M365.FM - Modern work, security, and productivity with Microsoft 365

Mirko Peters - Founder of m365.fm, m365.show and m365con.net
  • 0.0 (0)
  • Tech News
  • Updated Daily

Welcome to the M365.FM — your essential podcast for everything Microsoft 365, Azure, and beyond. Join us as we explore the latest developments across Power BI, Power Platform, Microsoft Teams, Viva, Fabric, Purview, Security, and the entire Microsoft ecosystem. Each episode delivers expert insights, real-world use cases, best practices, and interviews with industry leaders to help you stay ahead in the fast-moving world of cloud, collaboration, and data innovation. Whether you're an IT professional, business leader, developer, or data enthusiast, the M365.FM brings the knowledge, trends, and strategies you need to thrive in the modern digital workplace. Tune in, level up, and make the most of everything Microsoft has to offer. M365.FM is part of the M365-Show Network. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

  1. The Synthetic Platform Team: Operationalizing Azure Copilot Agents

    29 mins ago

    The Synthetic Platform Team: Operationalizing Azure Copilot Agents

    Modern cloud environments are becoming increasingly difficult to manage. Organizations are collecting more telemetry, logs, metrics, traces, recommendations, security signals, and cost data than ever before. Azure Monitor, Azure Cost Management, Azure Advisor, Application Insights, Service Health, and countless other tools provide valuable insights, yet many platform teams continue to struggle with the same challenge: understanding what matters and acting quickly enough to make a difference.In this episode, we explore how Azure Copilot Agents are transforming cloud operations and why many organizations are beginning to move beyond traditional dashboards toward a new model known as Agentic Operations. Rather than treating migration, deployment, optimization, observability, troubleshooting, and resiliency as separate disciplines, Azure introduces a coordinated ecosystem of intelligent agents working together as a Synthetic Platform Team.The discussion examines how AI-powered operational agents can continuously reason across infrastructure, correlate data from multiple sources, identify patterns humans often miss, and assist engineers in making faster and more informed decisions across the entire cloud lifecycle. WHY DASHBOARDS ARE NO LONGER ENOUGH For years, organizations have invested heavily in monitoring, observability, and reporting platforms. The assumption was simple: more visibility would lead to better operations.The reality has been very different.Today's cloud teams often find themselves switching between multiple dashboards just to understand a single incident. Cost anomalies appear in one system. Performance degradation appears in another. Deployment history exists somewhere else. Security findings are often hidden in entirely separate portals.This creates a fragmented operational experience where engineers spend significant amounts of time gathering information instead of solving problems. In this segment we discuss: The hidden cost of dashboard overloadWhy cloud complexity continues to outpace human capacityThe growing challenge of context switchingHow operational fragmentation impacts productivityWhy visibility alone does not create understandingThe conversation highlights why modern cloud operations require a reasoning layer capable of connecting information across multiple systems and transforming raw telemetry into actionable intelligence. UNDERSTANDING THE AGENTIC OPERATIONS MODEL Agentic Operations represents a fundamental shift in how organizations manage cloud environments.Unlike traditional automation that relies on static rules and predefined workflows, Azure Copilot Agents continuously analyze signals, understand context, build hypotheses, and recommend actions based on changing conditions.Rather than reacting to individual alerts, these agents operate across multiple domains simultaneously and reason about relationships between infrastructure, applications, deployments, costs, security posture, and business objectives.The episode explores how organizations can move from reactive cloud management to continuous operational intelligence and why this transition may be as significant as the original move from on-premises infrastructure to cloud computing. INTRODUCING THE SYNTHETIC PLATFORM TEAM One of the most fascinating concepts discussed in this episode is the idea of the Synthetic Platform Team.Instead of relying solely on human operators to perform migration assessments, deployment reviews, troubleshooting investigations, optimization exercises, and resiliency planning, organizations can augment their platform teams with specialized AI agents.These agents work together as a coordinated operational fabric, sharing context and collaborating across domains.The result is not a collection of disconnected tools but a unified operational model capable of supporting platform teams at scale. Topics covered include: Specialized operational agentsShared context across cloud servicesCross-domain reasoningContinuous operational awarenessHuman-in-the-loop governanceThe discussion emphasizes that the goal is not replacing engineers but multiplying their effectiveness. MIGRATION AGENTS AND CLOUD MODERNIZATION Cloud migrations remain one of the most challenging initiatives for many organizations.Legacy systems often contain undocumented dependencies, hidden integrations, and years of accumulated technical debt. Traditional migration planning requires extensive workshops, discovery sessions, architecture reviews, and manual assessments.Azure Migration Agents aim to change that process.By automatically discovering workloads, mapping dependencies, assessing compatibility, and generating migration recommendations, these agents help organizations accelerate migration initiatives while reducing operational risk. The episode explores how migration agents can: Discover hidden application dependenciesAssess Azure readinessIdentify modernization opportunitiesPrioritize migration wavesGenerate migration strategiesThis dramatically reduces the time required to move from discovery to execution. DEPLOYMENT AGENTS AND THE WELL-ARCHITECTED FRAMEWORK Infrastructure deployment is often where architecture becomes reality.Even the best migration plan can fail if infrastructure is deployed incorrectly. Security gaps, networking errors, governance violations, and inconsistent configurations can introduce operational risks long before applications go live.Deployment Agents leverage Azure Well-Architected Framework principles to generate production-ready infrastructure using Infrastructure as Code approaches such as Terraform, Bicep, and ARM templates.The discussion examines how these agents help organizations build environments that are secure, reliable, scalable, and cost efficient from day one.Special attention is given to governance, automation, repeatability, and security-by-design principles. CONTINUOUS OPTIMIZATION IN THE CLOUD ERA One of the most expensive challenges facing cloud teams is resource sprawl.Workloads evolve over time. Applications change. Usage patterns shift. Infrastructure that was appropriately sized on deployment day often becomes overprovisioned or inefficient months later.Optimization Agents continuously analyze cloud environments and compare actual resource utilization against deployed capacity.Rather than relying on quarterly optimization reviews, organizations can adopt continuous optimization strategies that operate every day. The episode explores: Cost optimizationResource right-sizingStorage lifecycle managementSustainability improvementsCloud financial operations (FinOps)Listeners will learn how organizations can reduce operational waste while maintaining performance and reliability. OBSERVABILITY, TELEMETRY, AND REAL-TIME REASONING Modern applications generate enormous amounts of operational data.Logs, traces, metrics, events, and application telemetry provide valuable insights but often remain disconnected from one another.Observability Agents act as correlation engines capable of connecting signals across multiple systems.Instead of presenting isolated alerts, these agents build narratives that explain what happened, why it happened, and which systems were affected.The conversation explores how AI-powered observability can significantly reduce mean time to detection and accelerate operational decision-making.Real-world examples demonstrate how agents identify root causes that would otherwise remain hidden across fragmented monitoring platforms. BUILDING RESILIENT CLOUD ARCHITECTURES Reliability and resiliency are not the same thing.Reliable systems are designed to avoid failure. Resilient systems are designed to survive failure.This episode examines how Resiliency Agents help organizations strengthen disaster recovery strategies, backup architectures, failover capabilities, redundancy planning, and business continuity initiatives. Topics discussed include: Availability zonesDisaster recovery planningBackup validationBusiness continuityRansomware resilienceThe discussion emphasizes proactive risk reduction rather than reactive incident management. TROUBLESHOOTING AT DIGITAL SPEEDE very organization experiences incidents.Applications fail. Databases slow down. Services become unavailable. Performance degrades.The real challenge is not finding alerts. The challenge is identifying root causes quickly enough to minimize business impact.Troubleshooting Agents dramatically reduce investigation time by automatically correlating telemetry, deployment history, configuration changes, performance metrics, and application logs.Rather than spending hours manually piecing together evidence, engineers receive a complete timeline of events and a detailed explanation of likely root causes.This transforms incident response from detective work into informed decision making. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 15m
  2. Dataverse MCP: The End of Custom Integration

