M365.FM - Modern work, security, and productivity with Microsoft 365
Building a successful Managed Service Provider today requires much more than managing devices and responding to support tickets. Modern MSPs must become trusted security partners, helping organizations navigate cloud transformation, identity protection, endpoint security, and AI-powered cyber threats. In this episode of the M365 Show, Mirko Peters sits down with Microsoft Intune MVP Albin Klinaku, founder and CEO of AdVision Swiss AG, to discuss how to build a security-first Microsoft MSP using Microsoft Intune, Microsoft Defender, Microsoft Entra ID, and Microsoft 365. Drawing from years of real-world customer projects, Albin shares practical strategies for designing secure cloud-native environments that scale. ROM SYSTEM ADMINISTRATOR TO MICROSOFT MVP Albin shares the story behind founding his own Microsoft-focused MSP after recognizing the industry's shift toward cloud-first computing. Starting with a personal lab and a passion for Microsoft 365 security, he explains how AdVision evolved into a Microsoft-first Managed Service Provider specializing in Intune, Defender, Entra ID, Azure, and modern endpoint management. The conversation also explores the realities of building an MSP, finding the right customers, creating repeatable services, and earning recognition as a Microsoft MVP. BUILDING INTUNE THE RIGHT WAY Microsoft Intune has matured into one of Microsoft's most important endpoint management platforms, yet many organizations still fail to unlock its full potential. Albin explains why security baselines, enrollment restrictions, Conditional Access, compliance policies, Windows Autopilot, remediation scripts, and cloud-native management should form the foundation of every deployment. He also discusses common deployment mistakes, why the famous "eight-hour sync myth" no longer applies, and how organizations can modernize endpoint management while reducing complexity. MICROSOFT DEFENDER BEYOND ANTIVIRUS Microsoft Defender has evolved into a comprehensive XDR platform, but many organizations still use only a fraction of its capabilities. Albin explains how Defender for Endpoint, Attack Surface Reduction rules, Endpoint Detection and Response, vulnerability management, automated remediation, and threat hunting work together to significantly improve security. The discussion highlights why proper licensing, continuous tuning, and understanding Defender's advanced features are critical for building an effective security operation. WHY IDENTITY IS THE NEW SECURITY PERIMETER As organizations move toward cloud-native infrastructure, identity has become the primary attack surface. Albin explains why Microsoft Entra ID, Conditional Access, Identity Protection, phishing-resistant authentication, Windows Hello for Business, passkeys, and Zero Trust architecture are now essential components of every Microsoft security strategy. The conversation explores token theft, session protection, passwordless authentication, and how organizations can dramatically reduce risk by securing identities before attackers gain access. SECURITY IS A PROCESS, NOT A PRODUCT One of the strongest themes throughout the episode is that security cannot simply be purchased—it must be continuously managed. Albin explains why vulnerability management only succeeds when combined with strong patch management, why security baselines should never remain in audit mode forever, and why continuous monitoring, threat hunting, and regular security reviews are essential for maintaining a healthy Microsoft environment. Organizations that treat security as an ongoing operational process consistently achieve stronger long-term protection. AI, AUTOMATION, AND THE FUTURE OF SECURITY OPERATIONS The conversation also explores Microsoft's rapidly expanding AI ecosystem. Albin shares his thoughts on Microsoft Security Copilot, Graph API automation, PowerShell, community tooling, and the growing role of AI in helping security teams identify risks, investigate incidents, and optimize Microsoft 365 environments. While automation can dramatically improve efficiency, he emphasizes that experienced security professionals remain essential for interpreting incidents, validating automated actions, and making critical business decisions. BUILDING A SECURITY-FIRST CULTURE Technology alone cannot protect an organization. Albin explains why leadership involvement, executive accountability, employee education, security awareness, and continuous improvement are just as important as technical controls. Rather than treating cybersecurity as an IT responsibility, successful organizations build a company-wide security culture supported by clear processes, measurable security metrics, and ongoing investment in both people and technology. KEY TAKEAWAYS Building a secure Microsoft-first MSP requires much more than deploying Intune or enabling Microsoft Defender. Success comes from combining cloud-native endpoint management, identity protection, Zero Trust principles, automation, continuous monitoring, strong governance, and customer education into one unified security strategy. Whether you're running an MSP, leading an internal IT department, or planning your Microsoft 365 security roadmap, this episode delivers practical guidance from someone who builds secure Microsoft environments every single day. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].
770 episodes
Comments
0Be the first to comment
Sign up now and become a member of the M365.FM - Modern work, security, and productivity with Microsoft 365 community!