Turn your real-world experience into part of the show.

Microsoft Azure Podcast – Cloud Architecture, Security & Operations Episodes

Microsoft Azure is more than a collection of cloud services — it is an operating environment where identity, networking, security, and automation converge. The Azure Talk category explores how Azure behaves in real production scenarios, where architectural choices determine reliability, security posture, and long-term cost.

These episodes cover Azure fundamentals such as resource organization, subscriptions, management groups, networking design, identity integration, automation, monitoring, and cost governance. Special attention is given to how Azure services interact with Entra ID, Microsoft 365, and on-premises environments, as well as how security boundaries are enforced — or accidentally bypassed.

Azure Talk is not focused on quick-start tutorials or certification-style walkthroughs. Instead, we analyze architectural intent, failure modes, and operational consequences of design decisions made early in cloud adoption. Topics often include misconfigured identity flows, insecure automation, insufficient network segmentation, and the hidden risks of over-delegation to cloud-native services.

This category is designed for cloud architects, engineers, and IT leaders who need to understand Azure as a long-term platform rather than a collection of isolated services. If you are responsible for designing, operating, or securing Azure workloads in an enterprise environment, Azure Talk provides practical, experience-driven insight into how Microsoft Azure works in the real world.
May 16, 2026

Automating Azure Securely: Microsoft Graph, Identity & Cloud Automation with Ahmed Uzejnovic [MVP]

“Automating Azure Securely” explores how organizations can modernize Azure automation without creating hidden security risks. The core message is that automation is no longer optional in large Microsoft cloud environments, but poorly designed automation can quickly become a major attack surface. The episode explains that many companies still rely on outdated service accounts, excessive permissions, hardcoded credentials, and unmanaged scripts that silently weaken their Azure security posture.The discussion highlights how secure automation should be built around Zero Trust principles, least privilege access, identity governance, and modern authentication methods such as managed identities and Microsoft Graph integrations. Instead of giving automation tools broad tenant-wide permissions, organizations should isolate workloads, scope permissions tightly, and continuously monitor automated actions.A major focus is the transition away from legacy AzureAD and MSOnline modules toward…
May 14, 2026

PowerShell Is Fun — Automating things with PowerShell in multiple areas with Harm Veenstra [MVP]

PowerShell is far more than just a scripting language for administrators. It is a powerful automation platform that can simplify repetitive tasks, connect services, and save countless hours across many different environments. From Microsoft 365 and Azure automation to local system management, reporting, APIs, and DevOps workflows, PowerShell provides flexible tools for almost every scenario.This session explores practical automation examples from multiple areas, showing how PowerShell can be used to streamline daily operations, improve consistency, and reduce manual work. We will look at real-world use cases including Microsoft 365 management, file and data processing, REST API integrations, scheduled automation, and cross-platform scripting.Whether you are just getting started with PowerShell or already writing scripts regularly, this session demonstrates how small automations can create significant improvements in productivity and reliability. Expect live demos, useful tips,…
May 12, 2026

The Death of Manual Tagging: Real-Time AI for Microsoft Purview

In this episode of M365.fm, the discussion centers on why traditional manual sensitivity labeling in Microsoft Purview is rapidly becoming obsolete in modern enterprise environments.The core argument is that organizations now generate far too much data, too quickly, for employees to reliably classify information by hand. Manual tagging depends on users consistently stopping their work to apply the correct sensitivity label — something that rarely happens in practice. According to the episode, many organizations see labeling adoption rates around 30%, leaving large amounts of sensitive intellectual property effectively invisible to governance, compliance, and Data Loss Prevention systems.The episode explains that older governance models were designed for a slower workplace with fewer collaboration tools and lower data velocity. Today’s environments — driven by Microsoft 365, Teams, SharePoint, OneDrive, Slack, and Copilot — overwhelm users with constant communication and AI-g…
Guest: Mirko Peters
May 12, 2026

Connectors are Breaking Your Enterprise: The Protocol-Level Shift

Your enterprise automation strategy may be built on the wrong foundation. In this episode of the M365FM Podcast, we expose the hidden architectural failure behind modern enterprise integration: the managed connector. For years, organizations have embraced low-code connectors as the “easy button” for automation, believing these pre-built wrappers accelerate digital transformation and reduce complexity. But underneath the convenience lies a fragile transport model filled with hidden latency, throt...
May 12, 2026

