M365.FM - Modern work, security, and productivity with Microsoft 365

Leading AI, Delivering Transformation, and Building Community with Areti Iles [MVP]

1 h 6 min · 3. juni 2026
episode Leading AI, Delivering Transformation, and Building Community with Areti Iles [MVP] cover

Beskrivelse

In this episode of the M365 FM Podcast, Mirko Peters welcomes Areti Iles, Microsoft MVP, Head of Professional Services at Telefonica Tech’s AI Business Solutions Division, community leader, mentor, conference organizer, and one of the most respected voices in AI governance, compliance, Dynamics 365, and Power Platform. Together, they explore enterprise transformation, Agentic AI, leadership, responsible AI adoption, and the future of work in an AI-powered world. Areti shares her remarkable journey from working in IT support to becoming a trusted leader responsible for delivering complex Microsoft technology solutions across global organizations. What started as an introduction to Microsoft Dynamics CRM evolved into a career spanning consulting, solution architecture, project leadership, executive management, and AI strategy. Her story demonstrates how curiosity, continuous learning, and community involvement can transform a career and create opportunities far beyond what many professionals initially imagine. HOW DIGITAL TRANSFORMATION CAREERS ARE BUILT One of the recurring themes throughout the conversation is that successful careers are rarely planned from the beginning. Areti explains how many of the most important opportunities in her career emerged unexpectedly. From becoming a consultant to leading professional services teams, she highlights the importance of stepping outside comfort zones, embracing uncertainty, and applying for roles even when you do not meet every requirement. She also discusses the leadership lessons she learned while transitioning from technical delivery into executive leadership. Moving from building solutions to overseeing entire delivery organizations provided new perspectives on strategy, customer relationships, business value, and organizational transformation.  WHY ENTERPRISE PROJECTS SUCCEED OR FAIL Drawing from years of experience leading Dynamics 365, Power Platform, ERP, and AI projects, Areti explains that technology is rarely the reason projects fail. Instead, the biggest challenges often include: * Lack of stakeholder engagement * Poor change management * Insufficient executive sponsorship * Unrealistic expectations * Limited SME availability * Scope creep * Weak user adoption strategies She emphasizes that go-live should never be considered the finish line. The true success of any transformation project is measured by business outcomes, adoption rates, productivity improvements, and long-term value realization after deployment. THE PEOPLE SIDE OF DIGITAL TRANSFORMATION A major takeaway from the episode is that technology projects are fundamentally people projects. Organizations often focus heavily on implementation while underestimating the effort required to prepare users for change. Areti discusses the importance of involving users early, gathering continuous feedback, creating ownership within the business, and ensuring employees understand not only how new systems work but why they matter. Successful transformation requires: * Executive buy-in * Strong communication plans * User engagement * Continuous feedback loops * Effective training * Long-term adoption strategies Without these elements, even technically successful projects can fail to deliver business value. UNDERSTANDING AGENTIC AI AI dominates today's technology conversations, but many professionals still struggle to understand what Agentic AI actually means. Areti provides a practical explanation, describing Agentic AI as a collection of autonomous systems capable of planning, making decisions, and executing actions to achieve specific goals. Unlike traditional AI assistants that simply respond to prompts, agents can independently perform tasks, orchestrate workflows, and interact with systems on behalf of users.  HOW AI IS CHANGING THE WAY WE WORK The discussion explores how AI is fundamentally changing the relationship between humans and technology. Historically, people sat at the center of business systems, making every decision and driving every process. Agentic AI introduces a future where humans increasingly manage exceptions while intelligent systems handle routine activities autonomously. Topics discussed include: * Autonomous workflows * AI-powered decision making * Human oversight * AI trust and governance * Organizational readiness * Workforce transformation * Future operating models Areti explains that while the technology is exciting, organizations must remain thoughtful about how much autonomy they grant to AI systems. AI STRATEGY VS BUSINESS STRATEGY One of the most insightful moments of the conversation centers around a common mistake organizations make when adopting AI. According to Areti, AI should never become the strategy itself. Instead, organizations should focus on their business objectives and use AI as a tool to achieve them more effectively. She warns against implementing AI simply because competitors are doing so and encourages leaders to begin with business problems rather than technology solutions. This perspective is especially important as organizations rush to adopt emerging AI capabilities without clearly defining the outcomes they hope to achieve. AI  GOVERNANCE, COMPLIANCE, AND RESPONSIBLE AI  As AI adoption accelerates, governance and compliance have become board-level concerns. Areti provides an in-depth overview of the evolving regulatory landscape and explains why organizations must begin preparing now rather than waiting for regulations to mature. She discusses the growing importance of AI inventories, risk classification, governance frameworks, human oversight, documentation, and auditability. Key governance priorities include: * AI inventories * Risk assessments * Human oversight * Transparency * Monitoring * Documentation * Data protection * Compliance reporting Organizations that establish these foundations early will be better positioned to innovate responsibly and scale AI initiatives successfully. NAVIGATING THE EU AI ACT The European Union AI Act remains one of the most significant regulatory developments in artificial intelligence. During the discussion, Areti explains: * What the AI Act means for businesses * Which organizations may be affected * Why AI literacy matters * How compliance requirements are evolving * What leaders should prioritize today She stresses that organizations should not view compliance as a barrier to innovation but rather as an opportunity to build trustworthy and sustainable AI practices. MICROSOFT'SAPPROACH TO RESPONSIBLE AI  The conversation also explores how Microsoft technologies can help organizations implement secure and compliant AI solutions. Areti discusses the role of: * Microsoft Purview * Microsoft Defender * Azure AI Foundry * Compliance Manager * Data Loss Prevention * AI Monitoring * Security Controls Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

