches context, and determines the appropriate response. Finally, the remediation layer automatically restores the desired state by adjusting permissions, applying labels, updating ownership, or enforcing compliance through Microsoft Graph APIs. Together these layers create infrastructure capable of maintaining itself while dramatically reducing operational overhead. POLICY-DRIVEN INFRASTRUCTURE One of the biggest architectural shifts discussed in this episode is moving from people executing governance to systems enforcing policy automatically. Instead of documenting governance inside Word documents or operational playbooks, organizations increasingly express governance as executable policy that continuously evaluates tenant health. Humans define acceptable behavior once, while Graph-powered automation enforces those rules thousands of times every minute. Core governance capabilities include: * Desired state modeling * Continuous compliance validation * Automated remediation * Immutable audit trails * Policy-as-Code AGENT 365 AND DIGITAL WORKERS As AI agents become increasingly autonomous, they must be governed like digital employees rather than traditional automation scripts. Agent 365 introduces centralized management for enterprise AI workers by assigning each agent its own Microsoft Entra identity, ownership, permissions, monitoring, and lifecycle management. Every digital worker receives least-privilege access, continuous monitoring, and full auditability while operating within clearly defined governance boundaries. This identity-first approach ensures organizations can safely deploy hundreds or even thousands of autonomous agents without sacrificing visibility or security. THE FUTURE OF POWERSHELL AND AUTOMATION Contrary to popular belief, PowerShell isn't disappearing—it is evolving. Instead of administrators manually writing scripts, AI systems increasingly generate, execute, and maintain PowerShell automatically behind the scenes. PowerShell becomes the execution engine, while Microsoft Graph provides the operational intelligence. Administrators shift from writing scripts to designing policies, reviewing automation, and supervising autonomous systems that continuously optimize enterprise operations. PREPARING FOR MICROSOFT'S 2026 TRANSITION The episode also examines several major Microsoft platform transitions that organizations must prepare for over the coming years. Security APIs, legacy agent registration methods, Graph Toolkits, and older automation approaches are all being replaced with modern Graph-native architectures. Organizations delaying migration risk broken automation, unsupported integrations, security gaps, and significant operational disruption. Preparing now allows IT teams to modernize strategically instead of reacting under tight deadlines. FINAL THOUGHTS Microsoft Graph is rapidly becoming far more than an integration API—it is emerging as the operational backbone of intelligent enterprise infrastructure. Organizations that embrace Graph as their enterprise nervous system can automate governance, strengthen security, accelerate compliance, and prepare for a future where AI agents collaborate alongside human administrators. Rather than managing Microsoft 365 through dashboards and manual processes, tomorrow's IT departments will define policy, supervise digital workers, and rely on Graph-powered automation to continuously maintain a secure, compliant, and self-healing enterprise environment. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

5. juli 20261 h 11 min
episode Beyond the Script: The Architect's Guide to Microsoft Graph Platforms artwork

