Tatu Seppälä - Past Speaking Engagements

CollabDays Poland 2026

11/06/2026, Microsoft Polska
Warszawa, Poland

Secure and sustainable vibe development in Power Platform - top risks and mitigations

security

power-platform

owasp-top-10

vibe-development

Low-code/no-code platforms and AI-assisted tooling have lowered the barrier of entry to solution development for a significant number of people. While this represents a major leap forward in enabling business to create their own tooling and enhance productivity, unchecked "vibe development" also causes significant security and compliance risks, as well as new governance challenges. In this session, we look at key risks such as authentication failures and authorization misuse, sensitive data leakage and use of vulnerable components, among others. We identify effective mitigations and remedies for each risk from the Power Platform admin toolkit, showing how to use the latest Microsoft features and capabilities to implement guardrails against the hazards of AI-boosted development. Topics such as MCP server controls, Agent to Agent guardrails and the latest security and governance features for Copilot Studio agentic scenarios will be discussed. If you're a technical specialist, platform responsible or decision maker wondering how to grapple with the temptations and dangers of vibe dev, this session is an excellent fit for you. You will leave with clear action points to explore and implement to help manage relevant risks. The content is informed by the speaker's field experience and the freshly released OWASP Top 10 risks for Citizen Development, the review board of which the speaker was part of.

Thrive Conference 2026

08/06/2026, Kompas Xnet
Ljubljana, Slovenia

Taming the Wild West of Generative AI with Purview and Defender

security

governance

defender

purview

genai

IT and security teams are struggling to keep up with the explosive growth of "free" Generative AI services. The growing sprawl of new AI tools coupled with their universal attractiveness to people across industries and roles makes it difficult to build guardrails to direct business users to do their work with authorized tools and services. At the same time, ungoverned use of consumer GenAI services exposes business data (including personal data, financial information and intellectual property) to unsustainable data security and compliance risks, while limiting the adoption of authorized enterprise services like Microsoft's Copilot offering. Still, the goal of security teams is not to simply say "no." Rather, it is to sustainably enable business productivity by understanding underlying user requirements and providing secure and authorized tools to get the job done. Seems like a tough challenge to accomplish at scale! Luckily, there are now proven strategies to do just that. Intelligently combining capabilities from Microsoft Purview (Data Loss Prevention) and Defender (Defender for Cloud Apps, Defender for Endpoint) product families can help create technical guardrails that stay current with minimal ongoing manual admin effort while putting organizational policy to practice and keeping users aware of what's expected of them when it comes to utilizing AI services at work. During the session, we'll cover and demo technical topics like: - How to identify and manage ongoing use of GenAI services with Defender for Cloud Apps (MDA) and Defender for Endpoint (MDE) - How to monitor and curtail exfiltration of sensitive business data to consumer GenAI services with Purview Endpoint DLP - How to use Defender capabilities like Advanced Hunting coupled with data from Purview, MDA & MDE to build a granular understanding of the use of GenAI services across roles and departments You will take home easy and clear patterns and practices you can put to use immediately to start getting a grip on GenAI at work. This practical session is especially useful for security responsibles as well IT Pros and admins. It is valuable for anyone with a technical background in Microsoft cloud services.

