Session Abstract

Today’s digital heterogenous environments are everything but simple: hundreds and thousands of users, ten times as many incidents and alerts, laws and regulations, deadlines, emergencies. Security and compliance are a priority, while mitigating adversaries with efficiency and speed is a must. This full-day tutorial is ideal for security professionals who want to get up to date with the latest Microsoft 365 security products and technologies through practical, real-world examples, from unified and powerful end-to-end incident response workflow governance, through efficient incident and alert management. The tutorial will cover the integration of Microsoft 365 security products (Microsoft Defender XDR), sprinkled with Microsoft Sentinel on top to enable you to create a unified security strategy across entire ecosystem. Join Sasha and Omar in this new, fully rewritten and revamped tutorial, packed with latest news for 2026, and takeaway insights and knowledge about (including, but not limited to): • Understanding Microsoft’s security architecture • Detecting risky events and responding with policy-driven insider risk strategies • Detecting and preventing data loss across Microsoft 365 and endpoint devices • Respond to incidents and compliance investigations efficiently • Build a unified security approach capable of mitigating adversaries’ techniques • Identify and analyze breached data to uncover hidden data security risks • Discover and secure all AI activity in Microsoft 365 • Microsoft Defender XDR (Defender for Office, Endpoint, Identity, Cloud Apps, Vulnerability Management) • Microsoft Defender for Cloud, Application Governance, Microsoft Sentinel • And much more! NOTE: As Microsoft announces new functionalities, products and updates, the tutorial agenda will be updated accordingly!

Sasha Kranjac

Sasha serves as a Microsoft Regional Director (RD), Microsoft MVP, and CEO of multiple IT training, consulting, and engineering firms, specialising in addressing complex business and security challenges for executives and organisations globally. He holds a wide range of certifications from leading providers such as Microsoft, ISC2, AWS, CompTIA, and EC-Council. In addition to expertise in cloud technologies, security architecture, and consulting, Sasha's teams deliver industry-certified and bespoke workshops and courses. Furthermore, Sasha is recognised as a CISSP, MCT, MCT Community Lead, CEI, and CompTIA Instructor. He is a frequent speaker at international conferences, user groups, and events, and is the author of several books on cloud security, Microsoft Azure, Microsoft 365, and Windows.