Beyond the Firewall: Why Your Azure SQL Security Is Obsolete

In this episode of the M365.FM Podcast, the discussion focuses on a critical shift happening in cloud security: the collapse of the traditional network perimeter. The episode explains why Azure SQL firewall rules, static IP allowlists, VPN-based trust models, and long-standing “inside the network equals safe” assumptions are no longer effective in modern enterprise environments. Instead of attacking infrastructure directly, modern attackers increasingly bypass perimeter controls through compromised identities, stolen credentials, over-privileged service principals, token abuse, and lateral movement inside trusted environments.The episode argues that many organizations still operate Azure SQL deployments using outdated security patterns designed for traditional datacenters rather than cloud-native systems. While companies continue relying on firewall rules, trusted VNets, and static connection methods, modern workloads constantly move across APIs, pipelines, automation platforms, A…
Guest: Mirko Peters
May 11, 2026

Stop Over-Provisioning: Managing Shared Data Reservoirs For Multi-Tenant Microsoft 365 Architecture

In this episode of the M365.fm podcast, Mirko Peters explores why many Microsoft 365 environments are wasting enormous amounts of money through over-provisioned storage, oversized safety buffers, and rigid quota management strategies. Traditional “just in case” capacity planning often leaves organizations paying for storage, performance, and licensing resources that remain unused while operational complexity continues to grow.The episode explains how static quota models across SharePoint Online, OneDrive, Teams, Power Platform, Azure storage, and multi-tenant workloads create fragmented infrastructure, dark data silos, and long-term cost inefficiencies. Mirko challenges the outdated “buffer mentality,” where organizations continuously add extra capacity to avoid outages, resulting in idle resources and inflated cloud spending.A major focus of the discussion is the shift toward elastic shared data reservoirs. Instead of isolated storage silos and fixed allocations, organization…
Guest: Mirko Peters
May 10, 2026

Azure Policy Isn't Enough: The Secret to Real-Time Cloud Savings

In this episode of the M365 FM Podcast, Mirko Peters explains why traditional FinOps and Azure cost management approaches fail in modern cloud environments. Most organizations still rely on dashboards, alerts, and monthly reviews, but by the time overspending appears in reports, the expensive resources already exist and the cleanup process has already become costly and political.The episode argues that Azure Policy should not be treated as a passive compliance or audit tool. Instead, it should act as a real-time enforcement engine directly in the Azure Resource Manager deployment path. This allows organizations to block waste before resources are created, rather than documenting problems afterward.Mirko breaks down how Azure Policy actually works, including deny, modify, append, and deployIfNotExists behaviors, and explains why many companies misuse policy by leaving it permanently in audit mode. He highlights common governance failures such as unmanaged exemptions, weak landi…
Guest: Mirko Peters
May 10, 2026

Stop Paying for Nothing: Build an Automated Azure Cleanup Engine

Stop paying for unused Azure resources. In this episode of M365.fm, we explore how to build an automated Azure Cleanup Engine that helps organizations identify and remove wasted cloud spend before it becomes a budgeting problem.We discuss the hidden costs of forgotten virtual machines, unattached disks, stale snapshots, abandoned test environments, unused networking components, and other orphaned Azure resources that silently increase monthly bills. The episode walks through practical strategies for continuously detecting and cleaning up these resources using Azure-native automation and governance tools.You’ll learn how to use Azure Automation, Azure Functions, Azure Resource Graph, Logic Apps, tagging strategies, and Azure Policy to create a scalable and safe cleanup process. We also cover approval workflows, lifecycle management, reporting, and governance best practices to ensure automation does not impact production workloads.The episode includes real-world examples, …
Guest: Mirko Peters
May 7, 2026

Building and deploying production grade AI agents with Microsoft Foundry with Edgar McOchieng [MVP]