Beyond the Script: The Architect's Guide to Microsoft Graph Platforms

Automation has become a cornerstone of digital transformation, yet many organizations unknowingly create more complexity than they eliminate. What starts as a simple PowerShell script or Power Automate flow often grows into a fragile web of disconnected automations that depend on individual experts, undocumented processes, and aging infrastructure. In this episode, we explore why traditional scripting approaches eventually reach their limits and why modern enterprises are shifting toward platform-based automation built around Microsoft Graph, Azure, Logic Apps, Azure Functions, Managed Identities, and governance-first architecture. WHY SCRIPT-BASED AUTOMATION EVENTUALLY FAILS Many IT departments have accumulated hundreds of automation scripts over the years. While each one may solve a specific business problem, together they create operational complexity, technical debt, and hidden business risks. As organizations scale, maintaining these disconnected automations becomes increasingly difficult. The challenge isn't writing better PowerShell or finding another connector—it's fundamentally changing how automation is architected.Instead of relying on isolated scripts maintained by individual administrators, modern organizations are moving toward centralized automation platforms where orchestration, monitoring, governance, and resilience are built directly into the architecture rather than added as an afterthought. UNDERSTANDING AUTOMATION MATURITY Automation maturity isn't a straight line. Most enterprises simultaneously operate manual processes, scheduled scripts, cloud workflows, APIs, and modern event-driven services. This fragmented landscape creates operational chaos and slows innovation.Key indicators that your organization has reached the limits of traditional automation include: * Hundreds of disconnected PowerShell scripts * Unknown script ownership and documentation gaps * Manual recovery whenever automation fails * Increasing maintenance costs * Difficulty scaling automation across departments The organizations moving fastest today aren't necessarily writing more code—they're building better automation platforms. MICROSOFT GRAPH AS THE CENTRAL ORCHESTRATION LAYER Microsoft Graph has evolved into the unified interface connecting Microsoft 365 services including Exchange Online, SharePoint, Teams, OneDrive, and Microsoft Entra ID. Rather than creating direct integrations between every application, Graph enables organizations to establish a centralized orchestration layer where systems communicate through a consistent interface.This architectural shift dramatically reduces coupling between systems while making automation easier to maintain, extend, and govern. Combined with Graph subscriptions and Delta Queries, organizations can build event-driven solutions that react instantly while maintaining reliable reconciliation mechanisms to ensure nothing is ever missed. BUILDING RESILIENT AUTOMATION PLATFORMS Reliable automation isn't just about triggering workflows—it requires designing for failure from day one. Webhooks expire, APIs change, subscriptions fail silently, and network interruptions occur. High-performing organizations assume failures will happen and build recovery directly into their architecture.Modern automation platforms combine real-time event processing with scheduled reconciliation jobs, ensuring every business process remains accurate even when individual components experience temporary issues.Critical platform capabilities include: * Event-driven Graph subscriptions * Delta Query reconciliation * Azure Logic Apps orchestration * Azure Functions for compute-intensive workloads * Automated monitoring and alerting CHOOSING THE RIGHT AZURE ARCHITECTURE One of the biggest architectural decisions involves choosing between workflow orchestration and compute orchestration. Logic Apps excel at connecting business systems through visual workflows, while Azure Functions provide scalable compute for complex business logic.Rather than treating these technologies as competitors, successful