Kommentarer

0

Vær den første til å kommentere

Registrer deg nå og bli medlem av M365.FM - Modern work, security, and productivity with Microsoft 365 sitt community!

Prøv gratis

Prøv gratis i 60 dager

99 kr / Måned etter prøveperioden. · Avslutt når som helst.

  • Eksklusive podkaster
  • 20 timer lydbøker i måneden
  • Gratis podkaster

Alle episoder

699 Episoder

episode LinkedIn + Dynamics 365: The Architecture of Modern Selling cover

LinkedIn + Dynamics 365: The Architecture of Modern Selling

Modern B2B sales is undergoing a fundamental transformation. For years, organizations have treated LinkedIn and Dynamics 365 as separate systems. One platform managed relationships and professional networks, while the other tracked opportunities, contacts, and sales processes. But in reality, these platforms represent two halves of the same sales architecture.LinkedIn captures the professional graph, buyer signals, relationship strength, engagement patterns, and organizational changes happening in real time. Dynamics 365 captures structured customer data, sales processes, opportunity management, forecasting, and revenue execution.The future of modern selling lies in bringing these worlds together.In this episode, we explore how LinkedIn, Dynamics 365, Copilot for Sales, Power Automate, Sales Navigator, and AI Agents are reshaping B2B sales. We discuss the shift from manual data entry to autonomous relationship intelligence, how relationship health scoring is changing pipeline management, and why AI-powered sales orchestration is becoming a competitive advantage for organizations worldwide. WHY TRADITIONAL CRM SYSTEMS ARE BECOMING BLIND Most CRM systems only know what users manually enter.A contact record may contain a name, title, company, and recent activities, but it often lacks the real-world changes happening around that person. Job changes, promotions, new responsibilities, buying signals, and engagement activity frequently occur outside the CRM.This creates a dangerous gap between what your organization knows and what is actually happening.The discussion explores why stale CRM data contributes to missed opportunities, inaccurate forecasts, declining relationship quality, and lost revenue. Organizations that continue relying on manual updates are increasingly operating with outdated information while competitors leverage real-time intelligence from LinkedIn and AI-powered systems. THE THREE DISCONNECTS KILLING SALES PERFORMANCE The episode introduces three critical disconnects that exist in many modern sales organizations.The Data DisconnectLinkedIn and Dynamics 365 often contain information about the same people but store it in completely different systems.This leads to duplicated work, inconsistent records, and multiple versions of the truth.The Process DisconnectImportant events such as promotions, company changes, or leadership transitions rarely trigger automated business actions.Sales teams often discover critical information too late.The Intelligence DisconnectRelationship signals and opportunity signals are analyzed separately rather than together.As a result, forecasting models miss valuable context that influences buying decisions.Understanding and eliminating these disconnects is the foundation for building a modern sales architecture. LINKEDIN APIS, SALES NAVIGATOR, AND THE REALITY OF INTEGRATION Many organizations assume LinkedIn is a completely closed platform.The reality is more nuanced.The episode explores how LinkedIn's API ecosystem works, including: * Consumer APIs * Partner APIs * Compliance APIs * OAuth authentication * Rate limiting * Enterprise integration strategies The discussion explains why Sales Navigator CRM Sync remains the most practical and scalable path for integrating LinkedIn relationship data into Dynamics 365 environments while remaining compliant with platform requirements and governance standards. SALES NAVIGATOR CRM SYNC AS THE OFFICIAL BRIDGE Sales Navigator CRM Sync acts as the official connection between LinkedIn and Dynamics 365 Sales.Rather than forcing sales professionals to manually transfer information between systems, CRM Sync automatically enriches Dynamics records with valuable LinkedIn data.Benefits include: * Reduced manual data entry * Improved contact quality * Better account visibility * Relationship insights * Engagement awareness Organizations gain access to current professional information while maintaining Dynamics 365 as their operational system of record. POWER AUTOMATE AND CUSTOM SALES ORCHESTRATION Beyond standard integrations, Power Automate enables organizations to create advanced sales workflows and business processes.The conversation explores how custom connectors, API integrations, and workflow orchestration can extend the value of LinkedIn and Dynamics 