    10 hrs ago

    Dataverse MCP: The End of Custom Integration

    For years, enterprise integration followed a familiar pattern. A new business requirement appeared, a developer built a custom connector, and another bridge was added to an already growing collection of APIs, middleware, and integration services. The model worked. Until AI arrived. In this episode, we explore why the traditional approach to integration is rapidly becoming one of the largest sources of technical debt in modern organizations and how the Model Context Protocol (MCP) is reshaping the relationship between AI systems and enterprise data. The discussion focuses on Microsoft Dataverse, governance, AI agents, security, architecture, and the emerging future of AI-native integration. THE HIDDEN COST OF CUSTOM CONNECTORS Most organizations never intended to create integration sprawl. It happened gradually. One connector became ten. Ten became fifty. Fifty became hundreds. The episode examines how custom integrations create long-term maintenance challenges through: Duplicate integration logicSecurity inconsistenciesDocumentation gapsDependency managementGrowing technical debtListeners learn why integration costs often continue long after the original project has been delivered. WHY AI BREAKS THE OLD INTEGRATION MODEL Traditional APIs were designed for applications. Not autonomous agents. As organizations deploy AI systems across multiple business functions, integration requirements increase dramatically. Topics explored include: Agent-driven workflowsDynamic tool discoveryAutonomous decision makingMulti-model architecturesCross-platform orchestrationThe episode explains why building a new connector for every AI tool quickly becomes unsustainable. UNDERSTANDING MODEL CONTEXT PROTOCOL (MCP) At the center of the discussion is MCP, the Model Context Protocol. Rather than creating separate integrations for every AI platform, MCP provides a standardized way for AI systems to discover and interact with tools. Key concepts include: Tool discoveryStandardized interfacesAI-native integrationDynamic schemasPermission-aware accessThe conversation compares MCP to USB-C for enterprise AI, creating a common standard that reduces integration complexity across the organization. DATAVERSE AS AN AI PLATFORM One of the biggest insights from the episode is that Dataverse is evolving beyond its traditional role as a business database. Instead, it is becoming: A context engineAn orchestration layerA semantic business modelA governance platformAn AI-ready control planeThis shift fundamentally changes how organizations think about enterprise data and AI automation. THE DATAVERSE MCP CONNECTOR Microsoft's Dataverse MCP connector introduces a new way for AI systems to interact with business data. Rather than creating custom APIs and wrappers, organizations can expose governed business capabilities directly through MCP. The episode explores: Dataverse MCP architectureAI client integrationSecurity inheritanceTool exposure modelsGovernance benefitsThe result is a dramatically simplified approach to enterprise AI integration. PERFORMANCE VS CAPABILITY MCP introduces additional abstraction compared to direct REST APIs. While this creates some latency overhead, the discussion highlights why raw speed is often the wrong metric. Topics include: Token efficiencyDynamic schema loadingReduced prompt complexityLower AI operating costsBetter autonomous behaviorThe episode argues that AI effectiveness often matters more than request latency. THE GOVERNANCE CHALLENGE Technology alone is not enough. As MCP adoption increases, governance becomes one of the most critical success factors. The conversation explores: Data Loss Prevention limitationsAdvanced Connector PoliciesAuditability concernsPermission boundariesRegulatory complianceListeners gain practical insight into why governance must be designed before deployment rather than after. AI IDENTITIES AND ACCOUNTABILITY One of the most fascinating sections focuses on identity management for autonomous systems. Important questions include: Who performed the action?Was it the human or the AI?Who owns the decision?How do you audit autonomous workflows?The episode examines Microsoft's emerging approach using Entra ID Agent Identities and why attribution will become a cornerstone of enterprise AI governance. MCP SECURITY AND NEW ATTACK SURFACES Every new architectural model introduces new security considerations. The discussion covers: Tool poisoning attacksPrompt injection risksSupply chain vulnerabilitiesOver-privileged serversAI-specific threat modelsOrganizations must understand these risks before exposing business-critical capabilities to autonomous systems. FROM POINT-TO-POINT TO HUB-AND-SPOKE A major architectural shift highlighted in the episode is the move away from point-to-point integrations. Instead of building countless custom bridges, organizations can create domain-specific MCP servers that act as centralized integration hubs. Benefits include: Simplified governanceCentralized auditingReduced maintenanceFaster onboardingGreater scalabilityThis approach transforms integration from a project-based activity into a reusable platform capability. DATAVERSE AS A CONTEXT ENGINE Perhaps the most important strategic takeaway is that AI systems consume context differently than humans. This means organizations must rethink: Metadata qualityField descriptionsRelationship modelingBusiness semanticsContext engineering Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 17m
  3. Building Enterprise AI Agents with Copilot Studio, Power Platform & AI Governance with Sailaja Mantripragada [MVP/MCT]

