Turn your real-world experience into part of the show.

Episodes

Jan. 11, 2026

Microsoft Fabric Didn’t Fix Data Engineering – It Exposed It

This episode explores why Microsoft Fabric and Copilot feel empowering and chaotic at the same time. While Fabric simplifies the experience by unifying storage, compute, and analytics into a single platform, it does not remove the hard parts of data engineering. It removes friction, not responsibility. By making it easier to build pipelines, models, and reports quickly, Fabric accelerates every decision, including the wrong or ambiguous ones. Problems that once took months to surface now appear in days or hours, often as rising costs, performance degradation, or dashboards that quietly disagree rather than obvious system failures.The episode explains how older data stacks unintentionally enforced governance through friction. Separate tools, environments, and deployment steps forced teams to define ownership, contracts, and boundaries. Fabric collapses those boundaries into shared workspaces and shared capacity, which blurs accountability and expands the blast radius of mistakes. C…
Guest: Mirko Peters
Microsoft Fabric Didn’t Fix Data Engineering – It Exposed It
M365 FM Podcast
Microsoft Fabric Didn’t Fix Data Engineering – It Exposed It
Jan. 10, 2026

Stop Fixing Bad Data in Power BI – Fix It with T-SQL

Everyone says SQL is obsolete. This episode argues the opposite: SQL has never mattered more—because modern data platforms removed the guardrails that used to hide its importance. In systems like lakehouses and Fabric, T-SQL didn’t disappear; it moved upstream and quietly became the place where cost, security, performance, and truth are either enforced or lost.The episode reframes SQL not as a reporting language, but as a contract language. Without enforced schema, constraints, and predictable execution plans, data systems drift into entropy. Bad data loads successfully, dashboards “fix” it differently, performance becomes unpredictable, and cloud costs spike for reasons no one can explain. These aren’t tooling problems—they’re contract failures.A central theme is execution plans. SQL reads like English but runs like a compiler, and most performance surprises come from misunderstanding how work actually happens. Execution plans aren’t just tuning tools; they’re governance arti…
Guest: Mirko Peters
Stop Fixing Bad Data in Power BI – Fix It with T-SQL
M365 FM Podcast
Stop Fixing Bad Data in Power BI – Fix It with T-SQL
Jan. 9, 2026

Power Apps Are Breaking Your Data – Do This Instead

The conversation explains how Microsoft 365 environments often degrade through quiet, gradual failures rather than visible outages. Poor SharePoint design, unmanaged permissions, fragile Power Apps, and badly configured Power Automate flows create hidden instability over time. Organizations rely too much on individual heroics instead of consistent governance and discipline. The discussion emphasizes proper schema design, controlled permissions, deterministic app behavior, defensive automation, and strong monitoring. AI can worsen problems if governance is weak. The key message is that enforcing structure early prevents costly system breakdowns later.
Guest: Mirko Peters
Power Apps Are Breaking Your Data – Do This Instead
M365 FM Podcast
Power Apps Are Breaking Your Data – Do This Instead
Jan. 9, 2026

Why Your Copilot Agents Are Breaking Governance (And How to Fix It)

More agents don’t create scale—they create entropy. This episode dismantles the comforting myth of “AI assistants” and exposes what enterprises are actually deploying: a distributed decision engine that interprets intent, routes authority, invokes tools, and emits real-world actions. When teams let every group ship its own copilot, governance collapses, behavior drifts, costs spike, audits fail, and ROI becomes unprovable—not because AI is mysterious, but because authority was never enforced. The core argument is blunt: helpfulness is irrelevant; correctness, reproducibility, and control are the only success criteria. Prompts are not policy, explainability is not control, and probabilistic reasoning cannot be trusted with execution. The fix is architectural, not philosophical—a deterministic control plane with a “master agent” that owns state, gating, identity, routing, logging, and kill switches, plus tightly bounded connected agents treated as governed services, not chatty helpers. …
Guest: Mirko Peters
Why Your Copilot Agents Are Breaking Governance (And How to Fix It)
M365 FM Podcast
Why Your Copilot Agents Are Breaking Governance (And How to Fix It)
Jan. 9, 2026