365 far beyond out-of-the-box functionality.Topics include: * Power Automate architecture * Custom connector strategies * API governance * Workflow automation * Event-driven sales processes * Enterprise integration patterns These capabilities allow organizations to transform relationship signals into automated actions across the entire customer lifecycle. DYNAMICS 365 NATIVE LINKEDIN CAPABILITIES Many organizations overlook the LinkedIn capabilities already built directly into Dynamics 365 Sales.The episode highlights features such as: * LinkedIn Sales Navigator Cards * TeamLink * Lead Creation * Contact Creation * Activity Synchronization * Relationship Intelligence These native capabilities allow sellers to access LinkedIn insights without leaving Dynamics 365, improving productivity while reducing context switching and manual effort. RELATIONSHIP HEALTH IS THE NEW SALES KPI One of the most important concepts discussed is Relationship Health.Traditional CRM systems focus heavily on pipeline stages, opportunity values, and activity counts. However, modern selling increasingly depends on understanding the strength and quality of customer relationships.Relationship Health combines: * Email activity * Meetings * Calls * LinkedIn engagement * Response patterns * Sentiment analysis The result is a dynamic assessment of account engagement that helps sellers identify risks, prioritize actions, and improve forecasting accuracy before problems become visible in traditional sales metrics. COPILOT FOR SALES: TURNING DATA INTO ACTION Copilot for Sales represents the next evolution of sales productivity.Instead of forcing sellers to gather information manually, Copilot synthesizes data from LinkedIn, Dynamics 365, Outlook, Teams, and other Microsoft services to provide actionable recommendations.Use cases discussed include: * Meeting preparation * Opportunity summaries * Email drafting * Relationship analysis * Account research * Next-best-action recommendations The result is a dramatic reduction in administrative overhead and a significant increase in seller effectiveness. SALES AGENTS AND AUTONOMOUS LEAD QUALIFICATION The episode explores the emerging world of autonomous AI Sales Agents.Rather than waiting for human instructions, these agents can: * Research accounts * Analyze organizations * Identify buying signals * Map buying committees * Score opportunities * Recommend actions Sales Development Agents and Sales Research Agents represent a major shift toward autonomous selling processes where AI handles preparation and qualification while humans focus on relationships and decision-making. THE ORCHESTRATOR PATTERN FOR MODERN SALES As organizations deploy multiple agents, coordination becomes critical.The discussion introduces the Orchestrator Pattern, where specialized AI agents collaborate under the direction of a central orchestration layer.Examples include: * Research Agents * Qualification Agents * Strategy Agents * Competitive Intelligence Agents * Relationship Analysis Agents Instead of relying on one large agent to do everything, organizations can combine specialist agents to create scalable and highly effective sales systems. GOVERNANCE, COMPLIANCE, AND DATA PROTECTION No discussion about LinkedIn and CRM integration would be complete without governance.The episode explores: * GDPR compliance * Data Loss Prevention * Audit trails * API governance * Responsible AI * Data protection strategies Organizations must balance innovation with compliance to ensure that relationship intelligence is used responsibly and within regulatory boundaries. BUILDING THE UNIFIED SALES SYSTEM A modern sales architecture consists of three core layers.Extraction LayerCaptures signals from LinkedIn, Dynamics 365, email, meetings, and other business systems.Reasoning LayerUses Copilot, AI Agents, and analytics to transform signals into intelligence.Action LayerExecutes automated workflows, alerts, routing decisions, and business processes.Together, these layers create a continuous feedback loop where data becomes intelligence and intelligence becomes action. THE FUTURE OF SELLING IS AGENTIC Perhaps the most fascinating discussion focuses on what comes next.The future is not simply AI-assisted selling.The future is Agentic Selling.Organizations are moving toward environments where AI Agents perform research, qualification, orchestration, and recommendation activities automatically while human sellers focus on trust, negotiation, strategy, and relationship-building.As buyer-side AI agents emerge, the future may involve AI systems negotiating with other AI systems before human involvement even begins.This represents one of the most significant shifts in B2B sales since the invention of CRM itself. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