Thrive Conference 2026

08/06/2026, Kompas Xnet
Ljubljana, Slovenia

Insider threat: First aid for a misunderstood risk vector

security

sentinel

defender

purview

insider-risk

entra-id

"It is said that only a fool learns from his own mistakes; a wise man from the mistakes of others." -Otto von Bismarck While we've been routinely protecting against external attackers for years, we've also often willingly ignored the other side of the equation: the hundreds or thousands of insiders - current and former company employees and contractors - with continuous access to sensitive internal information 24/7/365. In 2024, Gartner predicted that by 2027, as much as 70% of organizations will combine data loss prevention and insider risk management disciplines with IAM context to identify suspicious insider behavior more effectively. It's not hard to understand why insider threat has been neglected so far: * Investigating and mitigating against insider threat is a murky topic especially for those approaching it from the more clear-cut Blue team / Red team world of external attacker focused cybersecurity. * Timely visibility into real insider threat isn't tied to any single alert or event. It takes a fusion of human and technical data points, put into proper context (and parsed into chronological sequences with a bit of help from AI) to enable sufficiently rapid actions. Cross-organization collaboration beyond cybersecurity and IT teams is a must. * Organizations tend to have idealistic and even rosy views of how their trusted employees are accessing and handling business data before you can prove decision makers the risk is real with data. In fact, for insider risk investigations, the entire paradigm is different - potential threats are assumed to be non-malicious & should remain anonymous until proven guilty. Still, technology plays a vital role in helping limit the opportunities for insider threat to actualize. While the root causes of insider threat are ultimately non-technical, thoughtful use of available technology plays a key role in limiting the conditions in which these risks can turn into reputational or financial harm. In this session, I'll demo and discuss topics relevant to mitigating insider risk such as: * "Edward Snowden was a SharePoint admin" - the essentials of identity and access hygiene with Entra ID * "The absence of a Capable Guardian" - the link between Routine Activity Theory and an effective Purview Data Loss Prevention solution * "The signal-to-noise ratio" - the differences between types of insider threats and the preferred technical countermeasures for each * "Connecting the dots" - the most valuable event logs to collect to allow effective detection of sequences of risky insider activity and data exfiltration with Purview Insider Risk Management As an attendee, you will l leave this session with a clear idea on what you can start working on immediately to help lay the technical foundations to enable your insider risk program. The session is well-suited for data security responsibles and decision makers, security architects and anyone curious to learn more about insider threat - and how to start addressing it.

DynamicsMinds 2026

25/05/2026, Grand Hotel Bernardin
Portoroz, Slovenia

MCP vs. A2A - Bridging the security & governance gap for agentic AI in Power Platform

security

power-platform

governance

compliance

mcp

copilot-studio

a2a

As AI in Power Platform and Copilot Studio shifts from isolated agents and LLM calls to networks of automation, two models are emerging for “how stuff talks to other stuff”: Model Context Protocol (MCP) providing server-backed tool exposure, and agent-to-agent (A2A) orchestration. They overlap, but they’re not the same — and that includes the crucial security and governance controls we can apply to each. This session unpacks that difference and how they can be governed and secured today. We’ll look at MCP as the “USB-C for AI”: a predictable, admin-governable way to expose capabilities, data and actions to AI models and agents. Then, we'll contrast it with Agent-to-Agent patterns, where one agent calls or delegates to another - a flexible model, but harder to control and predict with different risks: who can call whom, with what data, and under which contexts. What you’ll learn: 1. Where MCP is stronger than A2A, and how to discover and manage MCP servers across your tenant to define ownership and access 2. Where A2A could be preferable to MCP, including considerations for multi-cloud scenarios 3. A practical roadmap - which security & governance actions to take now, and what to watch for going forward This session is aimed at Power Platform admins, security/governance leads, and platform owners who need to let AI connect to real systems without losing control. You’ll leave with a side-by-side mental model of MCP vs. Agent-to-Agent, and a list of guardrails you can actually implement.

European BizApps Summit 2026

05/05/2026, Confex - Koelncongress
Cologne, Germany

Level up your Dataverse audit logs with Fabric, Sentinel and Power BI

sentinel

power-platform

power-bi

dataverse

fabric

audit

Dataverse and Power Platform audit logs are fundamental to admins and security responsibles, enabling monitoring of unauthorized activity, supporting investigations and enabling the type of transparency and trust required by enterprise platforms. And yeah, they are also very dry and clumsy to work with. Indeed, the specific ways Dataverse auditing is set up leaves room for improvement - long term retention strategies create capacity concerns and tapping into audit logs for analytical purposes can be frustrating. The audit logs generated in Power Platform are also split in two halves - some events in Dataverse itself, others in the Microsoft 365 Unified Audit Log. Through clever use of Dataverse's integration with Fabric and Microsoft Sentinel's ability to tap into the M365 Unified Audit Log - enabled by Defender for Cloud Apps - it has become possible to bring both sides of the Dataverse audit toolkit back together, now infused with powerful analytics and visualization capabilities from Power BI. Join this session to explore novel ways to uncover and analyze trends and anomalies in your Dataverse audit logs to take your Power Platform admin game to the next level!