    1d ago

    Building Enterprise AI Agents with Copilot Studio, Power Platform & AI Governance with Sailaja Mantripragada [MVP/MCT]

    Artificial Intelligence is moving beyond simple chatbots and basic prompt engineering. Organizations around the world are now exploring how AI Agents can automate business processes, generate deliverables, reason through complex tasks, interact with enterprise systems, and transform the way work gets done.In this episode of the M365 Podcast, Mirko Peters sits down with Sailaja Mantripragada, Microsoft Business Applications MVP, Microsoft Certified Trainer, Principal Cloud Architect, and Founder of Low Code Power. With more than twenty years of experience in the Microsoft ecosystem, Sailaja shares her journey from SharePoint development to Power Platform architecture, enterprise AI strategy, Copilot Studio, Agentic AI, and AI Governance.The conversation explores what separates real enterprise AI implementations from proof-of-concept demos, why governance has become one of the most important topics in modern AI adoption, and how organizations can successfully balance innovation, security, compliance, and scalability when building intelligent solutions.Whether you are a Power Platform developer, Microsoft 365 architect, AI strategist, business leader, or technology enthusiast, this episode provides practical insights into the future of enterprise AI and Microsoft's rapidly evolving ecosystem. FROM SHAREPOINT TO AI GOVERNANCE Sailaja's career spans more than two decades in the Microsoft technology landscape. Starting as a developer and SharePoint specialist, she witnessed Microsoft's evolution from a highly proprietary ecosystem into an open and collaborative platform embracing cloud technologies, low-code development, and artificial intelligence.One of the key themes throughout her journey has been governance. While technologies have changed dramatically over the years, the challenge of managing growth, scalability, adoption, and long-term maintainability has remained constant.During the discussion, Sailaja explains how organizations have moved from democratizing information through SharePoint to democratizing application development through Power Platform and now democratizing intelligence through Copilot and AI Agents. This progression is creating unprecedented opportunities while simultaneously introducing entirely new governance challenges. WHY LOW-CODE IS RESHAPING ENTERPRISE DEVELOPMENT Long before the term "low-code" became mainstream, Sailaja recognized a pattern across large enterprise projects. Organizations consistently preferred solutions built with out-of-the-box capabilities, reusable components, and business-focused outcomes instead of highly customized code that required extensive maintenance.This realization led her to specialize in low-code development years before Microsoft formally embraced the movement through Power Platform.The discussion explores how low-code development continues to evolve and why business users, citizen developers, and professional developers must increasingly collaborate rather than compete.Topics covered include: The rise of citizen developmentBusiness-first application designPower Apps and Power Automate adoptionEnterprise scalability challengesThe future of natural language developmentSailaja argues that successful organizations will empower citizen developers while simultaneously providing governance frameworks and architectural oversight to ensure long-term success. THE CRITICAL ROLE OF AI GOVERNANCE One of the most important themes throughout the episode is AI Governance.As organizations rush to deploy Copilot, AI Agents, Power Platform solutions, and generative AI experiences, many are discovering that years of unmanaged data, permissions, and legacy configurations are creating significant risks.Sailaja describes governance as the process of turning on the lights in rooms that organizations forgot existed.With AI systems now capable of discovering, analyzing, and retrieving information across multiple data sources, previously hidden security gaps, permission issues, and compliance risks become immediately visible.The conversation dives deep into: AI Governance frameworksResponsible AI implementationData access managementSecurity controlsCompliance requirementsGovernance Centers of ExcellenceEnterprise AI oversightRather than acting as a barrier to innovation, governance should function as an enabler that helps organizations safely scale AI initiatives while maintaining trust and compliance. BUILD FAST, GOVERN FASTER One phrase appears repeatedly throughout the discussion:"Build Fast. Govern Faster."This philosophy forms the foundation of Sailaja's approach to enterprise AI adoption.Instead of treating governance as an afterthought, organizations should embed governance practices directly into the development lifecycle from day one.She explains how successful organizations create governance portals, approval workflows, audit trails, AI usage policies, and review processes before allowing large-scale AI development initiatives to take place.Key recommendations include: Establish AI governance policies earlyCreate approval and review processesTrain citizen developersBuild AI Centers of ExcellenceDocument business purpose and ownershipMaintain visibility across AI solutionsThis governance-first mindset helps prevent organizations from creating large numbers of uncontrolled AI agents and automation workflows that become difficult to manage over time. COPILOT STUDIO AND THE FUTURE OF AI AGENTS Copilot Studio has quickly become one of Microsoft's most strategic platforms for enterprise AI development.During the episode, Sailaja explains why Copilot Studio is far more than a chatbot builder. Instead, she describes it as the orchestration engine for modern AI solutions.Organizations can use Copilot Studio to coordinate workflows, connect enterprise systems, integrate AI services, manage agent interactions, and build sophisticated automation experiences that extend far beyond conversational interfaces.The discussion explores: Copilot Studio architectureEnterprise AI orchestrationAgent developmentWorkflow automationBusiness process integrationAI-powered deliverablesMulti-agent systemsAs organizations mature their AI strategies, Copilot Studio increasingly becomes the central platform where business logic, AI reasoning, enterprise data, and automation capabilities converge. UNDERSTANDING AGENTIC AI Agentic AI is one of the hottest topics in the industry today, but it is also one of the most misunderstood.Sailaja provides a practical explanation of what separates a simple AI Agent from a true Agentic AI system.Rather than executing a single task, Agentic AI involves multiple agents working together, sharing context, making decisions, coordinating actions, and dynamically adapting to changing situations.The conversation explores how organizations are moving from prompt-based interactions toward complete business deliverables.Instead of asking AI a series of individual questions, users can increasingly provide a single business objective and allow multiple agents to collaborate behind the scenes to produce a finished outcome.Topics discussed include: AI AgentsAgentic AIReasoning systemsMulti-agent orchestrationBusiness deliverablesContext engineeringEnterprise workflowsThis shift represents one of the biggest changes currently taking place in enterprise technology. CONTEXT ENGINEERING IS THE NEW PROMPT ENGINEERING While prompt engineering dominated early AI discussions, Sailaja believes the future belongs to context engineering.Organizations are beginning to realize that reusable prompts alone are not enough. High-quality AI outcomes depend on accurate context, trusted data, and business-specific knowledge.She introduces the concept of: Enterprise prompt librariesDepartment-specific context librariesGovernance-approved AI instructionsBusiness-aligned context managementOrganizational AI frameworksThe discussion highlights why context quality will become one of the most important differentiators between successful and unsuccessful AI deployments in the coming years. MCP, GROUNDING, AND TRUSTED AI As AI adoption accelerates, ensuring trustworthy outputs becomes increasingly important.Sailaja explains the growing importance of Model Context Protocol (MCP) and how it provides standardized access to enterprise data sources.The conversation explores how MCP contributes to: Data groundingConsistent access patternsEnterprise integrationsReduced hallucinationsBetter AI reliabilitySecure information retrievalGrounding AI systems in trusted enterprise data helps organizations improve accuracy while maintaining confidence in AI-generated outcomes. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 3m
  4. The Terminal is No Longer for Commands: Building the Agentic Developer Stack