8. juli 20261 h 14 min
episode Azure Networking Unlocked: Secure Azure Functions, Virtual Network Manager & Infrastructure as Code with Rex de Koning [MVP-MCT] cover

Azure Networking Unlocked: Secure Azure Functions, Virtual Network Manager & Infrastructure as Code with Rex de Koning [MVP-MCT]

Cloud adoption has accelerated at an incredible pace, but modern cloud infrastructure is no longer just about deploying virtual machines or Azure services. Networking has become the backbone of every successful Azure environment, connecting applications, securing workloads, automating deployments, and ensuring resilience across regions. In this episode of the M365 FM Podcast, host Mirko Peters welcomes Microsoft MVP and Microsoft Certified Trainer Rex de Koning to explore the world of Azure Networking, Infrastructure as Code, Azure Virtual Network Manager, secure Azure Functions, and modern cloud architecture. Drawing on nearly thirty years of IT experience—from software development and system engineering to Azure networking and automation—Rex explains why networking remains one of the most misunderstood aspects of Microsoft Azure. While many organizations assume Microsoft manages networking entirely in the cloud, the reality is that designing secure, scalable, and automated network architectures is still one of the most important responsibilities for every cloud architect and infrastructure engineer.  WHY AZURE NETWORKING MATTERS Azure networking is fundamentally different from traditional on-premises infrastructure. Rather than simply recreating physical networks in the cloud, organizations must rethink how virtual networks, routing, security, and connectivity work together inside Microsoft's global cloud platform. Rex explains why understanding concepts like Virtual Networks, Network Security Groups, routing, virtual appliances, and cloud-native networking is essential for building reliable Azure environments that scale securely. The episode also explores common misconceptions that often lead to security risks, unnecessary complexity, and expensive cloud architectures. AZURE VIRTUAL NETWORK MANAGER EXPLAINED One of the major topics of the conversation is Azure Virtual Network Manager, one of Microsoft's most powerful—but often overlooked—network management services. Rex explains how organizations can centrally manage hundreds of virtual networks while automating routing, connectivity, IP address management, and security administration across multiple subscriptions and regions. Topics include: * Azure Virtual Network Manager * IP Address Management (IPAM) * Connectivity configurations * Mesh networking * Hub and Spoke architecture * Security Admin Rules * Route management * Centralized network governance You'll learn why Virtual Network Manager dramatically simplifies enterprise networking and reduces operational complexity through centralized automation. HUB & SPOKE VS. VIRTUAL WAN Many Azure architects eventually face an important design decision: Should you build a traditional Hub & Spoke architecture or adopt Azure Virtual WAN? Rex compares both approaches, discussing their strengths, weaknesses, operational complexity, scalability, routing behavior, and real-world deployment scenarios. He also explains why there is no universal answer and why architecture decisions should always be based on business requirements rather than industry trends. INFRASTRUCTURE AS CODE IS NO LONGER OPTIONAL  Infrastructure as Code has evolved from a DevOps best practice into a fundamental requirement for modern cloud operations. Throughout the discussion, Rex explains why every Azure deployment should be fully automated using repeatable, version-controlled code. The episode covers: * Bicep * ARM Templates * Terraform * Azure Verified Modules * Azure DevOps * GitHub * CI/CD Pipelines * What-If Deployments * Parameterized deployments * Infrastructure testing Whether you're deploying a single Virtual Network or hundreds of landing zones across multiple environments, Infrastructure as Code ensures consistency, repeatability, and security. BUILDING SECURE AZURE FUNCTIONS Serverless computing is incredibly powerful—but it also introduces new security challenges. Rex demonstrates why Azure Functions should never simply be exposed to the public internet without proper protection. The conversation explores: * Private Endpoints * Virtual Network Integration * NAT Gateway * Azure Firewall * Outbound traffic control * Managed Identity * Authentication * Application security * Network isolation You'll discover practical techniques for reducing attack surfaces while maintaining the flexibility and scalability of serverless applications. ZERO TRUST NETWORKING Security is no longer just about firewalls. Modern Azure environments require Zero Trust principles at every layer. Rex explains how Network Security Groups, Azure Firewall, Managed Identities, Private Endpoints, and least-privilege access work together to create secure cloud-native architectures that minimize lateral movement and reduce attack surfaces. The discussion also highlights why automation and security must be integrated from the very beginning instead of being added later as an afterthought. WHO SHOULD LISTEN? This episode is perfect for: * Azure Architects * Cloud Engineers * Infrastructure Engineers * Network Engineers * DevOps Engineers * Platform Engineers * Microsoft MVPs * Security Architects * IT Consultants * Azure Administrators * Anyone building enterprise Azure environments Whether you're deploying Azure Landing Zones, modernizing on-premises infrastructure, designing enterprise networking, implementing Infrastructure as Code, or securing Azure Functions, this episode delivers practical guidance from years of real-world Azure experience. If you want to build cloud environments that are scalable, secure, automated, and maintainable, this conversation provides an excellent roadmap for mastering one of Microsoft's most critical technologies—Azure Networking. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