In this episode of the M365.fm podcast, we dive deep into building and deploying production-grade AI agents with Microsoft Foundry together with Edgar McOchieng (MVP). The conversation explores how organizations can move beyond AI demos and prototypes into scalable, secure, and enterprise-ready agentic solutions.Edgar shares practical insights into Microsoft Foundry, Azure AI services, orchestration patterns, governance, observability, and the challenges teams face when deploying AI agents in real-world environments. We discuss how developers can combine tools like Azure OpenAI, Semantic Kernel, MCP integrations, and multi-agent architectures to create intelligent systems that are reliable, maintainable, and aligned with enterprise requirements.The episode also covers key topics such as memory management, tool integration, security boundaries, human-in-the-loop workflows, responsible AI practices, and monitoring strategies for production workloads. Edgar explains why architect…
May 6, 2026

Digital Identity is Broken: How Entra External ID Fixes the Trust Gap

Identity used to revolve around corporate networks, managed devices, and centralized directories. But that model no longer works in a world where customers, partners, contractors, AI agents, and automated workflows constantly move across systems and organizations. In this episode, Mirko Peters explains why modern identity is no longer just a security problem — it has become a business growth, governance, and digital trust challenge.The conversation explores the “death of the perimeter” and how traditional identity systems create friction through duplicate accounts, passwords, onboarding delays, and isolated identity silos. That friction impacts customer conversion, support costs, partner onboarding speed, and overall business agility.Mirko breaks down the shift from account-centric identity to claim-centric identity, where organizations focus less on storing accounts and more on verifying trusted claims when needed. The episode explains how passkeys, verifiable credentials, an…
Guest: Mirko Peters
May 5, 2026

Using PowerShell to automate all things Azure and Microsoft 365 with Matthew Dowst [MVP]

In this episode of the m365.fm podcast, the discussion focuses on using PowerShell to automate tasks across Azure and Microsoft 365 with guest Matthew Dowst MVP. Matthew explains how automation became essential as cloud environments grew more complex and repetitive administrative work increased.The conversation covers how PowerShell can be used to automate common Microsoft 365 and Azure management tasks such as user provisioning, license assignment, reporting, governance, Exchange Online administration, and Entra ID management. Matthew emphasizes that automation should be approached like software development, with proper testing, version control, documentation, and reusable code rather than quick one-off scripts.A major topic is the transition from older AzureAD and MSOnline PowerShell modules to Microsoft Graph PowerShell. Matthew explains why organizations should modernize their scripts and adopt API-based automation to stay aligned with Microsoft’s cloud direction.The e…
May 5, 2026

Is Your Copilot Safe: Stop Prompt Injections with Azure Logic Apps

In this episode of the M365.fm podcast, the discussion focuses on one of the biggest hidden risks in Microsoft Copilot environments: prompt injection attacks. The episode explains that the real security problem is not weak prompts or missing filters, but the architecture behind how AI models process information. Modern AI systems like Microsoft Copilot retrieve data from multiple Microsoft 365 sources such as emails, SharePoint files, chats, and forms. If malicious instructions are hidden inside that content, Copilot can unknowingly treat them as trusted instructions.The episode highlights how attacks like EchoLeak and ShareLeak demonstrated that attackers do not need direct access to the AI system itself. Instead, they can poison the surrounding context by embedding malicious payloads into documents or messages that Copilot later retrieves. Once the model processes those inputs, sensitive information may be exposed or workflows may be manipulated.Traditional security approach…
Guest: Mirko Peters
May 3, 2026

Engineering Self-Healing Automation: The Telemetry-Driven Logic Layer

The episode talks about how automation is evolving from simple scripts into more advanced, intelligent systems that can monitor themselves and fix problems automatically. Instead of just executing predefined tasks, modern automation uses telemetry data (like logs, metrics, and traces) to understand what is happening inside systems in real time.A key idea is “self-healing automation.” This means systems can detect issues, figure out the root cause, and fix them without human intervention. Traditionally, engineers had to respond to alerts and manually troubleshoot problems, which is slow and doesn’t scale well. The new approach aims to reduce that by letting systems react instantly.The discussion highlights how observability is the foundation for this. By collecting detailed telemetry data, systems gain enough insight to move beyond simple monitoring and into automated decision-making. This enables faster detection of anomalies and more accurate fixes.Another important theme…
Guest: Mirko Peters
May 1, 2026

