Modern applications integrated with Microsoft Entra ID are powerful—but they also introduce significant security risks if not properly managed. In this technical deep dive, we’ll explore how to secure your app ecosystem using Microsoft’s identity and security tools, guided by Zero Trust principles.

This session will cover:

Introduction to Entra ID App Registrations: Understand the lifecycle of app identities and their role in your environment.
Enterprise App Security Checklist: A practical guide to hardening app configurations.
Managing App Permissions: Learn the difference between delegated and application permissions, and how to enforce least privilege.
High-Permission Applications: Identify risky apps, detect over-permissioned Graph API access, and mitigate threats using Defender for Cloud Apps.
Privileged Identity Management (PIM) for Applications: Apply just-in-time access and approval workflows to sensitive app roles.
Zero Trust for Applications: Implement segmentation, continuous evaluation, and adaptive access controls.
Application Properties & Configuration: Secure app secrets, certificates, and redirect URIs.
Best Practices and Recommendations: Actionable insights to reduce your attack surface and improve governance.