I går54 min
episode The PowerShell Ceiling: Why You Need Bicep cover

The PowerShell Ceiling: Why You Need Bicep

Every IT professional eventually reaches a point where automation stops feeling like freedom and starts becoming a burden. What begins as a handful of PowerShell scripts quickly grows into dozens of automations spread across repositories, Automation Accounts, Azure Functions, Logic Apps, Key Vaults, and multiple Azure subscriptions. The scripts still work, but the infrastructure supporting them becomes increasingly difficult to understand, govern, and reproduce. In this episode, we explore why this "PowerShell ceiling" exists and why modern platform engineering requires a fundamental shift from scripting infrastructure to defining infrastructure using Bicep. You'll discover how Infrastructure as Code transforms automation from a collection of useful scripts into a repeatable, secure, and enterprise-ready platform that can be versioned, audited, and deployed consistently across any environment. THE AUTOMATION JOURNEY EVERY ENGINEER EXPERIENCES Nearly every automation journey follows the same pattern. It begins with manual administration before evolving into PowerShell scripts that dramatically reduce repetitive work. Over time, success creates complexity. A few scripts become dozens, automation accounts multiply, service principals accumulate, and dependencies become increasingly difficult to track. Eventually, organizations realize they haven't built an automation platform—they've built a growing collection of independent solutions that nobody fully understands anymore. This transition marks the point where automation must evolve into platform engineering. The challenge is no longer writing better scripts but creating infrastructure that is repeatable, maintainable, and governed from a single source of truth.  UNDERSTANDING THE LIMITS OF POWERSHELL PowerShell remains one of the most powerful automation languages available, but it was designed for executing actions rather than describing infrastructure. It excels at provisioning users, assigning licenses, managing Microsoft 365 resources, and orchestrating business logic. What it does not provide is a declarative description of the environment those scripts depend upon. As environments grow, administrators begin asking difficult questions. Which Automation Account executes this workflow? Which Key Vault stores its secrets? Who created the service principal? Which permissions are required? Can the entire platform be rebuilt tomorrow if disaster strikes? PowerShell executes tasks brilliantly, but it cannot become the long-term documentation or governance model for enterprise infrastructure.  THE HIDDEN COST OF SCRIPT SPRAWL Many organizations underestimate the operational cost of successful automation. Scripts continue solving problems while the surrounding infrastructure quietly becomes more fragile. Multiple subscriptions, storage accounts, monitoring solutions, identities, and automation services accumulate over several years without a centralized architectural definition. Eventually, organizations struggle with: * Undocumented infrastructure dependencies * Manual compliance verification * Configuration drift * Disaster recovery challenges * Increasing operational complexity The technical debt isn't found inside the PowerShell code itself. It exists within the undocumented infrastructure supporting every automation. WHY INFRASTRUCTURE AS CODE CHANGES EVERYTHING  Infrastructure as Code introduces an entirely different mindset. Instead of telling Azure how to perform every deployment step, engineers describe the desired end state. Azure Resource Manager determines deployment order, resolves dependencies, manages parallel execution, and continuously aligns deployed resources with the declared architecture. Bicep represents Microsoft's modern Infrastructure as Code language for Azure. Rather than replacing PowerShell, it complements it by defining the infrastructure PowerShell depends upon. Function Apps, Automation Accounts, Key Vaults, Managed Identities, Storage Accounts, Log Analytics Workspaces, and networking can all be described as code, versioned inside Git, and deployed consistently across environments. This declarative model dramatically improves repeatability, governance, and operational resilience.  