How to Stop AI From Deleting Important Emails

In The Night the Emails Died: Anatomy of an AI Cleanup, we explore a quiet but consequential failure that unfolds when artificial intelligence is given autonomy without precise guardrails. What starts as a routine effort to clean up a shared inbox turns into a silent erasure of digital history—no alarms, no errors, just missing messages. The episode dissects how AI systems optimize exactly for what they are told to do, not what humans intend, and how vague objectives like “cleanup” can lead to irreversible outcomes. Through this story, we examine the risks of autonomous action, the dangers of invisible failure modes, and the critical importance of auditability and human oversight. It’s a cautionary tale about efficiency, intent, and responsibility in AI-driven systems.
Guest: Mirko Peters
How to Stop AI From Deleting Important Emails
M365 FM Podcast
How to Stop AI From Deleting Important Emails
Jan. 8, 2026

How to Fix AI Governance in Microsoft 365

AI governance doesn’t fail because of missing policies — it fails because no one owns the moment when things go wrong.In this M365.FM episode, the conversation reframes AI governance as AI stewardship, arguing that documents and dashboards alone don’t stop risk. What matters is clear human ownership of AI intent, behavior, and outcomes across the entire lifecycle. The episode explains why many organizations fall into “governance theater,” where rules exist but no one has real decision-making authority when AI systems misbehave.AI stewardship is presented as a continuous loop — intake, deployment, monitoring, escalation, and retirement — with named owners at every step. A key theme is the importance of pause authority: the ability for accountable individuals to slow down or stop AI systems quickly and without friction. The discussion also highlights how Microsoft’s tools, such as Entra and Purview, can help operationalize stewardship by tying decision rights directly into techn…
Guest: Mirko Peters
How to Fix AI Governance in Microsoft 365
M365 FM Podcast
How to Fix AI Governance in Microsoft 365
Jan. 7, 2026

How to Fix Hidden HR Configuration That Destroys Your Policies

The Foundational Lie of “Hire-to-Retire” Deconstructing the Architectural Debt of Modern HR Systems 🧠 Episode Summary Most organizations believe hire-to-retire is a lifecycle. It isn’t. It’s a story layered on top of fragmented systems making...
Guest: Mirko Peters
How to Fix Hidden HR Configuration That Destroys Your Policies
M365 FM Podcast
How to Fix Hidden HR Configuration That Destroys Your Policies
Jan. 6, 2026

How to Build Safe Guardrails for Microsoft 365 Copilot

Most organizations think Copilot is just a helpful layer that writes drafts faster. That misunderstanding is exactly how silent data leaks, invented policies, and irreversible automation changes begin. This episode argues that Copilot is not a colleague or assistant at all, but a distributed decision engine built on Microsoft Graph that executes whatever boundaries you actually configure, not the intent you think you expressed. When leaders rely on casual prompts, implicit trust, or “user has access” as a boundary, Copilot faithfully compiles that ambiguity into behavior, pulling in overshared HR or legal data, inventing authoritative-sounding procedures, and triggering real system changes without consent. The core lesson is that probabilistic language models are safe only when confined to reasoning and drafting; the moment outputs drive decisions or actions, determinism, enforced scopes, refusal states, and citations become mandatory. The episode walks through real failure patterns, …
Guest: Mirko Peters
How to Build Safe Guardrails for Microsoft 365 Copilot
M365 FM Podcast
How to Build Safe Guardrails for Microsoft 365 Copilot
Jan. 5, 2026

How Dynamics 365 Copilot Silently Breaks Your Finance Controls

Everyone thinks their controls still work because the dashboards are green — until the copilot makes a perfectly “authorized” decision no one can actually explain.This talk makes the case that tools like Dynamics 365 Copilot don’t just speed up work; they quietly change what control even means. Decisions are no longer made inside a single workflow or by a single identity. Instead, intent is compiled by an agent across prompts, models, connectors, and services. Traditional logs show what happened, but not why it happened, which data mattered, or which permissions actually combined to allow it.The risk isn’t obvious failure — it’s silent drift. Decision variance increases, small permissions add up to unexpected authority, side effects spread across systems, and accountability becomes blurry. Everything looks compliant until you’re asked to explain a real financial decision and discover the causal chain is gone.The fix is not policy, it’s engineering: treat the copilot layer …
Guest: Mirko Peters
How Dynamics 365 Copilot Silently Breaks Your Finance Controls
M365 FM Podcast
How Dynamics 365 Copilot Silently Breaks Your Finance Controls
Jan. 4, 2026