Vector Search Is Not a Strategy: The New Standard for Copilot Accuracy

This episode explains that vector search on its own is not a complete or reliable strategy for building accurate AI systems like Copilot. While many organizations rely on embeddings and vector databases to retrieve information, this approach often leads to inconsistent or misleading results.The main problem is that vector search works by finding content that is mathematically similar, not necessarily correct or relevant in a business context. This creates situations where the system returns results that look right but are actually wrong, leading to hallucinations and reduced trust in AI outputs.The episode highlights that the real issue is not the language model itself, but how information is retrieved. Even the most advanced AI will produce poor answers if it is given the wrong or low-quality data.To improve accuracy, the episode recommends moving beyond pure vector search and adopting a more structured retrieval strategy. This includes combining different techniques such…
Guest: Mirko Peters
April 29, 2026

The Silent Tax on Your Enterprise: The End of Legacy Middleware

The episode argues that legacy middleware creates a “silent tax” on enterprises by adding unnecessary complexity, cost, and dependency between systems. Instead of enabling integration, middleware often becomes a bottleneck that slows down decision-making and increases maintenance overhead.The core message is that modern platforms like Microsoft 365 shift the focus from connecting systems to controlling behavior through governance and integrated architectures. Organizations should move away from fragmented, best-of-breed stacks and toward unified ecosystems with strong control planes.Ultimately, the episode highlights a transition from integration-heavy architectures to simplified, policy-driven systems where automation and governance replace layers of middleware—reducing cost, improving speed, and enabling better business outcomes.
Guest: Mirko Peters
April 28, 2026

Building Resilient Azure Architectures: That Survive Regional Cloud Service Provider Outage Scenarios

This episode of the M365.FM challenges a common myth in cloud architecture: simply deploying workloads across multiple Azure regions does not guarantee resilience. Instead, many organizations unknowingly create “distributed single points of failure,” where systems still collapse during real outages.The discussion walks through a simulated regional cloud provider outage and reveals how modern architectures fail under pressure—especially when failover depends on manual decisions, meetings, or a functioning control plane. True resilience isn’t about passive redundancy; it’s about systems that continue to operate predictably during failure.A key insight is the hidden risk of global entry services like Azure Front Door—when these fail, even healthy backend systems become unreachable, exposing critical edge dependencies.The episode ultimately argues for a shift toward state-synchronized resilience, where systems are actively designed to maintain behavior, not just availability, …
Guest: Mirko Peters
April 26, 2026

Stop Being a Gatekeeper: The Death of the Admin

In this episode of the M365 FM Podcast, the traditional role of the Microsoft 365 admin is challenged. Instead of acting as gatekeepers who manually approve, control, and fix everything, admins must shift toward designing automated systems that govern access, lifecycle, and security at scale. The episode argues that manual control does not scale in modern cloud environments and often creates bottlenecks, risk, and hidden dependencies.The “death of the admin” isn’t about losing relevance—it’s about evolving into an architect of policies, automation, and guardrails that enable the business to move faster without constant intervention.
Guest: Mirko Peters
April 23, 2026

Beyond Governance: How To Build A Self-Healing Microsoft 365 Architecture For Scale

This episode argues that traditional Microsoft 365 governance—based on policies, documentation, and manual processes—does not scale in modern cloud environments. Instead, organizations need to shift toward a self-healing architecture where governance is built into the system itself through automation, lifecycle management, and continuous monitoring.The key idea is that governance should not rely on people enforcing rules after the fact, but on programmable controls that automatically enforce intent, detect drift, and remediate issues in real time. This includes designing identity, access, and resource lifecycles so that everything has ownership, expiration, and accountability by default.The episode emphasizes that scalable governance comes from architecture (control planes, automation, telemetry), not from more processes or approvals. By embedding governance into the platform, organizations can reduce risk, eliminate manual bottlenecks, and create an environment that continuously …
Guest: Mirko Peters
April 13, 2026