FROM TASK AUTOMATION TO PLATFORM ENGINEERING One of the biggest architectural shifts discussed in this episode is recognizing that infrastructure deserves the same engineering discipline as application code. Infrastructure definitions belong in source control, changes should be reviewed through pull requests, deployments should flow through CI/CD pipelines, and every configuration should be reproducible from version-controlled code. Modern platform engineering combines several complementary technologies: * Bicep for infrastructure deployment * PowerShell for operational workflows * Microsoft Graph for enterprise data * Git for version control * CI/CD pipelines for automated deployment Together they create a layered architecture where every technology performs the role it was designed for. MICROSOFT GRAPH AND IDENTITY AS INFRASTRUCTURE  One of the most significant recent developments is Microsoft's introduction of Microsoft Graph support within Bicep. Identity management is no longer treated as an isolated scripting task. Application registrations, service principals, security groups, and Microsoft Entra ID configurations can now become part of the same declarative infrastructure definition as Azure resources. This transforms identity into infrastructure. Security models become version-controlled, reviewable, reproducible, and fully auditable alongside the rest of the platform. Rather than maintaining disconnected scripts for identity configuration, organizations can manage their entire operational foundation through a unified Infrastructure as Code approach.  GOVERNANCE BUILT INTO THE PLATFORM  Governance should never rely solely on documentation or human memory. Instead, successful organizations embed governance directly into reusable Bicep modules that automatically enforce organizational standards. These standards commonly include: * Standardized naming conventions * Mandatory resource tagging * Diagnostic logging * RBAC configuration * Security baselines Rather than auditing infrastructure after deployment, organizations ensure every deployment is compliant from the very beginning. THE ROLE OF AI IN MODERN PLATFORM ENGINEERING  As AI increasingly generates PowerShell and deployment code, the most valuable engineering skill shifts from writing syntax toward designing systems. Large Language Models can generate scripts rapidly, but they cannot independently define enterprise architecture, governance boundaries, or operational standards. Bicep provides the architectural contract that AI-generated automation operates within. Infrastructure becomes the guardrail while AI accelerates implementation inside clearly defined boundaries. The future belongs to engineers who design platforms rather than simply writing scripts.  FINAL THOUGHTS  PowerShell remains an essential technology for Microsoft 365 automation, but it is no longer sufficient as the foundation of enterprise platforms. As organizations expand their automation footprint, Infrastructure as Code becomes essential for governance, disaster recovery, compliance, scalability, and operational maturity. Bicep enables teams to define infrastructure declaratively, Microsoft Graph extends that model into identity, and PowerShell continues delivering the operational logic that powers modern automation. Together, these technologies represent the evolution from task automation to true platform engineering, allowing organizations to build infrastructure that is secure, repeatable, governed, and ready for the next generation of cloud-native and AI-driven enterprise solutions. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

