Klaus Bierschenk
Microsoft MVP for Security | Director Consulting Expert @CGI Germany; Author; Speaker, Blogger
Microsoft MVP for Security | Director Consulting Expert @CGI Germany; Author; Speaker, Blogger
Murnau am Staffelsee, Germany
Actions
Klaus is a Microsoft Security MVP and works as a Technology Consultant at CGI Germany. He focuses on hybrid Microsoft technologies, with a particular emphasis on Microsoft Active Directory and Microsoft Entra ID. Driven by a strong passion for Microsoft solutions, he supports IT operators in tackling complex challenges related to modern infrastructure and identity scenarios. Klaus is a speaker at international conferences and actively contributes to the Microsoft Azure community. He also shares his knowledge through his technical blog https://nothingbutcloud.net and various professional publications.
Klaus ist Microsoft Security MVP und arbeitet als Technology Consultant bei CGI Deutschland.
Sein Fokus liegt auf hybriden Microsoft-Technologien – insbesondere auf Microsoft Active Directory und Microsoft Entra ID.
Mit großer Leidenschaft für Microsoft-Lösungen unterstützt er IT-Verantwortliche dabei, komplexe Herausforderungen rund um moderne Infrastrukturen und Identitätslösungen zu bewältigen.
Klaus ist Sprecher auf internationalen Konferenzen und engagiert sich aktiv in der Microsoft-Azure-Community.
Sein Wissen teilt er regelmäßig über seinen technischen Blog https://nothingbutcloud.net sowie in Fachveröffentlichungen.
Badges
Area of Expertise
Topics
Administration PIMped – The Right Way, Beyond Activation
Zero Trust in the context of identity and administration is unforgiving and mistakes directly translate into risk. Privileged Identity Management (PIM) has become a cornerstone capability to reduce standing privileges and enforce just-in-time access.
In this session, we explore how to run PIM effectively in real environments and how it must integrate with other Entra capabilities such as Conditional Access, authentication contexts, and Access Packages to deliver meaningful security outcomes.
To make this tangible, the session follows a school environment as an example. While the scenario is education-focused, the challenges, architectural decisions, and operational lessons apply equally to enterprises of any size.
But activating roles is only part of the story. In the second half, we look at the broader administrative landscape, recent platform developments, and proven guidance from the field. This includes updates around Administrative Units and how Security Copilot can support visibility, investigation, and operational confidence.
Throughout the session, concepts are backed by live demonstrations to ensure practical relevance and immediate applicability.
This session is grounded in real-world implementation experience. Attendees will see how PIM operates in combination with Conditional Access, authentication contexts, and administrative boundaries, and how these components must work together in production environments. A solid understanding of Entra ID role concepts is recommended.
Entra ID Backup and Recovery – Delete Is Easy, Recovery Is Not
Backup and restore have always been core principles of IT yet they are often neglected in Microsoft Entra ID.
What happens if a Conditional Access policy is changed and you suddenly need last week’s version?
And more importantly: what can actually be backed up in Entra ID?
In this session, we explore how deletion and recovery behave across different resource types and where restoration is (or is not) possible. You’ll learn practical protection strategies that work without relying on third-party products.
We will also examine preventive safeguards, including the brand-new Unified Tenant Configuration Management (UTCM) capability, and discuss how it changes the way administrators can track, compare, and secure configurations.
The goal is simple: to give you clarity about what truly matters when safeguarding your Entra ID environment.
This session is built on real-world experience and focuses on practical, repeatable methods rather than theory. Attendees will gain clarity on what can truly be recovered, where hard limits exist, and how new capabilities such as Unified Tenant Configuration Management (UTCM) improve change visibility and control. A solid understanding of Entra ID and Conditional Access is recommended.
Entra ID Cleanup – Identifying and Removing Stale and Abandoned Objects
Over time, many Entra ID tenants evolve into landscapes filled with forgotten and ownerless objects: accounts from former employees, guests who never returned, orphaned groups, applications without accountability, service principals with excessive permissions, and Conditional Access policies that no longer reflect reality. These remnants often remain invisible while continuously expanding the attack surface.
In this session, I guide you through practical strategies for effective Entra ID cleanup. We examine what typically accumulates, why it creates real security exposure, and how to systematically uncover both obsolete objects and outdated configurations. Using proven approaches with logs, PowerShell, Security Copilot, and the Conditional Access Optimization Agent, you’ll learn how to establish transparency and reduce risk in a controlled and sustainable way.
You will leave with a concrete, actionable checklist to streamline your tenant, minimize exposure, and maintain long-term security and governance leaving no unnecessary objects or policies behind.
The session is based on real-world customer experience and includes practical guidance, live demonstrations, and reusable approaches. A basic understanding of Entra ID and identity administration concepts is recommended. Close to the conference date, the material and demos will be updated to reflect the latest public preview and GA features.
ADRIATICS TECH SUMMIT 2026 Upcoming
PIMp your administration
secIT by Heise Upcoming
Digitaler Frühjahrsputz in Entra ID – Aufräumen für mehr Sicherheit
Experts Life Germany Upcoming
Entra ID Frühjahrsputz – Altlasten erkennen, Risiken beseitigen
Experts Live Denmark 2026 Sessionize Event
Experts Life Denmark
Identity masterclass Workshop, together with Merill Fernando, Jan Vidar Elven, Thomas Naunheim, Pim Jacobs, Morten KNudsen
Hybrid Identity Protection Conference 2026
PIMp your administration
Cloud Tech Tallinn 2026 Sessionize Event
M365 Con
I will be presenting “Advanced Admin Techniques”.
Hybrid Identity Protection Conference
I am presenting "Entra Backup? Think You Have One? Think Again!"
Experts Live Germany 2025 Sessionize Event
secIT by Heise 2025
Zero Trust Identity – Hope is not a strategy.
European Cloud Summit
I am presenting "Identities everywhere. A challenge for user management and workflows"
secIT by Heise
Zero Trust Identity - Top 5 MS Entra ID Features aus der Praxis für Admins
Azure AMA Ask me anything
Azure Meetup Bonn
Azure AMA - Azure AD Connect und Cloud Sync
Azure Meetup Bonn
Azure Meetup in Stuttgart
Zero trust identity - minor but powerful functionalities in Azure AD
Cloud Identity Summit '21 Sessionize Event
Cloud Identity Summit 2021
Error-free with hybrid synchronization
Azure Meetup Bonn
Synchronisation – Schaltzentrale einer hybriden Infrastruktur
Cloud Identity Summit 2020
Synchronization - Backbone of a hybrid setup
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top