I Audited 500 Microsoft 365 Tenants – Here’s the Real Maturity Formula

This episode explores the Microsoft 365 maturity model through real-world insights gathered from auditing over 500 tenants. Instead of relying on theoretical frameworks, it uncovers how most organizations struggle with Microsoft 365 governance maturity, hidden misconfigurations, and the growing gap between perceived and actual security. You’ll learn why traditional approaches to M365 tenant audits often fail, and what patterns consistently separate mature environments from those at risk.By breaking down a practical, experience-driven maturity formula, this episode shows how to improve Microsoft 365 governance, strengthen compliance, and scale operations effectively. It highlights the role of automation, operational discipline, and continuous assessment in achieving true Microsoft 365 maturity, making it essential listening for IT leaders, administrators, and consultants aiming to elevate their tenant security and governance strategy.
Guest: Mirko Peters
April 11, 2026

Microsoft 365 Governance Automation: Why M365 Governance Automation Is No Longer Optional

This episode explains that most Microsoft 365 governance approaches fail because they rely on static checklists, manual processes, and reporting instead of real enforcement. It argues that governance is not something you “set up” once, but an ongoing operating model that must be built into how the platform actually works. The key message is that if governance is not automated and embedded into identity, provisioning, and lifecycle processes, it will eventually be ignored by users and drift out of control. The episode emphasizes shifting from reactive governance (fixing issues after they happen) to engineered, automated governance that prevents problems by design, with clear ownership, accountability, and continuous enforcement.
Guest: Mirko Peters
April 10, 2026

Microsoft 365 Audit Readiness: Why Governance Debt Leads to Audit Panic

Most Microsoft 365 environments don’t fail audits because of missing controls—they fail because of governance debt. Over time, quick fixes, unclear ownership, and poorly aligned operating models create hidden structural issues. These problems stay invisible until an audit exposes them, triggering last-minute panic.This episode explains why governance is not the same as configuration, how compliance gaps emerge despite having policies in place, and why many organizations rely on a false sense of control. It highlights the difference between being technically configured and truly audit-ready, and shows how governance debt builds up silently.The key takeaway: audit readiness isn’t achieved through more tools or controls, but through a clear governance model, defined accountability, and sustainable operational practices.
Guest: Mirko Peters
April 5, 2026

Stop Managing Features: Rethinking Cloud Governance as Architecture

This episode of the M365.fm podcast challenges a common misconception in cloud strategy: that managing features, tools, and configurations leads to control. Instead, it reveals that true cloud governance is an architectural discipline, not an operational afterthought. The discussion explains how cloud environments promise efficiency and scalability, but without engineered governance they quickly turn into uncontrolled cost drivers filled with idle resources, unused licenses, and permission sprawl.The episode highlights that leading organizations shift their mindset from reactive optimization to proactive governance design. Rather than fixing costs later, they build governance into the foundation through enforced policies, structured environments, and continuous oversight. This includes practices like mandatory tagging, automated policy enforcement, FinOps routines, and platform consolidation to eliminate waste before it occurs.A practical governance roadmap is outlined, showin…
Guest: Mirko Peters
April 4, 2026

Your Microsoft 365 Isn’t Secure: The Hidden Risks You’re Missing

In this episode, we explore why Microsoft 365 environments are often less secure than they appear. While most organizations focus on security tools and settings, the real risk lies in what we call the “invisible tenant” — a hidden layer of misconfigurations, excessive permissions, and missing governance.We break down how collaboration tools like Teams and SharePoint create uncontrolled sprawl, why ownership is often unclear, and how external sharing and access accumulate unnoticed over time. The result is a structure that looks secure on the surface but contains significant hidden risks.The key takeaway: most Microsoft 365 security issues are not caused by attackers or platform weaknesses, but by a lack of visibility, governance, and control within the tenant itself.
Guest: Mirko Peters
March 24, 2026

The Infrastructure Illusion: How to Map What Your People Actually Do in Microsoft 365

Most organizations think they understand their infrastructure. They see tools, licenses, configurations… dashboards that suggest control. But none of that tells you what’s actually happening. In reality, your Microsoft 365 environment isn’t just infrastructure—it’s a living system of decisions, behaviors, and actions happening every second across your organization.In this episode, we break down the infrastructure illusion—the gap between what you think your systems are doing and what your people are actually doing inside them. Because turning on controls doesn’t mean those controls are shaping behavior. And if you’re not mapping real activity, you’re not governing anything—you’re just assuming you are.This is about shifting from static infrastructure thinking to understanding your environment as a dynamic decision engine—and why visibility into real human and system behavior is the only thing that actually matters.
Guest: Mirko Peters