organizations combine both approaches. Logic Apps coordinate business processes while Azure Functions execute specialized business logic, creating highly scalable, maintainable solutions with optimized operational costs.This hybrid architecture provides flexibility while reducing long-term maintenance effort. MANAGED IDENTITIES AND SECURITY BY DESIGN Identity has become one of the most important components of enterprise automation. Static credentials, service accounts, and embedded secrets create unnecessary operational and security risks.Managed Identities eliminate these concerns by allowing Azure resources to authenticate securely without storing credentials. Combined with Azure Key Vault, organizations can automate credential management while improving security posture and reducing operational overhead.This security-first approach enables organizations to adopt Zero Trust principles throughout their automation landscape. GOVERNANCE AS CODE Traditional governance often relies on documentation, approval meetings, and manual compliance reviews. Unfortunately, documents cannot prevent misconfigurations or insecure deployments.Modern governance treats policies as executable infrastructure. Azure Policy, Conditional Access, Microsoft Purview, and automated deployment pipelines ensure security rules are enforced automatically rather than relying on human intervention.This dramatically accelerates innovation because teams can move quickly within predefined technical guardrails.Governance should provide: * Automated policy enforcement * Least-privilege identity management * Built-in compliance controls * Continuous auditing * Infrastructure-as-Code deployment standards FROM AUTOMATION TO AUTONOMOUS SYSTEMS The next evolution extends beyond automation into intelligent autonomous systems. Rather than executing predefined instructions, modern AI-powered agents observe events, evaluate context, make decisions, and execute business processes with minimal human intervention.Technologies like Microsoft Graph, Model Context Protocol (MCP), Azure AI, and emerging Agent platforms are transforming automation from workflow execution into intelligent orchestration. However, these capabilities only become viable when built on secure identities, governance, orchestration layers, and resilient monitoring.Organizations attempting to deploy AI agents without this architectural foundation risk creating uncontrolled autonomous systems that introduce significant operational and compliance challenges. BUILDING YOUR MIGRATION STRATEGY Migration should never involve replacing every script overnight. Instead, successful organizations adopt an incremental platform strategy. Existing automations continue running while new platform-based solutions are introduced one workload at a time. This approach minimizes operational risk while allowing teams to continuously improve architecture, governance, and monitoring.Long-term success comes from standardization, reusable templates, centralized monitoring, CI/CD pipelines, Git-based source control, automated testing, and shared architectural patterns rather than isolated development efforts. FINAL THOUGHTS The future of enterprise automation isn't about writing more scripts—it's about building platforms that can evolve alongside rapidly changing business requirements. Organizations investing today in Microsoft Graph orchestration, Azure-native architectures, governance-as-code, managed identities, event-driven integrations, and AI-ready infrastructure will be significantly better positioned for autonomous business operations over the coming years.The transition from scripts to platforms represents far more than a technology upgrade. It is a fundamental shift in how enterprises design, secure, operate, and scale automation. Those who embrace platform thinking today will be prepared for the next generation of intelligent business systems, while those who continue expanding isolated script libraries will find themselves carrying an ever-growing burden of technical debt and operational complexity. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