European BizApps Summit 2026

05/05/2026, Confex - Koelncongress
Cologne, Germany

Secure and sustainable vibe development - top risks and mitigations

security

power-platform

best-practices

risk-management

vibe-dev

Low-code/no-code platforms and AI-assisted tooling have lowered the barrier of entry to solution development for a significant number of people. While this represents a major leap forward in enabling business to create their own tooling and enhance productivity, unchecked "vibe development" also causes significant security and compliance risks, as well as new governance challenges. In this session, we highlight key risks such as authentication failures and authorization misuse, sensitive data leakage and use of vulnerable components, among others. We suggest effective mitigations and remedies for each risk from the Power Platform admin toolkit, showing how to use the latest Microsoft features and capabilities to implement guardrails against the hazards of AI-boosted development. Topics such as MCP server controls, Agent to Agent guardrails and the latest security and governance features for Copilot Studio agentic scenarios will be discussed. If you're a technical specialist, platform responsible or decision maker wondering how to grapple with the temptations and dangers of vibe dev, this session is an excellent fit for you. You will leave with clear action points to explore and implement to help manage relevant risks. The content is informed by the speakers' field experience and the freshly released OWASP Top 10 risks for Citizen Development.

European BizApps Summit 2026

05/05/2026, Confex - Koelncongress
Cologne, Germany

Streamlining Power Platform environment access and security role management with Entra ID

power-platform

best-practices

entra-id

access-management

Does the complexity and clumsiness of access and security role management in Power Platform and Dataverse leave you feeling unsure of how to keep things under control at scale? Do you find yourself wishing you could bring in the familiar and powerful access management and governance functionalities of Entra ID (formerly known as Azure AD) to Power Platform and Dataverse? If so, this is the right session for you! Through demos and insights, I will walk you through a proven, repeatable and easy-to-understand strategy for managing access to Power Platform environments and the Dataverse security roles in them - all powered by familiar Entra ID capabilities and only utilizing native Microsoft features. During the session, I will show you how to.. * Manage Dataverse security roles with Entra ID groups * Control access to Power Platform environments in Entra ID * Clean up security role assignments from stale user accounts * Enable easy an self-service access and role management for environment owners - no admin permissions required! * Implement just-in-time activation (with optional business justification requirements) for System Administrator and other roles - and monitor the use of these roles over time The end-to-end approach I share and demonstrate in this session is based on a set of solutions I've researched, developed, validated and implemented for real organizations over the last years. I will equip you with a set of patterns you can start implementing immediately in your own (or a customer's) organization.

Adriatics Tech Summit

30/03/2026, Congress Center Hotel Hills
Ilidža, Bosnia and Herzegovina

Supercharge your Endpoint DLP solution design with Advanced Hunting and GenAI

defender

kql

purview

advanced-hunting

genai

Designing a holistic, granular and effective Microsoft Purview Endpoint Data Loss Prevention solution to secure sensitive data exfiltration actions on Windows 10/11 and macOS devices can be a daunting task. The key difficulty - and value! - lies in adapting your solution based on the actual usage patterns from the organization you're working with. To build a truly fit-for-purpose production solution with Endpoint DLP, you'll need to accomlish things like: - Mapping various categories of cloud domains targeted by file uploads and content paste activities - Identify network and local printers that are used commonly for print jobs involving sensitive information - Understanding the often sprawling jungle of network shares used by employees and accounting for them - Discover usage patterns of removable USB media across roles.. and more. All of these tasks get exponentially more complex as the size of the organization grows. There is a way forward though: getting comfortable with KQL in Advanced Hunting and Log Analytics. I'll share and demonstrate how I routinely design and build Endpoint DLP data security solutions for organizations of all sizes using repeatable patterns and practices. We'll also get into how I've found it essential to use Generative AI (doesn't have to necessarily be Copilot!) to speed up a few of the most demanding parts of the Endpoint DLP solution design process. During the session, I'll share my favorite KQL queries and how to vary them to meet your requirements - and how to turn the information you get from them into practical solution design. This session is useful for any IT pro, security architect and data security responsible looking to create or maintain a functional Endpoint Data Loss Prevention solution.