I går1 h 9 min
episode Beyond the Prompt: Architecting Multi-Agent AI Solutions with Microsoft Copilot & SharePoint with Reshmee Auckloo [MVP] cover

Beyond the Prompt: Architecting Multi-Agent AI Solutions with Microsoft Copilot & SharePoint with Reshmee Auckloo [MVP]

Artificial Intelligence is rapidly moving beyond simple chatbots and prompt engineering. Today's enterprise AI solutions must reason, collaborate, orchestrate multiple agents, securely access business data, and operate within strict governance boundaries. In this episode of the M365 FM Podcast, host Mirko Peters sits down with Microsoft MVP, Modern Workplace Consultant, SharePoint expert, and Microsoft 365 governance specialist Reshmee Auckloo to explore how organizations can build enterprise-ready Multi-Agent AI solutions using Microsoft Copilot, Copilot Studio, SharePoint, Microsoft Graph, and Azure AI Foundry. Rather than focusing on AI hype, this conversation dives deep into the architecture behind production-ready AI systems. Reshmee explains why successful AI projects begin long before the first prompt is written. Security, governance, information architecture, permissions, metadata, and compliance remain the foundation upon which every intelligent Microsoft 365 solution is built. FROM SHAREPOINT TO ENTERPRISE AI Reshmee shares her journey from developing Microsoft .NET applications to becoming one of the Microsoft community's leading experts in SharePoint, governance, Microsoft 365, Copilot extensibility, and enterprise AI. Having spent more than fifteen years helping organizations modernize their Microsoft environments, she explains how Microsoft's rapid AI innovation has transformed the role of consultants, architects, and developers. With new features arriving almost weekly, staying current requires continuous learning, experimentation, and active engagement with the Microsoft community. GOVERNANCE BEFORE GENERATIVE AI One of the strongest messages throughout the episode is that organizations should never begin their AI journey by simply enabling Microsoft Copilot. Before deploying AI, businesses must first ensure their Microsoft 365 environment is secure, well-governed, and properly structured. Topics include: * Microsoft Purview * SharePoint permissions * Least privilege access * Data loss prevention (DLP) * Compliance * Microsoft Entra ID * AI readiness assessments * SharePoint Advanced Management * PnP PowerShell * Platform hygiene Reshmee explains why Copilot simply surfaces information users already have permission to access—and why poor permission management can become one of the biggest security risks in enterprise AI. BUILDING MULTI-AGENT AI SOLUTIONS  The conversation then moves into one of today's hottest AI topics: Multi-Agent Architectures. Rather than building one massive AI assistant responsible for everything, organizations should design smaller specialized agents that each solve a specific business problem. Reshmee explains how orchestrator agents coordinate multiple specialist agents, improving scalability, maintainability, accuracy, testing, and overall performance. The discussion covers: * Parent and child agents * Connected agents * Agent orchestration * Cross-platform agent communication * Azure AI Foundry integration * Copilot Studio * Agent Builder * Declarative Agents * Microsoft Agent Framework * Azure AI Search You'll also learn why enterprise AI increasingly resembles teams of specialists working together rather than one giant chatbot attempting to do everything. MICROSOFT GRAPH, MCP, AND ENTERPRISE INTEGRATION As Microsoft introduces new AI development models, technologies like Microsoft Graph, Model Context Protocol (MCP), and Microsoft 365 Copilot APIs are becoming essential building blocks. Reshmee explains the role of Microsoft Graph in accessing enterprise data, how MCP simplifies secure integration with external systems, and why developers still need to understand traditional SharePoint APIs alongside the latest AI technologies. The discussion highlights when developers should use: * Microsoft Graph * Work Graph * Microsoft Graph APIs * Model Context Protocol (MCP) * SharePoint REST APIs * Azure AI Search * Custom Connectors * Copilot Studio Skills * Workflows INFORMATION ARCHITECTURE STILL MATTERS Many organizations assumed that AI would eliminate the need for structured information architecture. Reshmee argues the opposite. Metadata, taxonomy, content types, permissions, and well-designed SharePoint structures remain essential for delivering accurate AI results. As Microsoft Copilot continues evolving, organizations with strong information architecture will gain significantly better AI experiences than those relying on unstructured content.  MICROSOFT BUILD, FOUNDRY, AND THE FUTURE OF AI The episode also explores Microsoft's latest announcements from Microsoft Build, including: * Azure AI Foundry * Microsoft Copilot Studio * New AI orchestration capabilities * Microsoft Graph evolution * Consumption-based AI pricing * Microsoft language models * Agent identity * Microsoft Entra Agent ID * Enterprise AI governance Reshmee shares her perspective on Microsoft's long-term AI strategy and how businesses should prepare for the next generation of intelligent enterprise applications. WHO SHOULD LISTEN? This episode is ideal for: * Microsoft 365 Architects * SharePoint Professionals * Copilot Studio Developers * AI Solution Architects * Power Platform Developers * Enterprise Architects * IT Decision Makers * Governance Specialists * Microsoft MVPs * Citizen Developers * Anyone building enterprise AI solutions Whether you're planning your first Microsoft Copilot deployment, designing sophisticated Multi-Agent systems, exploring Azure AI Foundry, or trying to understand Microsoft's rapidly evolving AI ecosystem, this conversation provides practical guidance grounded in real-world enterprise experience. If you want to move beyond simple prompts and start designing secure, scalable, production-ready AI architectures inside Microsoft 365, this episode offers a comprehensive roadmap for building intelligent solutions that businesses can truly trust. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

6. juli 20261 h 0 min
episode How To Trick Microsoft Graph Into Securing Your Entire Tenant cover

