Microsoft Entra Backup and Recovery: What It Solves and What It Does Not Learn how Microsoft Entra Backup and Recovery works in practice, including supported objects, restore limits, diff reports, hybrid identity constraints, and governance implications.

Microsoft Entra Backup and Recovery is a strong step forward, but the limits matter:
• 5-day retention
• hybrid SOA still applies
• no replacement for drift detection

My practitioner breakdown:
blog.interian.be/2026/03/29/m...

Administrative Boundary Design in Microsoft Entra: Why Governance Matters Many Microsoft Entra tenants are technically secure but structurally fragile. Learn why administrative boundary design matters for governance and defensible control.

Most Microsoft Entra tenants are secure, but not governable.
Administrative boundaries are often missing, even with RBAC and PIM in place.

I wrote this deep dive on Administrative Units and RMAUs and how they enable defensible governance: blog.interian.be/2026/03/15/a...

#MicrosoftEntra #Identity

Passkeys are pushing Microsoft Entra ID towards a passkey-first authentication model.
The real shift is not the login experience, but the identity architecture behind it.

Conditional Access, device trust and authentication policies all change.

More here: blog.interian.be/2026/02/15/m...

Tenant Configuration Management: Microsoft moves tenant governance into continuous control - Driek Desmet | Securing Insights Microsoft is introducing Tenant Configuration Management as a native configuration governance layer for Microsoft 365. This article explores how continuous configuration monitoring, drift detection…

See blog :https://buff.ly/1jgFBy0

Why Microsoft 365 Security Fails: Configuration Drift & Tenant Configuration Management (TCM) Tenant Configuration Management (TCM) introduces a new governance layer across Microsoft 365, enabling organisations to move from periodic security reviews to continuous configuration governance. In…

Most Microsoft 365 security failures are caused by configuration drift.
TCM introduces continuous tenant governance:
www.youtube.com/watch?v=gnxN...
#Microsoft365 #MicrosoftSecurity #CyberSecurity #Governance #NIS2 #EntraID #GRC

Microsoft Entra Passkeys Becoming Default (2026) — Security & Governance Explained Microsoft is moving towards passkeys becoming the default authentication method across Microsoft Entra and Microsoft 365 environments. In this episode, we explore what this shift means from a…

Short podcast version of my latest article on Microsoft Entra passkeys becoming default and the governance and security implications for organisations. youtu.be/2biXf6AsOu0
#MicrosoftEntra #MicrosoftSecurity #CyberSecurity

Microsoft Entra passkeys becoming default – configuration and deployment guide (2026) Microsoft is automatically enabling passkeys in Entra, accelerating the shift to passwordless authentication. This technical deep dive explains configuration, device sync behaviour and best practices…

Microsoft beat me to it 😅
Passkeys will be default in Microsoft Entra from March 2026.

Phishing resistant authentication is quickly becoming baseline across Microsoft 365. Worth preparing now.

Short technical deep dive on configuration and rollout 👇
blog.interian.be/2026/02/15/m...

#Entra

OT Security, In Practice: 4 Cross‑Industry Trends from Global Assessments and How CISOs Should Respond OT cyber incidents commonly start from IT gaps like weak remote access, identity reuse & poor recovery, enabling escalation into operational outages.

OT security risks rarely start in OT.
NIS2 proves governance matters as much as technology.
thehackernews.com/expert-insig...
#NIS2 #OTSecurity #GRC

Exploring Conditional Access Bypasses in Microsoft Entra ID - Driek Desmet | Securing Insights Conditional Access is the backbone of Zero Trust in Microsoft Entra ID, yet real world attacks increasingly demonstrate how it can be bypassed. From device and token abuse to built in exclusions and…

Microsoft is tightening Conditional Access enforcement in Entra ID.
This directly reflects architectural bypass risks I recently analysed.
Conditional Access is powerful, but not absolute.
blog.interian.be/2026/01/10/e...
#CloudSecurity #M365 #MicrosoftEntra

What’s your “unsafe location” IT policy? 🌍📱

Burner phones and clean devices are not paranoia. They are basic risk management.

NIS2 is clear: org. must manage cyber risk not only in systems, but also in where and how they are used.

If this isn’t defined, it’s a governance gap.

#NIS2 #GRC 🔐

How Conditional Access Is Bypassed in Microsoft Entra ID (And Why It Matters) Conditional Access is often seen as the cornerstone of Zero Trust in Microsoft Entra ID. But in real-world incidents, attackers regularly bypass Conditional Access — even in well-configured…

youtu.be/zvK96tWqX8w?...

First time experimenting with a podcast format.

I took a recent technical write-up on Entra ID, Conditional Access, and session revocation and recorded it as audio.
Mainly curious whether this kind of deep technical content works as a podcast at all.

Feedback is welcome. 👇

Ex-werknemer Callebaut steelt chocoladerecepten en riskeert jaar cel: wat mag wel of niet als je naar concurrent overstapt? | VRT NWS: nieuws Vandaag hoort een ex-werknemer van chocoladefabrikant Callebaut zijn straf. Vlak voor zijn overstap naar een concurrent downloadde hij nog 19.000 bestanden waaronder enkele chocoladerecepten en intern...

A clear example of why insider risk and DLP matter.