    1d ago

    The Terminal is No Longer for Commands: Building the Agentic Developer Stack

    The software development world is undergoing its biggest transformation since the introduction of modern IDEs. For decades, the terminal served a simple purpose: execute commands and return results. Developers wrote code, ran commands, reviewed outputs, and manually orchestrated every step of the software delivery lifecycle.That model is rapidly changing.In this episode, we explore how AI agents, agentic shells, Copilot CLI, coding agents, modernization systems, and autonomous code review are transforming the terminal into the central orchestration layer of software engineering. Instead of manually executing commands, developers are increasingly defining intent while intelligent systems plan, execute, validate, and refine work autonomously.This episode provides a comprehensive deep dive into the emerging Agentic Developer Stack and explains why the future of software engineering will be driven by orchestration, context engineering, validation systems, and AI-powered execution layers. WHY THE TRADITIONAL DEVELOPER WORKFLOW IS BREAKING For years, software development followed a predictable pattern. Developers wrote code, reviewers reviewed pull requests, CI/CD pipelines executed builds, and deployment processes remained largely manual.While AI assistants improved code generation inside editors, the execution layer remained unchanged.In this section we discuss: • Why AI-assisted coding only solved part of the productivity challenge • The hidden bottlenecks inside code reviews and deployment pipelines • How technical debt accumulates in execution workflows • Why modernization projects often fail before reaching production • The difference between optimizing thinking versus optimizing execution THE SHIFT FROM TOOLS TO AGENTS There is a fundamental difference between software tools and software agents.Traditional tools respond to prompts. Agents pursue goals.Modern AI agents understand intent, create plans, execute actions, validate results, adapt to failures, and continue operating within predefined policies and constraints.Topics covered include: • Agent-based development workflows • Goal-oriented software execution • Autonomous decision making inside development environments • Policy-driven engineering systems • The evolution of GitHub Copilot and Copilot CLIWHY THE TERMINAL BECAME THE CENTER OF GRAVITY Developers spend much of their day inside terminals running Git commands, troubleshooting deployments, managing infrastructure, and validating systems.The terminal is where ideas become actions.We discuss how modern agentic shells transform the terminal from a simple command interface into an intelligent orchestration layer capable of planning and executing entire development workflows. THE FOUR LAYERS OF THE AGENTIC DEVELOPER STACK The Agentic Developer Stack is built upon four interconnected layers:Orchestration LayerThis layer translates human intent into executable workflows through agentic shells and AI-powered command-line interfaces.Transformation LayerModernization agents analyze legacy applications, extract business logic, and rebuild systems using modern architectures and frameworks.Validation LayerCode Review Agents continuously enforce architecture, security standards, testing requirements, and engineering best practices.Execution LayerCloud-hosted Coding Agents perform implementations, execute test suites, run security scans, create pull requests, and manage delivery workflows.Together these layers form a feedback-driven software delivery system where humans supervise policy while agents execute implementation. CONTEXT ENGINEERING AND PROJECT MEMORY One of the most overlooked aspects of successful AI adoption is context.Most organizations fail because they expect agents to understand their systems automatically.Successful teams build: • Architecture documentation • Domain glossaries • Pattern libraries • Architectural Decision Records (ADRs) • Living project memory systemsThe episode explains why context engineering is becoming one of the most valuable skills in modern software organizations. CODE REVIEW AGENTS AND ARCHITECTURAL ENFORCEMENT Modern review systems are evolving beyond linting and static analysis.Today's AI review agents understand: • Software architecture • Security boundaries • Design principles • Performance implications • Multi-file dependency relationshipsLearn how AI-driven validation systems are changing code quality and enabling organizations to scale development velocity without sacrificing governance. THE RUBBER DUCK PROTOCOL AND CROSS-MODEL REVIEW One of the most fascinating concepts discussed in this episode is cross-model validation.Instead of relying on a single AI model, organizations are increasingly combining different model families to review each other's work.This approach:• Reduces blind spots • Improves architectural reasoning • Increases implementation quality • Lowers overall AI costs • Produces more reliable engineering outcomesWe explore how reviewer models challenge assumptions, uncover hidden risks, and improve implementation accuracy. MODERNIZATION AGENTS AND LEGACY TRANSFORMATION Legacy modernization remains one of the most expensive challenges facing enterprise organizations.In this section we explore how AI-powered modernization agents:• Analyze complex legacy systems • Discover hidden business rules • Map dependencies automatically • Generate migration documentation • Refactor systems incrementallyLearn why successful modernization depends more on context than model size. SAFETY, GUARDRAILS, AND BOUNDED AUTONOMY Autonomous systems require boundaries.The episode explores how organizations can safely deploy AI agents using: • Permission guardrails • Policy constraints • Validation gates • Human approvals • Sandboxed execution environmentsThese controls allow agents to move quickly while protecting production systems and critical business processes. THE FUTURE OF SOFTWARE ENGINEERING The biggest takeaway from this conversation is simple:Software development is shifting from command execution to workflow orchestration.Developers are evolving from implementation specialists into architects of intent, reviewers of outcomes, and designers of policy.Organizations that understand this transition early will gain significant advantages in speed, quality, modernization efforts, and engineering scalability.The terminal is no longer where commands are executed.It is becoming the operating system for autonomous software delivery. KEY TAKEAWAYS • AI agents are transforming software delivery workflows • The terminal is evolving into an orchestration platform • Context engineering is becoming a critical engineering discipline • Agentic systems require strong validation and governance • Cross-model review improves software quality and reliability • The future developer manages intent and policy rather than individual implementation details Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 11m
  5. How to Master Dataverse Business Skills for Scale