5. juli 20261 h 10 min
episode The Architect's Guide to Graph-Powered Agents: Moving Beyond Chat artwork

The Architect's Guide to Graph-Powered Agents: Moving Beyond Chat

Artificial Intelligence has rapidly evolved from simple chatbots into sophisticated enterprise agents capable of reasoning, orchestrating workflows, and executing business processes. Yet many organizations are still approaching AI from the wrong perspective. They focus on building conversational interfaces while overlooking the critical infrastructure that transforms a chatbot into a true business agent. In this episode, we explore why Microsoft Graph has become the foundation for enterprise AI and how modern organizations are building Graph-powered agents that understand organizational context, securely access business data, coordinate across systems, and deliver measurable business outcomes. WHY CHAT ALONE ISN'T ENOUGH Large Language Models are incredibly powerful at generating text, summarizing information, and answering questions. However, they know nothing about your organization unless you provide context. Without access to company knowledge, relationships, permissions, workflows, and governance, AI simply predicts likely answers based on public training data rather than making informed business decisions.Enterprise AI requires far more than conversational intelligence. Successful agents combine organizational context, persistent memory, secure identities, and the authority to execute business actions. Microsoft Graph provides this missing layer by connecting people, documents, meetings, communications, identities, and workflows into a unified knowledge graph. MICROSOFT GRAPH AS THE ENTERPRISE MEMORY Microsoft Graph is much more than an API. It serves as the digital nervous system of Microsoft 365, exposing relationships between employees, Teams conversations, Outlook calendars, SharePoint content, OneDrive files, and Entra identities.Instead of treating information as isolated documents, Graph allows AI agents to understand how work actually flows throughout an organization. Rather than simply searching files, Graph-powered agents discover experts, identify collaboration patterns, recognize business relationships, and provide recommendations based on real organizational behavior.This dramatically improves AI accuracy while reducing hallucinations because decisions are grounded in live enterprise data instead of generic internet knowledge. MOVING FROM ASSISTANTS TO AUTONOMOUS AGENTS Most AI deployments today remain read-only assistants. They retrieve information but require humans to perform every business action manually. Modern enterprise agents go much further by interacting directly with Microsoft Graph, business applications, and enterprise systems.Typical capabilities include: * Scheduling meetings automatically * Updating CRM records * Creating Microsoft Planner tasks * Sending emails * Managing approvals * Executing business workflows The shift from assistant to autonomous worker requires careful governance, permission boundaries, and comprehensive auditing to ensure every action remains secure, traceable, and compliant. TOOL CALLING, MCP, AND MODERN AGENT ARCHITECTURE One of the most important architectural advances is the introduction of structured tool calling and the Model Context Protocol (MCP). Rather than manually building integrations for every AI model, MCP provides a standardized communication layer between enterprise agents and business systems.This significantly reduces integration complexity while allowing organizations to expose Microsoft Graph capabilities securely across multiple AI platforms. Combined with orchestration frameworks such as LangGraph, organizations can build sophisticated workflows where AI agents reason, invoke tools, validate results, request human approval when necessary, and continue execution without losing context.Modern agent architectures rely on: * Microsoft Graph * Model Context Protocol (MCP) * Azure OpenAI Function Calling * LangGraph orchestration * Enterprise APIs * Shared workflow state Together these technologies enable scalable, production-ready AI systems rather than isolated chatbot experiments. GRAPH CONNECTORS AND GRAPH DATA CONNECT Enterprise knowledge rarely lives inside Microsoft 365 alone. Critical business information is often distributed across Salesforce, Jira, ServiceNow, SAP, Google Drive, Box, and countless other systems.Microsoft Graph Connectors solve this challenge by indexing external enterprise content into Microsoft Graph, allowing agents to reason across multiple platforms through a unified interface.At the same time, Microsoft Graph Data Connect enables organizations to move Microsoft 365 data into Azure for advanced analytics, behavioral intelligence, and machine learning. This creates powerful opportunities for predictive AI, allowing agents to identify operational trends, forecast business outcomes, and recommend proactive actions rather than simply reacting to events. MULTI-AGENT ORCHESTRATION Enterprise workflows quickly become too complex for a single AI agent. Instead, organizations are adopting supervisor-worker architectures where specialized agents collaborate under the coordination of an orchestration layer.Examples include: * HR recruitment agents * IT operations agents * Sales qualification agents * Customer Success agents * Compliance agents Each specialist performs one well-defined task while a supervisor agent coordinates execution, validates results, manages approvals, and handles exceptions. This approach improves scalability, transparency, resilience, and overall system quality. IDENTITY, SECURITY, AND GOVERNANCE Security cannot be an afterthought when deploying enterprise AI. Every production agent should operate using its own Microsoft Entra workload identity with least-privilege permissions rather than shared service accounts or user credentials.Successful organizations combine Managed Identities, Conditional Access, Microsoft Purview, Data Loss Prevention, sensitivity labels, audit trails, and approval workflows into a comprehensive governance framework.Every AI action should be attributable, explainable, monitored, and fully auditable. This creates confidence for both IT teams and business leaders while satisfying regulatory and compliance requirements. AGENT 365 AND THE FUTURE OF ENTERPRISE AI Managing dozens—or even hundreds—of AI agents requires centralized governance. Agent 365 introduces a dedicated control plane for discovering, managing, monitoring, and securing enterprise AI agents across Microsoft 365.Organizations gain visibility into deployed agents, permission models, risk classifications, ownership, policy compliance, and operational health through a single management experience. This transforms AI governance from reactive security into proactive operational excellence. FINAL THOUGHTS The future of enterprise AI extends far beyond chat interfaces. Organizations that continue viewing AI as a conversational tool risk missing the much larger opportunity of intelligent business automation. Microsoft Graph provides the organizational context, Model Context Protocol delivers standardized connectivity, and modern orchestration frameworks enable collaborative AI systems capable of executing real business processes securely and at scale.The next generation of enterprise architecture will be built around Graph-powered agents that understand organizational relationships, coordinate across business systems, operate within governance boundaries, and continuously improve business productivity. Companies investing today in Graph, MCP, multi-agent orchestration, identity-first security, and enterprise governance will be positioned to lead the AI-powered workplace of the future. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