NIS2 and eGRC expect organisations to actively protect sensitive data.

vrtnws.be/p.bDGlZkOPK

#NIS2 #InsiderRisk #DLP #Purview #CyberSecurity

Exploring Conditional Access Bypasses in Microsoft Entra ID - Securing Insights: Microsoft Intune, XDR, Purview, Governance and more Topics Conditional Access is the backbone of Zero Trust in Microsoft Entra ID, yet real world attacks increasingly demonstrate how it can be bypassed. From device and token abuse to built in exclusions and…

🔐 Conditional Access isn’t the silver bullet many think.
Real-world incidents show how Entra ID CA can be bypassed via exclusions, token persistence and device abuse.
CA ≠ baseline. Layered defence matters.
👉 buff.ly/aCn5750

#MicrosoftEntra #ConditionalAccess

Intune Firewall Rules Breaking After Changes: IT1214934 Microsoft incident IT1214934 explains broken Intune Firewall Rules after changes, including inactive rules and error 65000.

patchmypc.com/blog/intune-...

Revoke MFA sessions” wasn’t enough.
From Feb 2026, Entra ID introduces Revoke sessions — finally ending all access. 🔐

learn.microsoft.com/en-us/entra/...

Reflecting on 2025.
The focus this year was clear: bridging engineering, strategy, and advocacy to enable proactive security and compliance rather than reactive firefighting.
That journey continues in 2026 through long-form content and hands-on insights on blog.interian.be.

I really should play more with #DeployR

blog.interian.be/2025/02/15/r...

Require Risk Remediation: The Game-Changer for Conditional Access Policies - Securing Insights: Microsoft Intune, XDR, Purview, Governance and more Topics Discover the game-changing 'Require Risk Remediation' control in Microsoft Entra Conditional Access. This preview feature simplifies risk management by handling both password and passwordless users…

🔐 Conditional Access too complex?
Microsoft’s **Require risk remediation** (preview) lets one policy handle password & passwordless sign-ins. Fewer policies, fewer mistakes.
👉 Guide: blog.interian.be/2025/12/14/r...
#EntraID #ConditionalAccess #ZeroTrust

Quantum leap: Q-Day arrives early, crashing crypto and destabilizing world finance A quantum computer breakthrough crashes crypto, destabilizes finance, prompts gold surge, mass upgrades, and reshapes cybersecurity sectors globally.

Quantum computing could soon disrupt global finance & crypto, posing a threat to current encryption methods. As we approach Q-Day, cybersecurity must evolve. A must-read: Quantum Leap: www.home.saxo/content/arti...

Entra ID guest access still on Microsoft defaults?That means:
→ Guests can browse your directory
→ Anyone can be invited
→ They can re-share files they don’t own
→ MFA/device checks often ignored
blog.interian.be/2025/11/29/i... #EntraID #Microsoft365 #ZeroTrust

Entra Ignite Recap: Synced Passkeys, Agent ID & The Future of Identity This week, I’m joined by a stellar panel of Nathan McNulty, Ru Campbell, Martin Sandren, and Thomas Naunheim to break down the firehose of news from Microsoft Ignite related to Entra. We dive…

Entra Ignite Recap: Synced Passkeys, Agent ID & The Future of Identity

Passwords are a major vulnerability in cyber attacks, with NIS2 regulations requiring stronger identity measures. Phishing-resistant authentication, like Windows Hello for Business, is vital for compliance. For more technical guidance, visit blog.interian.be

Strengthen your Business Continuity with Windows Backup for Organizations Windows Backup for Organizations is now available. Discover how Easi’s UMS team already integrates this solution to preserve critical user settings.

🖥️ Windows Backup for Organisations is here and we are already using it at Easi. Discover how it strengthens resilience and continuity. 👉 blog.easi.net/en/strengthe...

Securing Insights: Microsoft Intune, XDR, Purview, Governance and more Topics Securing Insights: Microsoft Intune, XDR, Purview, Governance and more Topics

The blog is back after a short summer break ☀️
New post this Sunday: Microsoft Edge in enterprise environments, and how blocking & enforcing the right settings can boost security and compliance.

👉 blog.interian.be

Automated Remediation for Malware Detection - Defender for Storage | Microsoft Community Hub Today, Defender for Storage released, in public preview for Commercial Cloud, the feature Automated Remediation for Malware Detection. This is for both...

🚨 Microsoft Defender for Storage now offers Automated Malware Remediation! 🚀 No more manual intervention—faster, more efficient security for cloud storage. 🔒
techcommunity.microsoft.com/blog/microso...

#CyberSecurity #CloudSecurity #Automation #MicrosoftDefender

Cloud forensics: Why enabling Microsoft Azure Storage Account logs matters | Microsoft Community Hub Co-authors - Christoph Dreymann - Shiva P Introduction Azure Storage Accounts are frequently targeted by threat actors. Their goal is to exfiltrate...

Why enabling Microsoft Azure Storage Account logs matters

Renewed my AZ-500 (Azure Security Engineer Associate) for another year 🎉

One of those envelopes that instantly makes your day. 📬 @Microsoft Security
As my blog turns one year old soon (blog.interian.be), I’m grateful for the numbers, the recognition, and the connections it has brought me.

I’ll be back after the summer with fresh content.