Microsoft Entra takes the leading role as Zero Trust policy and serves as unified control plane to integrate sensitive cloud resources, -apps and hybrid infrastructure. Often, organizations underestimate the importance of continuous reviewing (default) security settings and policies. But what are security-related configurations that should be considered and evaluated? How can you track and operationalize your posture management changes and their impact on your environment?

In this session, I will provide an overview of various critical configuration areas and demonstrate how to discover and automate the tracking of (mis)configurations using community tools such as Maester, EntraOps, and EIDSCA. Additionally, we will explore integrated signals and features in Microsoft Entra that enhance identity security configuration. Join this session to learn how to take control and elevate your identity security posture!

First public delivery of this session in English
Many live demos including:
- Identity Security Posture and usual misconfiguration of security-related tenant settings
- Unprotected privileged groups and users
- App Integration health and overprivileged workload identities