Yesterday1 h 20 min
episode The Hidden Logic of Microsoft Graph artwork

The Hidden Logic of Microsoft Graph

Most Microsoft 365 professionals know Microsoft Graph as the API behind users, groups, Teams, and SharePoint. But beneath those familiar endpoints lies a much larger reality. Microsoft Graph has evolved into the operational control plane for the entire Microsoft ecosystem, powering everything from identity management and security operations to Copilot experiences, governance automation, compliance reporting, and organizational intelligence. In this episode, we explore why Microsoft Graph is no longer just a developer tool but a strategic platform that modern organizations depend on every day. We examine how Graph became the unified abstraction layer connecting Entra ID, Microsoft 365, Teams, SharePoint, Exchange Online, Defender, Purview, Copilot, and countless other Microsoft services through a single architecture. Understanding Graph is increasingly becoming essential not only for administrators and architects but also for executives looking to maximize the value of their Microsoft investments. WHY MOST ORGANIZATIONS ONLY USE TEN PERCENT OF GRAPH The majority of organizations interact with only a tiny fraction of Microsoft's available Graph capabilities. Most automation projects focus on user provisioning, group management, or basic Teams administration. Meanwhile, powerful capabilities remain largely undiscovered: * Advanced reporting APIs * Identity Governance APIs * Audit and Sign-In Logs * Security and Risk APIs * Planner and Tasks APIs * Places APIs * Viva Insights APIs * Copilot Governance APIs The discussion explores why discovery challenges, permission concerns, tooling limitations, and organizational culture often prevent teams from unlocking Graph's full potential. MICROSOFT GRAPH AS THE CONTROL PLANE OF MICROSOFT 365 Microsoft Graph is often described as an API. In reality, it has become much more than that. Graph acts as the unified operational layer beneath Microsoft 365. Every Teams message, SharePoint file, Entra sign-in, Copilot interaction, and security event ultimately flows through Graph. We explore: * The evolution from fragmented APIs to a unified platform * Why Microsoft retired legacy APIs * The architectural importance of Graph * How Graph became Microsoft's strategic integration layer * Why every major new Microsoft capability starts with Graph support Understanding this shift changes how organizations think about automation, governance, and AI readiness. THE REPORTING APIS: TURNING BEHAVIOR INTO BUSINESS INTELLIGENCE Most organizations rely on dashboards that provide surface-level metrics. Graph's Reporting APIs expose something much more valuable: behavioral signals. The episode explores how organizations can analyze: * Teams usage trends * SharePoint adoption * OneDrive activity * Exchange engagement * License utilization * Collaboration patterns These signals can be transformed into executive dashboards that provide insights into productivity, adoption, governance maturity, and technology ROI. AUDIT LOGS, SIGN-IN LOGS, AND ORGANIZATIONAL MEMORY Every organization creates a continuous stream of events. Graph provides access to the data behind those events through: * Directory Audit Logs * Sign-In Logs * Provisioning Logs * Security Events We discuss how these logs become the foundation for: * Security monitoring * Governance reporting * Compliance evidence * Risk management * Incident investigation The conversation highlights why organizations should think of audit data as their digital flight recorder. DELTA QUERIES AND CHANGE NOTIFICATIONS  Polling is inefficient. Modern architectures increasingly depend on event-driven intelligence. The episode explores how Delta Queries and Change Notifications allow organizations to build near real-time automation using Graph. Topics include: * Event-driven architecture * Governance automation * Security monitoring * Change detection * Real-time workflows * Operational efficiency These patterns help organizations move from reactive administration to proactive operations. IDENTITY GOVERNANCE AND ACCESS AUTOMATION Identity remains one of the most critical areas of enterprise risk. Graph enables organizations to automate access management through: * Access Reviews * Entitlement Management * Lifecycle Workflows * Privileged Identity Management * Role Governance The discussion examines how policy can move from documentation into automated enforcement, reducing operational risk while improving compliance. GUEST ACCESS, EXTERNAL USERS, AND COLLABORATION RISK External collaboration continues to grow across Microsoft 365 environments. Graph provides unprecedented visibility into: * Guest accounts * External sharing * Partner access * Dormant identities * Collaboration risks We explore how organizations can identify stale guest accounts, automate access reviews, and improve governance around external collaboration. SECURITY APIS AND THE MODERN SECURITY FABRIC Microsoft Graph Security APIs have evolved far beyond simple alert aggregation. The conversation explores: * Security Alerts v2 * Secure Score * Risk Detections * Risky Users * Identity Protection * Defender integrations Graph increasingly serves as the security data plane connecting multiple Microsoft security platforms into a single operational model. COMPLIANCE, PURVIEW, AND REGULATORY AUTOMATION Compliance requirements continue to become more complex. Graph provides programmatic access to critical compliance capabilities, including: * eDiscovery * Audit Evidence * Retention Policies * Compliance Reporting * MFA Validation * Conditional Access Analysis The discussion highlights how organizations can automate compl Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

Yesterday1 h 11 min
episode Everything Microsoft Didn't Tell You About Teams with Everything Microsoft Didn't Tell You About Teams with Josh Blalock [MVP] artwork

Everything Microsoft Didn't Tell You About Teams with Everything Microsoft Didn't Tell You About Teams with Josh Blalock [MVP]