    1d ago

    How to Master Dataverse Business Skills for Scale

    Most organizations think they have a Dataverse problem. They don't. They have an architecture problem. In this episode, we explore one of the most overlooked skills in the Microsoft Power Platform ecosystem: relational thinking. While many teams focus on building apps, creating flows, and deploying solutions quickly, very few organizations invest in the structural design principles that determine whether those solutions will still work when the business scales. The conversation examines why so many Dataverse environments eventually become difficult to maintain, expensive to govern, and increasingly fragile as more applications, users, and integrations are added. The root cause is rarely the platform itself. Instead, the challenge comes from treating Dataverse like a collection of spreadsheets rather than a relational business platform. THE SPREADSHEET MINDSET THAT BREAKS ENTERPRISE SYSTEMS Many organizations unknowingly design Dataverse environments using "Grid Thinking" instead of relational architecture. The episode explores how common practices create long-term problems: One table per applicationDuplicate customer and account dataApp-specific business logicInconsistent security modelsMultiple versions of the truthListeners learn why these patterns work at small scale but eventually create technical debt, governance challenges, and operational complexity. THE THREE STRUCTURAL FLAWS COSTING ENTERPRISES MILLIONS A major focus of the discussion is identifying the three architectural mistakes that repeatedly appear in enterprise environments. Topics include: Data duplication and fragmented master recordsBusiness logic scattered across forms, flows, and pluginsSecurity models added after deployment rather than designed from the startThe episode explains how these flaws impact performance, compliance, maintainability, and long-term scalability. FROM TRANSACTIONAL THINKING TO STRUCTURAL THINKING One of the most important mindset shifts discussed is moving beyond individual transactions and focusing on business concepts. Rather than asking where data should be stored, architects ask: What business concept does this represent?How does it relate to other concepts?Which systems depend on it?What rules must always remain true?How should security be enforced?This shift transforms Dataverse from a low-code platform into a strategic business architecture layer. THE FOUR DIMENSIONS OF RELATIONAL DESIGN The episode introduces a practical framework for evaluating enterprise data models. Key dimensions include: Normalization and redundancy eliminationRelationship modelingBusiness invariants and structural rulesIntegration-ready architectureListeners learn how each dimension contributes to long-term system health and why skipping any one of them creates hidden risks. PILLAR ONE: ENTITY MAPPING The first foundational skill explored is Entity Mapping. The discussion explains how architects translate messy business terminology into clear, reusable business concepts. Topics include: Customer versus Account modelingProspect and Contact relationshipsCanonical entity designRelationship diagramsBusiness concept validationThe episode demonstrates why successful architecture begins long before the first table is created. PILLAR TWO: LOGIC DELEGATION Business logic belongs where the data lives. This section examines why organizations frequently place calculations, validations, and business rules in the wrong layers of the platform. Topics include: Server-side logic designBusiness rules versus Power AutomatePlugin strategiesPerformance optimizationCentralized governanceListeners discover why properly delegated logic improves performance, consistency, and maintainability across every application that uses the same data. PILLAR THREE: SECURITY AS ARCHITECTURE Security should never be treated as an afterthought. The episode explores how row-level security, business units, and access models must be designed into the data structure from the beginning. Discussion areas include: Role-based access controlRow-level securityBusiness unit designLeast-privilege architecturesCompliance-by-designReal-world examples illustrate how poor security architecture can lead to audit failures, compliance violations, and costly redesign projects. PATTERNS THAT SCALE As organizations mature, they require architectural patterns that support growth. The conversation explores several proven enterprise patterns including: Master Data ModelsTransactional Outbox architecturesSaga orchestration patternsNormalized Reference Data strategiesCanonical business entitiesThese patterns help organizations build environments that remain maintainable even as complexity increases. REAL-WORLD CASE STUDIES Throughout the episode, several enterprise transformation stories demonstrate the practical impact of relational intelligence. Examples include: A manufacturing company reducing development time from six weeks to twoA healthcare organization eliminating audit findings through structural security designA services company improving performance through relational optimizationEnterprise modernization initiatives driven by master data modelsThese stories highlight the measurable business value of architectural thinking. THE ROI OF RELATIONAL INTELLIGENCE Architecture is not simply a technical exercise. The discussion explores how strong relational design can: Reduce rework by 40–60%Improve data qualityAccelerate application deliveryLower compliance costsIncrease trust in enterprise dataThe episode provides practical guidance for measuring architectural success through technical, business, and organizational metrics. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 6m
  6. Beyond the Prompt: Building the Security Agent Fabric