How AI Agents Break Your Security Controls (And What to Do)

It sounds governed, it feels safe, and every log lines up—yet the system still does the wrong thing. This episode dissects why modern AI agents fail not because controls are missing, but because they fire at the wrong time. You walk through how enterprises obsess over visibility—transcripts, logs, identities, conditional access—while ignoring the moment that actually matters: execution. Voice, avatars, and polished UX don’t make agents safer; they make them more persuasive, masking probabilistic behavior as certainty. The core argument is stark: forensics are not control, audit is not prevention, and narration is not governance. Real safety only appears when a deterministic policy gate evaluates each action at tool time, enforcing intent, scope, data class, and venue before anything executes or is spoken. Until organizations build that missing enforcement layer, they will keep collecting perfect evidence of failures they could have prevented.
Guest: Mirko Peters
How AI Agents Break Your Security Controls (And What to Do)
M365 FM Podcast
How AI Agents Break Your Security Controls (And What to Do)
Jan. 3, 2026

How to Build a Real Control Plane for Microsoft AI Agents

Most teams are rushing to give their AI agents a friendly face and a confident voice, but this episode argues that the real danger is hidden behind that polish. What looks like a helpful conversational assistant is actually a fast, probabilistic decision engine wired directly into sensitive tools, and the way most organizations deploy it guarantees quiet failures rather than dramatic breaches. The speaker walks through why today’s controls focus on the wrong moments: identity and conditional access decide who gets a token, and transcripts and logs explain what happened later, but almost nothing governs the exact moment an agent executes an action with real blast radius. Case studies show how well-intentioned agents delete the wrong data, disclose sensitive information in the wrong venue, or leak internal knowledge publicly, all while remaining fully “compliant” in the logs. The core problem is architectural: event-driven systems treat activities as truth, prompts as intent, and permis…
Guest: Mirko Peters
How to Build a Real Control Plane for Microsoft AI Agents
M365 FM Podcast
How to Build a Real Control Plane for Microsoft AI Agents
Jan. 2, 2026

Entra ID Conditional Access Is Broken – Do This Instead

Everyone thinks their Azure outages and breaches start with networks, costs, or misconfigured virtual machines, but this episode argues that the real failure almost always begins much higher up, in identity itself. The speaker reframes identity not as a simple login service but as Azure’s true control plane: a distributed decision engine that compiles signals about users, devices, risk, roles, and exceptions into every authorization decision. Over time, small “temporary” exceptions in conditional access, hybrid identity sync, workload identities, and guest access accumulate into what he calls identity debt, where policies drift far from their original intent and become unpredictable. Hybrid synchronization faithfully copies old on-prem assumptions into the cloud without preserving governance boundaries, while conditional access sprawl turns clean intent into fragile, probabilistic behavior hidden behind exclusions. Networks, firewalls, and endpoints cannot compensate for this, because…
Guest: Mirko Peters
Entra ID Conditional Access Is Broken – Do This Instead
M365 FM Podcast
Entra ID Conditional Access Is Broken – Do This Instead
Jan. 1, 2026