Microsoft Teams has evolved from a simple collaboration platform into the digital workplace at the heart of modern business. But behind every successful Teams meeting lies far more than software. In this episode of the M365 FM Podcast, host Mirko Peters sits down with Microsoft MVP, Microsoft 365 Copilot expert, technology evangelist, and Comms vNext co-founder Josh Blalock to uncover the technology, strategy, and hardware innovations that most organizations never think about when deploying Microsoft Teams. From the evolution of Skype for Business to today's AI-powered collaboration experiences, Josh shares over two decades of real-world experience designing, deploying, and optimizing Microsoft collaboration solutions. Together they explore why audio quality is becoming even more important than video, how Microsoft 365 Copilot changes the value of meeting rooms, and why organizations should rethink how they invest in collaboration technology. FROM SKYPE FOR BUSINESS TO MICROSOFT TEAMS Josh reflects on his journey from managing Microsoft Exchange servers in the U.S. Air Force to becoming one of the leading experts in Microsoft Teams and Unified Communications. He explains how technologies like Office Communications Server, Lync, Skype for Business, and Microsoft Teams transformed enterprise collaboration and why cloud-first communication has completely changed the role of IT administrators. The conversation also explores what has been lost—and gained—as organizations transitioned from on-premises infrastructure to Microsoft's cloud ecosystem. WHY AUDIO MATTERS MORE THAN EVER Most companies invest heavily in cameras, displays, and meeting room aesthetics. Surprisingly, the most important technology in an AI-powered meeting room isn't the camera—it's the microphone. Josh explains why poor audio doesn't just frustrate meeting participants anymore—it directly reduces the quality of Microsoft 365 Copilot. Every transcript, meeting summary, action item, and AI-generated follow-up depends entirely on clean, accurate audio. As Copilot becomes the digital assistant for every meeting, microphone quality becomes the foundation of enterprise AI. Topics include: * Why audio is more important than video * Conference room acoustics * Digital Signal Processing (DSP) * Noise reduction and echo cancellation * AI-ready meeting rooms * Meeting transcription accuracy * Microsoft 365 Copilot meeting intelligence SHURE'S EXPANSION INTO MICROSOFT TEAMS Many people know Shure for its legendary microphones used by musicians, podcasters, broadcasters, and content creators. What many don't realize is that Shure has spent more than a decade developing enterprise conferencing technology for meeting rooms around the world. Josh explains how Shure's conferencing portfolio has evolved from premium audio hardware into complete Microsoft Teams Rooms solutions, including certified Windows and Android-based meeting room systems designed specifically for modern hybrid work. The discussion covers how hardware certification works, why Microsoft Teams certification matters, and how enterprise customers should evaluate conference room equipment before making major investments.  BUILDING THE PERFECT AI MEETING ROOM Creating a great meeting experience involves much more than simply installing a camera and microphone. Josh shares practical advice for organizations planning new collaboration spaces, including room acoustics, hardware selection, conference room design, DSP technology, furniture placement, audio processing, and working with integrators to build environments that deliver exceptional meeting experiences. As AI becomes increasingly integrated into daily collaboration, the quality of meeting room infrastructure will directly influence the quality of business intelligence generated by Microsoft 365 Copilot.  THE MICROSOFT MVP JOURNEY Josh also shares his personal story of becoming a Microsoft MVP. From writing technical blogs and publishing educational videos to building one of the Microsoft collaboration community's most respected conferences, he explains how sharing knowledge—not simply collecting certifications—is what ultimately defines successful community leadership. He also discusses the brand-new Shure Ignition Program, inspired by Microsoft's MVP Program, which supports technology evangelists and community leaders focused on Microsoft Teams Rooms and enterprise collaboration hardware.  COMMS VNEXT AND THE MICROSOFT COLLABORATION COMMUNITY The episode also takes listeners behind the scenes of Comms vNext, one of the most respected community-driven conferences dedicated to Microsoft Teams, Unified Communications, Microsoft 365, and AI-powered collaboration. Josh explains why the conference was created, how it differs from Microsoft Ignite, and why community events remain one of the best places for IT professionals to learn, network, and stay ahead of Microsoft's rapidly evolving collaboration ecosystem.  WHO SHOULD LISTEN? This episode is ideal for: * Microsoft Teams Administrators * Microsoft 365 Architects * IT Decision Makers * Collaboration Engineers * UC Specialists * Microsoft MVPs * Meeting Room Designers * Enterprise Architects * AI and Copilot Champions * Content Creators * Anyone deploying Microsoft Teams Rooms Whether you're planning your first Teams Room, investing in Microsoft 365 Copilot, evaluating enterprise collaboration hardware, or simply trying to understand where Microsoft Teams is heading next, this episode delivers practical insights that go far beyond the user interface. If you've ever wondered why some Teams meetings feel effortless while others struggle with poor audio, inaccurate transcripts, or disappointing AI experiences, this conversation explains the technology that makes the difference—and why the future of Microsoft Teams is about much more than meetings. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

3. juli 202645 min