    2d ago

    Beyond the Prompt: Building the Security Agent Fabric

    What if the biggest bottleneck in your Security Operations Center isn't your technology stack—but the humans forced to orchestrate it?In this episode of the M365.fm Podcast, we explore one of the most important shifts happening in cybersecurity today: the rise of Agentic Defense and the emergence of the Security Agent Fabric.For years, organizations have tried to solve security challenges by adding more tools, generating more alerts, and hiring more analysts. Yet burnout continues to rise, alert fatigue remains a critical issue, and attackers continue to exploit the gaps created by human bottlenecks.The reality is simple: modern security environments generate far more signals than humans can realistically process. Cloud platforms, hybrid environments, identity systems, endpoints, and applications all produce enormous amounts of telemetry. The traditional SOC model wasn't designed for this scale.This episode examines how security teams are moving beyond simple automation and toward intelligent agent orchestration, where AI-powered security agents enrich, correlate, validate, and even act on security signals while keeping humans focused on high-value decisions. THE HUMAN MIDDLEWARE PROBLEM One of the most thought-provoking concepts discussed is the idea of "human middleware."Most analysts spend a significant portion of their day opening alerts, gathering context, enriching incidents, switching between tools, and manually correlating data. Instead of focusing on risk reduction, they become the orchestration layer connecting disconnected systems.We discuss why this architecture is fundamentally unsustainable and how agentic systems can remove repetitive work from analysts while improving consistency, speed, and security outcomes. WHY MTTR IS THE WRONG SECURITY METRIC Security leaders often focus on Mean Time To Respond (MTTR), but does closing tickets faster actually make organizations safer?This conversation explores why traditional SOC metrics can incentivize the wrong behaviors and why dwell time—the amount of time attackers remain undetected inside an environment—may be a far more valuable measure of security effectiveness.Rather than optimizing for ticket closure, modern security operations must optimize for risk reduction, validation, and threat containment. FROM SECURITY COPILOTS TO AUTONOMOUS AGENTS The episode dives deep into the evolution from AI assistants to fully autonomous security agents.We explore: • Assistive AI systems that recommend actions • Semi-autonomous agents that execute low-risk decisions • Fully autonomous workflows operating inside governance boundaries • Human oversight models for high-impact security actions • Building trust through transparency and explainable reasoning Understanding where your organization sits on this autonomy spectrum may determine how quickly you can scale security operations in the years ahead. REAL-WORLD SECURITY AGENT USE CASES The discussion includes practical examples of agentic security workflows already delivering measurable results today.Topics include: • Phishing triage agents • EDR alert investigation agents • Identity protection agents • Conditional Access optimization agents • Cloud security validation agents You'll learn how organizations are achieving dramatic reductions in analyst workload while improving detection accuracy and reducing attacker dwell time. THE POWER OF MULTI-AGENT ARCHITECTURES One of the most fascinating sections of the conversation examines Microsoft's MDASH framework and why the future of security AI isn't about building bigger models.Instead, success comes from orchestration.Specialized agents perform distinct functions including: • Discovery and scanning • Validation and adversarial review • Proof generation and exploit validation • Deduplication and signal refinement • Confidence scoring and consensus building This multi-agent approach creates systems that are not only faster but significantly more trustworthy and accurate. GOVERNANCE, TRUST, AND THE AUTONOMY CHALLENGE As agents gain more authority, they must be treated as first-class operational entities rather than simple software tools. The episode explores: • Agent identities and permissions • Least-privilege design principles • Auditability and transparency requirements • Human override mechanisms • Feedback loops and continuous learning • Governance frameworks for autonomous security systems Without governance, autonomy creates risk. With governance, autonomy becomes a force multiplier. HOW THE SOC ROLE IS EVOLVING Perhaps the most important takeaway is that security professionals aren't being replaced—they're being elevated.The role of the modern SOC analyst is shifting away from repetitive triage and toward: • Agent supervision • Detection engineering • Security architecture • AI governance • Prompt and workflow optimization • Security operations engineering The future SOC is less about processing alerts and more about designing and supervising intelligent systems. THE ROAD TO AGENTIC DEFENSE Transitioning to agentic security operations is not an overnight transformation.Organizations must progress through stages:Assistive AIHuman-in-the-loop workflowsSemi-autonomous operationsFully governed autonomySuccess depends on strong data quality, clear governance models, analyst training, and a structured implementation roadmap. FINAL THOUGHTS Agentic Defense represents one of the most significant architectural shifts in cybersecurity since the introduction of SIEM platforms and modern SOC operations.As attackers increasingly leverage AI and cloud environments continue generating exponentially more security signals, traditional human-centric workflows are becoming impossible to scale.The future belongs to organizations that successfully combine human judgment with autonomous security agents—creating a Security Agent Fabric capable of validating threats, reducing noise, accelerating investigations, and ultimately shrinking attacker dwell time.The question is no longer whether security agents will become part of the SOC.The question is how quickly organizations can learn to trust, govern, and orchestrate them effectively.Listen now to discover how Agentic Defense is reshaping cybersecurity and why the Security Agent Fabric may become the operating model for modern security teams over the next decade. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 12m
  7. The Death of Custom APIs: Microsoft Refine (Rayfin) as a Backend as a Service (BaaS)

    2d ago

    The Death of Custom APIs: Microsoft Refine (Rayfin) as a Backend as a Service (BaaS)