How To Trick Microsoft Graph Into Securing Your Entire Tenant

Most Microsoft 365 administrators believe their tenant is secure because every dashboard is green, policies are enabled, and alerts appear to be flowing normally. Unfortunately, modern security doesn't operate on static snapshots anymore. Enterprise environments are constantly changing as users sign in, applications request new permissions, identities evolve, and thousands of Microsoft Graph API calls occur every minute. In this episode, we explore why traditional portal-driven administration creates a false sense of security and how Microsoft Graph allows organizations to move from reactive monitoring to proactive, automated governance. Rather than relying on dashboards that show what has already happened, you'll learn how Graph exposes the real control plane of Microsoft 365, enabling continuous visibility, intelligent automation, and security decisions that operate at enterprise scale. THE DASHBOARD FALLACY Most security teams spend their day inside Microsoft portals believing they have complete visibility into their environment. In reality, portals only display simplified snapshots of information that may already be several minutes—or even hours—old. By the time a risky sign-in appears, an attacker may already have downloaded sensitive files, granted additional permissions, or established persistence within the tenant. This episode explains why security must evolve beyond dashboards toward continuous data streams powered directly by Microsoft Graph. Instead of monitoring static states, organizations need to monitor identity flow, application behavior, permission changes, and API activity as they happen.  WHY MICROSOFT GRAPH IS THE REAL CONTROL PLANE Many administrators think of Microsoft Graph as simply another REST API. In reality, Graph is the foundation that powers Microsoft 365 itself. Every sign-in, Conditional Access evaluation, application permission, directory change, and audit event ultimately flows through Graph before appearing inside any Microsoft portal. Understanding Graph fundamentally changes how organizations approach security. Instead of manually reviewing reports after incidents occur, administrators can automate governance, build intelligent workflows, correlate security signals, and respond to threats far faster than manual processes ever could. Key architectural concepts include: * Microsoft Graph as the unified governance layer * API-first security operations * Identity-driven automation * Continuous policy evaluation * Enterprise-scale programmability IDENTITY, TOKENS, AND THE HIDDEN SECURITY LAYER Passwords and multi-factor authentication are only the beginning of identity security. Once authentication succeeds, access tokens become the true keys to Microsoft 365 resources. These tokens can access Exchange Online, SharePoint, Teams, OneDrive, and Microsoft Entra without requiring users to authenticate again. The episode explores why protecting identities means monitoring token usage, risky sign-ins, authentication context, and machine-learning driven risk detections rather than focusing exclusively on password policies. Microsoft Graph exposes these signals through Identity Protection APIs, allowing organizations to automate investigations and significantly reduce response times.  THE APPLICATION PERMISSIONS CRISIS Modern tenants often contain hundreds of enterprise applications, many of which possess permissions far beyond what they actually require. Over time, permission creep creates an invisible attack surface where unused applications continue retaining privileged access to mailboxes, SharePoint sites, calendars, directories, and sensitive organizational data. Graph provides complete visibility into application registrations, service principals, delegated permissions, application permissions, OAuth grants, and Graph Activity Logs, enabling organizations to identify over-privileged applications before they become security incidents. Important governance practices include: * Inventory every application * Review delegated and application permissions * Detect permission creep * Remove orphaned OAuth grants * Continuously reduce excessive privileges FROM ALERT FATIGUE TO GRAPH-DRIVEN AUTOMATION Traditional SOC teams spend most of their time triaging alerts instead of stopping attacks. Thousands of notifications arrive daily, creating alert fatigue while genuine threats become increasingly difficult to identify. Microsoft Graph changes this model by allowing organizations to correlate multiple security signals automatically. Rather than investigating isolated alerts, Graph enables intelligent workflows that combine risky users, Graph Activity Logs, application behavior, audit events, Conditional Access policies, and Defender alerts into meaningful security stories. Automation isn't about replacing analysts—it removes repetitive investigation work so security professionals can focus on high-value decisions.  BUILDING A MODERN GRAPH SECURITY ARCHITECTURE The discussion also covers how enterprise organizations should architect Graph-powered security platforms. Instead of depending on portal workflows, organizations should build continuous pipelines that collect, enrich, correlate, and automate responses using Microsoft Graph endpoints. Topics include handling API throttling, designing resilient ingestion pipelines, filtering security data efficiently, managing latency, using Graph Activity Logs for forensic investigations, leveraging OData queries, implementing retry strategies, and preparing for Microsoft's ongoing migration toward Graph Security APIs and unified security schemas.  EXECUTIVE SECURITY POSTURE AND GOVERNANCE Technical metrics rarely answer the question executives actually care about: "Are we secure?" This episode explains how Graph enables organizations to transform technical signals into meaningful business risk metrics by combining Secure Score, Conditional Access coverage, risky user trends, automation maturity, application permission exposure, and response times into executive-ready dashboards. Rather than reporting isolated security statistics, organizations can demonstrate measurable improvements in governance, resilience, and operational maturity. Executive reporting should focus on: * Risk trends over time * Secure Score improvements * Automation coverage * Response speed * Application permission exposure FINAL THOUGHTS Microsoft Graph is far more than an API—it is the operational backbone of Microsoft 365 security. Organizations that continue relying exclusively on portals and manual reviews will always be reacting to yesterday's events. Those that embrace Graph as their primary security platform gain continuous visibility into identities, applications, permissions, audit data, and security signals while unlocking intelligent automation that dramatically improves both security posture and operational efficiency. The future of Microsoft 365 governance belongs to organizations that build directly on Graph, transforming security from reactive administration into proactive, programmable protection. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support [https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support?utm_source=rss&utm_medium=rss&utm_campaign=rss].

6. juli 20261 h 12 min