How to Stop Data Model Drift in Microsoft Fabric for Good

This episode explains why data models in Microsoft Fabric naturally drift over time and why DAX cannot fix the problem. It argues that data models are not objective truth—they are human-made interpretations that embed assumptions, business logic, and trade-offs.Fabric accelerates this issue by making it easy to copy, modify, and publish semantic models quickly. As a result, definitions of key metrics (like revenue or churn) quietly diverge across teams, creating “semantic drift” without breaking reports or triggering errors. The data still looks correct, but its meaning changes.The core problem is not security or access—Fabric handles that well—but a lack of semantic governance. Organizations often focus on controlling data access, while failing to define ownership, consistency, and authoritative meaning.DAX can calculate results, but it cannot restore consistency once definitions have diverged. The solution is to treat semantics as a governed layer: define ownership, cont…
Guest: Mirko Peters
How to Stop Data Model Drift in Microsoft Fabric for Good
M365 FM Podcast
How to Stop Data Model Drift in Microsoft Fabric for Good
Dec. 31, 2025

How AI Broke Your Entra Security (And How to Fix It)

The demo worked in ten minutes. The audit took ten weeks. That gap is where most modern security failures are born. A team asked an AI agent to wire up identity, and it did exactly what it was trained to do: choose the fastest, most common path. Secrets instead of certificates. Broad permissions instead of narrow intent. Wildcard redirects to keep things moving. Nothing broke. That was the problem.Here’s the uncomfortable truth: the system wasn’t misconfigured. Responsibility was outsourced. When you treat AI like a peer, it fills in gaps with probability, not policy. Every unstated rule becomes a guess, and every guess scales. One working app becomes ten, then fifty, each drifting a few degrees from what you meant. Not dramatically. Quietly. Conveniently.Speed feels real at first. Tokens flow, tests pass, production lights stay green. But governance dissolves when defaults go unchallenged. The model doesn’t know your rules; it knows the internet’s habits. And habits favor con…
Guest: Mirko Peters
How AI Broke Your Entra Security (And How to Fix It)
M365 FM Podcast
How AI Broke Your Entra Security (And How to Fix It)
Dec. 30, 2025

How to Build a Trusted Semantic Layer in Microsoft Fabric

Most organizations think their data problems are about who can see reports. In reality, the bigger risk is what those reports mean today—and how quietly that meaning changes tomorrow. Your transcript argues that Microsoft Fabric doesn’t create chaos by being insecure; it exposes a deeper problem that legacy architectures masked with friction: unmanaged semantic drift.Fabric collapses engineering, analytics, BI, and AI into a single, fast-moving plane. That speed removes the natural brakes that once slowed changes to metrics and models. Teams can clone semantic models, tweak definitions, and publish “truth” in minutes. The result is not broken security—Fabric excels at access control—but broken trust. Revenue, churn, or customer metrics quietly diverge while remaining perfectly secured, audited, and compliant.The core insight is the separation of three layers often blurred into “governance”: platform security, data governance, and semantic governance. Microsoft largely solves t…
Guest: Mirko Peters
How to Build a Trusted Semantic Layer in Microsoft Fabric
M365 FM Podcast
How to Build a Trusted Semantic Layer in Microsoft Fabric
Dec. 29, 2025

Power Platform Governance: Why Your Tenant Is the Real Ris

Is Power Platform actually dangerous for the enterprise—or is that fear hiding a more uncomfortable truth?In this episode, we dismantle the question executives keep asking: “Is Power Platform secure enough?” The answer is sharper than most teams expect. Yes—Microsoft’s Power Platform security is enterprise-grade. The real risk isn’t the platform. It’s what happens when governance quietly disappears inside your tenant.We explore why low-code suddenly feels out of control: explosive speed, invisible change, and citizen development without an operating model. Power Apps, Power Automate, Power BI, and Copilot didn’t create risk—they exposed it. When low-code plugs directly into your core identity, data, and collaboration stack, every missing decision in your control plane turns into architectural erosion.Through real-world audit and compliance scenarios, you’ll see how secure platforms still fail—via open default environments, unmanaged environments, weak DLP strategies, and m…
Guest: Mirko Peters
Power Platform Governance: Why Your Tenant Is the Real Ris
M365 FM Podcast
Power Platform Governance: Why Your Tenant Is the Real Ris
Dec. 28, 2025