    For years, custom APIs have been the foundation of modern application development. Whenever organizations needed to connect systems, expose data, automate processes, or enable new digital experiences, the answer was almost always the same: build another API.At first, the approach worked.Each API solved a specific problem and helped teams move faster. But over time, those point solutions multiplied. What began as flexibility slowly transformed into complexity, creating a fragmented landscape of disconnected services, duplicated logic, inconsistent security controls, and growing technical debt.In this episode of the M365 FM Podcast, we explore why custom APIs have become one of the largest bottlenecks in enterprise technology and why a new generation of code-first, governance-driven backend platforms is emerging to replace them. THE MIDDLEWARE CRISIS NOBODY TALKS ABOUT Many organizations are now managing hundreds of APIs spread across different teams, cloud environments, databases, and security models.The result is a growing middleware crisis where development speed slows down despite increasing investments in technology.Topics discussed include: API sprawl across multiple teamsFragmented authentication modelsGovernance challengesHidden maintenance costsTechnical debt accumulationThe episode explains why middleware complexity often becomes a bigger problem than application development itself. WHY CUSTOM APIS BECAME A LIABILITY Custom APIs were originally designed to provide flexibility.Ironically, that flexibility often becomes the source of long-term complexity.The conversation explores how organizations unintentionally create fragmented architectures where every service has its own authentication model, monitoring strategy, deployment process, and governance requirements.Listeners learn why: Security becomes inconsistentCompliance becomes expensiveChange management slows downMaintenance costs increaseInnovation becomes harder over timeTHE ARCHITECTURE PROBLEM BEHIND THE PROBLEM The issue is not simply the number of APIs.The deeper challenge lies in how traditional architectures separate data, business logic, governance, and security into different layers that require constant translation and synchronization.The discussion examines: Layered architecture limitationsData governance fragmentationCompliance complexityOperational silosLack of unified control planesThis architectural separation creates complexity that compounds as organizations scale. THE AGENTIC AI INFLECTION POINT Artificial Intelligence is exposing weaknesses that already existed in enterprise backends.Traditional APIs were designed for human-driven interactions.AI agents operate differently.They make decisions, orchestrate workflows, call multiple services, and maintain context across complex processes.Topics include: Autonomous agentsAgent orchestrationTool calling patternsState managementAgent-safe architecturesAI-ready backend designThe episode explains why many current API strategies simply cannot support large-scale agentic systems. INTRODUCING RAYFIN At the center of the conversation is Rayfin, an open-source backend definition framework designed to replace traditional middleware approaches.Instead of manually building infrastructure components, developers define their backend entirely in code.Rayfin allows organizations to define: Data modelsAPIsAuthenticationAuthorizationStorageGovernance policiesAll backend components become version-controlled, repeatable, and deployable through a single source of truth. MICROSOFT FABRIC AS THE CONTROL PLANE One of the most significant aspects of the discussion is Rayfin's integration with Microsoft Fabric.Rather than deploying isolated infrastructure across multiple cloud services, Rayfin deploys directly into the Fabric ecosystem.The conversation explores: OneLake integrationUnified governanceData lineageSensitivity labelsAccess controlOperational and analytical convergenceThe result is a backend architecture where governance becomes a native platform capability instead of an afterthought. CODE-FIRST GOVERNANCE Most organizations treat governance as something that happens after deployment.This episode challenges that model entirely.With Rayfin, governance becomes part of the backend definition itself.Topics covered include: Governance as codeVersion-controlled policiesData classificationAccess control definitionsSecurity by designCompliance automationListeners discover how governance shifts from documentation into executable architecture. THE STRANGLER FIG MODERNIZATION STRATEGY One of the most practical sections focuses on modernization.Organizations rarely have the luxury of rebuilding everything from scratch.Instead, the episode explores the Strangler Fig pattern, where new governed backends gradually replace legacy APIs without disrupting business operations.Key concepts include: Anti-corruption layersAPI gatewaysIncremental migrationLegacy coexistenceGradual retirement strategiesThis approach minimizes risk while enabling long-term transformation. HORIZONDB AND AI-NATIVE DATA ARCHITECTURES The conversation also explores HorizonDB and its role in supporting modern AI workloads.As enterprises build Retrieval-Augmented Generation (RAG) systems and agentic applications, traditional databases increasingly struggle to support hybrid data patterns.Topics include: Vector searchEmbeddingsAI-native databasesSemantic retrievalRAG architecturesHybrid search capabilitiesTogether, Rayfin and HorizonDB create a foundation for AI-powered enterprise applications. OBSERVABILITY, SECURITY AND AGENT GOVERNANCE AI systems require much deeper visibility than traditional applications.The episode explains why logs alone are no longer sufficient and why structured traces become essential for understanding agent decisions and system behavior.Discussion areas include: Agent observabilityDecision tracingAudit readinessBehavioral baselinesSecurity monitoringAutonomous system governanceThis visibility becomes critical as organizations increasingly rely on autonomous workflows. THE ORGANIZATIONAL SHIFT Technology is only part of the challenge.Successful modernization requires organizational change as well.The discussion explores how platform teams, domain teams, architects, security professionals, and governance boards must work together within a new operating model.Topics include: Platform engineeringGovernance boardsOrganizational accountabilityStandardization strategiesTeam transformationBackend ownership modelsThe shift is as much cultural as it is technical. THE FUTURE OF AGENTIC APPLICATIONS Looking ahead, the episode paints a picture of a future where AI agents become primary users of enterprise systems.These agents will orchestrate workflows, retrieve information, make decisions, and interact with governed APIs at machine speed.To support that future, organizations require: Predictable APIsStrong governanceSecurity boundariesUnified observabilityAI-ready infrastructureTraditional custom API architectures were never designed for this reality. FINAL THOUGHTS Custom APIs are not disappearing because they are technically flawed.They are disappearing because they no longer align with the operational, governance, security, and scalability requirements of modern enterprises.As organizations move toward AI-powered workflows, autonomous agents, and governed data platforms, the backend itself must evolve.The future belongs to architectures that are code-first, policy-driven, AI-ready, and governed by design from day one.For technology leaders, architects, developers, and Microsoft Fabric professionals, this episode provides a roadmap for understanding why the age of fragmented middleware is ending—and what comes next. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 9m
  8. What Enterprise Software Can Learn from Video Games with Sandra Kiel [MVP]

    2d ago

    What Enterprise Software Can Learn from Video Games with Sandra Kiel [MVP]