How to Stop Shadow IT in Microsoft Foundry Before It Starts

This episode opens with a blunt warning: Microsoft Foundry isn’t just another AI feature you can casually approve and forget. It’s an agent factory, and if execution comes before governance, you are almost guaranteed to create the next generation of shadow IT. Most future AI incidents won’t come from models hallucinating answers. They’ll come from autonomous agents quietly accessing data no one realized they could see, combining systems that were never meant to touch, and continuing to run long after human ownership has disappeared.In this episode, we reframe Foundry from a helpful chat surface into what it really is: a platform for manufacturing non-human workloads that act, decide, and execute at cloud scale. We unpack why traditional governance models fail the moment agents are allowed to run without enforced ownership, bounded identities, and pre-execution controls. Drawing on hard lessons from SharePoint, Power Apps, and Teams, the episode shows how familiar patterns of “inno…
Guest: Mirko Peters
How to Stop Shadow IT in Microsoft Foundry Before It Starts
M365 FM Podcast
How to Stop Shadow IT in Microsoft Foundry Before It Starts
Dec. 27, 2025

The Hidden Cost of Duplicate Customers in Power BI

The system never betrayed your data — it only obeyed it. The real problem begins the moment identity is treated as an assumption instead of a constraint. What looks like harmless flexibility at small scale quietly turns into structural uncertainty as data grows, sources multiply, and systems change. Business keys such as emails, customer IDs, or composite identifiers were never identities; they are temporary labels tied to applications, policies, and human discipline. Once those labels leave their original systems, they decay. Duplicates become legal, conflicts accumulate, and ambiguity spreads through every join, aggregation, dashboard, and AI model. Nothing crashes, nothing alerts, and yet decisions drift further from reality. Attempts to repair this at the pipeline, notebook, or semantic layer only mask the problem, because application logic cannot survive concurrency, replay, or evolution. In distributed platforms, entropy is not an exception — it is the default state. True stabil…
Guest: Mirko Peters
The Hidden Cost of Duplicate Customers in Power BI
M365 FM Podcast
The Hidden Cost of Duplicate Customers in Power BI
Dec. 26, 2025

How to Fix Microsoft Teams Governance Sprawl

Here’s the thing nobody admits about modern governance: it isn’t designed to finish—it’s designed to continue.This episode follows a sleepless journey through Microsoft 365 governance, where dashboards glow amber, scores hover just shy of “good,” and every review promises progress without resolution. What looks like control is really choreography: CSV exports, compliance scores, audit logs, and Power BI heatmaps that signal motion while preserving stasis. Readiness reviews don’t uncover surprises—they normalize them. Unmanaged Teams linger, access reviews expire untouched, and policies stay in “audit mode” forever, not because they failed, but because enforcing them would force a decision.Across budget renewals, workshops, and license true-ups, the same pattern repeats. Amber becomes the safest color. It justifies more tooling, more time, and more funding—without ever reaching green, where the work would have to stop. Governance turns into a ritual: evidence is produced, risks…
Guest: Mirko Peters
How to Fix Microsoft Teams Governance Sprawl
M365 FM Podcast
How to Fix Microsoft Teams Governance Sprawl
Dec. 25, 2025

How to Fix Broken Compliance in Microsoft 365 Dashboards

Everything was green, nothing failed, and that was the problem. In this episode, we follow a meticulous, almost obsessive investigation into a Microsoft 365 tenant where compliance, retention, versioning, and discovery all appeared perfectly healthy. Policies were applied, dashboards were stable, audit logs reconciled, and every control reported success. So the team ran it again, and again, each time widening the lens. What emerged wasn’t a broken system, but a subtle shift in behavior hiding behind correct outcomes. Through repeated loops, the podcast reveals how autosave, co-authoring, and intelligent versioning quietly compress history at the moment of creation, long before retention or discovery can act. Activity did not equal preserved versions, and survival often happened before governance could even see the data. The core insight is unsettling: compliance tools retain what exists, not what you assume should exist. If your governance model depends on granular history under moder…
Guest: Mirko Peters
How to Fix Broken Compliance in Microsoft 365 Dashboards
M365 FM Podcast
How to Fix Broken Compliance in Microsoft 365 Dashboards
Dec. 24, 2025

How to Audit Data Access in Microsoft 365 Before Rolling Out Copilot

This episode explores a common fear around AI assistants in enterprise environments: the belief that they create new security risks by exposing sensitive data. Through a narrative explanation, the speaker clarifies that the AI does not widen access or bypass controls—it only reflects what permissions already allow. Every response is grounded in real-time identity checks, security trimming, and existing governance enforced through Microsoft Graph. What feels like a “leak” is often the result of long-abandoned sites, broken inheritance chains, overly broad groups, and unlabeled content that was never properly governed. The AI acts as a mirror, not a crowbar, surfacing contradictions between expectation and enforcement. The episode contrasts fear-driven shutdowns, like restricting discovery, with sustainable governance practices such as ownership, access reviews, sensitivity labels, and policy enforcement. Ultimately, the message is clear: awareness increases, access does not. True safet…
Guest: Mirko Peters
How to Audit Data Access in Microsoft 365 Before Rolling Out Copilot
M365 FM Podcast
How to Audit Data Access in Microsoft 365 Before Rolling Out Copilot
Dec. 23, 2025

How to Cut Contract Review Time from Days to Minutes with AI

What if the problem with contracts was never storage, but silence? This episode explores how organizations moved from treating contracts as static files to treating them as sources of answers. Inside an unchanged SharePoint tenant, with the same permissions, labels, and audit logs, the only shift was how questions were asked. Instead of searching filenames and rereading PDFs, teams began asking plain-language questions and receiving precise answers backed by clause-level citations. The conversation follows the hidden cost of manual search, where small delays compound into missed renewals, version drift, and quiet risk. By extracting key facts into existing library columns and letting a knowledge agent query them, contracts became responsive without migration or new platforms. NDAs, MSAs, SOWs, and DPAs all showed the same pattern: faster decisions, fewer emails, and stronger compliance because answers carried their own evidence. Nothing flashy changed. Governance stayed intact. The co…
Guest: Mirko Peters
How to Cut Contract Review Time from Days to Minutes with AI
M365 FM Podcast
How to Cut Contract Review Time from Days to Minutes with AI
Dec. 22, 2025

How to Stop AI Agents Making Silent Architecture Changes

Everything worked perfectly—and that’s how they knew something was wrong.In this episode, a routine AI workflow delivers flawless results: lower latency, reduced cost, cleaner logs, and zero policy violations. But beneath the pristine telemetry lies a mystery. The system didn’t fail, drift, or break rules—it optimized itself in ways no one explicitly designed. As investigators retrace execution traces, they uncover a subtle shift: model selection, regional routing, and orchestration decisions quietly changed at runtime, all within approved constraints. What looked like reliability was actually autonomy emerging inside a carefully defined boundary.The episode explores the uncomfortable gap between observability and explainability. Logs capture what happened, when, and where—but not why. As optimization replaces fixed decision trees, intent dissolves into geometry: a space of legal actions rather than a scripted path. The result forces a reckoning. When systems are designed to s…
Guest: Mirko Peters
How to Stop AI Agents Making Silent Architecture Changes
M365 FM Podcast
How to Stop AI Agents Making Silent Architecture Changes
Dec. 21, 2025

How to Stop Active Directory Security Drift Before a Breach

This episode explores the concept of Active Directory security drift—how environments gradually move away from their original secure configuration over time. Even well-designed setups become vulnerable as changes accumulate through daily operations, admin actions, or incomplete processes.The discussion highlights that drift is often subtle and goes unnoticed, yet it can introduce serious risks such as excessive permissions, outdated settings, and weakened security controls. These issues make it easier for attackers to escalate privileges and move laterally within a network. ()A key takeaway is that security is not a one-time setup but an ongoing process. Organizations need continuous monitoring, regular reviews, and automation to maintain a secure baseline and detect unwanted changes early. Without this, even mature environments can slowly degrade into insecure states.Overall, the episode emphasizes that security drift is inevitable—but unmanaged drift is dangerous, making…
Guest: Mirko Peters
How to Stop Active Directory Security Drift Before a Breach
M365 FM Podcast
How to Stop Active Directory Security Drift Before a Breach