    Why do organizations spend millions on Microsoft 365, Power Platform, Copilot, AI initiatives, and digital transformation projects only to struggle with user adoption? Why do employees often avoid business applications whenever possible while voluntarily spending hours inside video games?In this episode of the M365 Show, Mirko Peters sits down with Microsoft MVP Sandra Kiel to explore one of the most overlooked topics in enterprise technology: what business software can learn from game design.Sandra brings a unique perspective to the conversation. After spending more than two decades working with enterprise software and large-scale SAP implementations, she transitioned into the Microsoft ecosystem and eventually discovered how gaming principles could transform learning, adoption, collaboration, and digital experiences. What started as a family Minecraft adventure during the pandemic evolved into a business focused on gamification, immersive learning environments, and user-centered digital experiences.The discussion explores why many enterprise applications fail to engage users, how organizations can improve AI adoption, and why understanding human behavior is often more important than implementing the latest technology. FROM ENTERPRISE SOFTWARE TO MINECRAFT: SANDRA KIEL'S UNEXPECTED JOURNEY INTO GAMIFICATION Sandra shares her fascinating journey from enterprise SAP consulting into the Microsoft ecosystem and eventually into game design. After experiencing burnout from organizational politics rather than technology itself, she discovered a completely different perspective on user engagement and learning.During the pandemic, a simple request from her children to play Minecraft together sparked a new understanding of how people learn, collaborate, solve problems, and develop skills. What began as a family gaming experience quickly evolved into experiments with virtual workshops, collaborative learning environments, and interactive training scenarios.That journey ultimately led to the creation of innovative learning experiences that combine Microsoft technologies with proven gaming principles. WHY MOST BUSINESS APPLICATIONS FAIL TO ENGAGE USERS One of the most powerful insights from this episode is that many organizations unknowingly pay employees to fight their software every day.Sandra explains that traditional enterprise applications often suffer from common design problems:Endless scrolling interfaces with little guidanceLimited feedback when users complete actionsComplex navigation that overwhelms usersNo visible sense of progress or achievementIn contrast, video games have spent decades perfecting onboarding, engagement, motivation, progression systems, and user experience design.Games consistently show users where they are, what they need to do next, and why their actions matter. Enterprise applications frequently fail to provide the same clarity.The result is lower adoption, reduced productivity, poor data quality, and frustrated employees. HOW VIDEO GAME DESIGN PRINCIPLES CAN IMPROVE MICROSOFT 365, POWER PLATFORM, AND COPILOT ADOPTION The conversation dives deep into the psychology behind successful game experiences and how these concepts can be applied to modern workplaces.According to Sandra, successful adoption programs should focus on proven engagement mechanisms including:Clear goals and visible progress indicatorsPersonalized learning journeysMeaningful challenges and rewardsSocial collaboration and community participationRather than forcing users through generic training programs, organizations should create experiences that allow employees to explore, experiment, and learn through discovery.This approach is especially important for AI adoption, where behavioral change matters far more than traditional training. THE REAL REASON COPILOT ADOPTION IS DIFFICULT Many organizations assume Copilot adoption is primarily a training challenge. Sandra disagrees.She argues that AI adoption is fundamentally a behavior-change problem.Providing employees with prompt libraries and one-time training sessions rarely creates lasting habits. Instead, organizations need to create experiences that encourage experimentation, curiosity, and continuous learning.Drawing from gaming concepts such as Core Loops and Habit Loops, Sandra explains how successful adoption programs encourage users to repeatedly engage with AI tools until new behaviors become natural.The lesson is simple: people do not change behavior because they attended training. They change behavior because they repeatedly experience value. WHAT POWER APPS MAKERS CAN LEARN FROM VIDEO GAMES For Power Apps developers, citizen developers, solution architects, and UX designers, Sandra shares several practical recommendations.The most important principle is orientation.Users should always understand:Where they areWhat they are trying to accomplishHow much progress they have madeWhat happens nextInstead of building endless forms and complex screens, developers should think like game designers by creating structured journeys with clear milestones and visible outcomes.Simple improvements such as progress indicators, chapter-based navigation, contextual feedback, and clear objectives can dramatically improve user adoption. COMMUNITY BUILDING, MICROSOFT MVPS, AND THE POWER OF RECOGNITION The discussion also explores why communities are such an essential part of successful technology ecosystems.Sandra highlights the Microsoft MVP community as an excellent example of gamification principles in action. Recognition, contribution, progression, visibility, and shared knowledge all contribute to creating an engaged and thriving ecosystem.Whether inside gaming communities, open-source projects, or Microsoft technology communities, people are motivated when their contributions matter and when they can see the impact of their work.The same principles apply inside organizations trying to drive adoption and change. WOMEN IN TECH, VISIBILITY, AND BUILDING MORE INCLUSIVE COMMUNITIES Sandra also shares her perspective on women in technology, public speaking, and community leadership.The conversation explores the importance of visibility, mentorship, representation, and creating safe environments where new voices can share knowledge and contribute to the community.Rather than focusing solely on speaking opportunities, Sandra emphasizes the importance of encouraging people to become knowledge sharers. By lowering barriers and actively supporting participation, organizations and event organizers can help create stronger and more diverse communities. KEY TAKEAWAYS FROM THIS EPISODE The biggest lesson from this conversation is that technology adoption is rarely a technology problem.It is a human problem.Organizations that successfully implement Microsoft 365, Power Platform, Copilot, AI solutions, and digital workplace initiatives will be the ones that understand motivation, engagement, feedback, learning, and user experience.Video game developers have spent decades mastering these concepts.The future of enterprise software may depend on how quickly organizations start learning from them. CONNECT WITH SANDRA KIEL If you enjoyed this episode, be sure to connect with Sandra Kiel through her Microsoft community channels, conference sessions, workshops, and social platforms. Her work at the intersection of gaming, Microsoft technologies, AI adoption, user experience, and digital transformation offers a unique perspective for anyone building the future workplace. LISTEN, SUBSCRIBE, AND SHARE If you enjoyed this episode of the M365 Show, subscribe on Apple Podcasts, Spotify, YouTube, and your favorite podcast platform. Share the episode with colleagues, Microsoft professionals, Power Platform makers, UX designers, digital workplace leaders, and anyone responsible for driving technology adoption inside their organization.Because great technology is not just about features.It is about creating experiences people actually want to use. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

    1h 3m
See All (674)

About

Welcome to the M365.FM — your essential podcast for everything Microsoft 365, Azure, and beyond. Join us as we explore the latest developments across Power BI, Power Platform, Microsoft Teams, Viva, Fabric, Purview, Security, and the entire Microsoft ecosystem. Each episode delivers expert insights, real-world use cases, best practices, and interviews with industry leaders to help you stay ahead in the fast-moving world of cloud, collaboration, and data innovation. Whether you're an IT professional, business leader, developer, or data enthusiast, the M365.FM brings the knowledge, trends, and strategies you need to thrive in the modern digital workplace. Tune in, level up, and make the most of everything Microsoft has to offer. M365.FM is part of the M365-Show Network. Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

Information

You Might Also Like