CollabDays Bremen 2026

23/01/2026, Schuppen Eins
Bremen, Germany

Taming the Wild West of Generative AI with Purview and Defender

security

governance

defender

purview

discovery

genai

IT and security teams are struggling to keep up with the explosive growth of "free" Generative AI services. The growing sprawl of new AI tools coupled with their universal attractiveness to people across industries and roles makes it difficult to build guardrails to direct business users to do their work with authorized tools and services. At the same time, ungoverned use of consumer GenAI services exposes business data (including personal data, financial information and intellectual property) to unsustainable data security and compliance risks, while limiting the adoption of authorized enterprise services like Microsoft's Copilot offering. Still, the goal of security teams is not to simply say "no." Rather, it is to sustainably enable business productivity by understanding underlying user requirements and providing secure and authorized tools to get the job done. Seems like a tough challenge to accomplish at scale! Luckily, there are now proven strategies to do just that. Intelligently combining capabilities from Microsoft Purview (Data Loss Prevention) and Defender (Defender for Cloud Apps, Defender for Endpoint) product families can help create technical guardrails that stay current with minimal ongoing manual admin effort while putting organizational policy to practice and keeping users aware of what's expected of them when it comes to utilizing AI services at work. During the session, we'll cover and demo technical topics like: - How to identify and manage ongoing use of GenAI services with Defender for Cloud Apps (MDA) and Defender for Endpoint (MDE) - How to monitor and curtail exfiltration of sensitive business data to consumer GenAI services with Purview Endpoint DLP - How to use Defender capabilities like Advanced Hunting coupled with data from Purview, MDA & MDE to build a granular understanding of the use of GenAI services across roles and departments You will take home easy and clear patterns and practices you can put to use immediately to start getting a grip on GenAI at work. This practical session is especially useful for security responsibles as well IT Pros and admins. It is valuable for anyone with a technical background in Microsoft cloud services.

Baltic Summit 2025

12/09/2025, Pomorski Park Naukowo-Technologiczny Gdynia
Gdynia, Poland

Understanding data security essentials for Dataverse, Fabric and Copilot Studio

governance

dataverse

data-security

microsoft-365-copilot

fabric

copilot-studio

While Copilot Agents are the cutting edge of innovation in modern work, Dataverse has already established itself as a leading component of business applications strategies worldwide, while Fabric is now becoming an essential part of our business solutions around Dataverse. AI, data and Power Platform are a powerful mix. In this session we will guide you through the governance and management of the data, with a mixture of demos and real-life stories, to help you know what to use where and give you a glimpse of what is coming next on the roadmap. In our experience however, one thing is clear: data security capabilities from Purview and other services are often overlooked or underutilized. To help correct that, we'll dive in and explore how to unlock their full potential. We'll demonstrate how to build a sustainable and secure framework, with sensitive data accounted for and proper guardrails in place using the capabilities available to you today. Key topics that we will demo: Discovering sensitive data in Dataverse and Fabric: What you need to know and what steps to take once you've found it Using Data Activator to drive granular, conditional real-time action and awareness based on data in Fabric Extending critical data protection to Power Platform with sensitivity labels across Copilot Agents, Dataverse, and Fabric Along the way, we'll share stories and actionable insights from our experiences in the field. This session is perfect for.. Power Platform, Dynamics 365 and Fabric admins and those with governance responsibilities Microsoft 365 data security responsibles looking to get up-to-speed on using Purview capabilities effectively Don't miss this opportunity to transform your approach to governing and securing your Copilot Agents and business applications!

CollabDays Hamburg 2025

28/06/2025, STADTTEILSCHULE UHLENHORST
Hamburg, Germany

Dataverse detective: Discovering sensitive information with Purview Data Governance

power-platform

governance

dataverse

data-security

With Power Platform and Dynamics 365 powering an increasing number of business-critical solutions, there is a growing need to understand and govern sensitive information stored in Dataverse databases. This is where Microsoft Purview Data Governance (Data Map & Data Catalog) comes in. In this demo-driven session I explain how to integrate Dataverse into existing Purview data security solutions while discovering, classifying and labeling business-critical information at-scale. Then, I'll tell you how to put these classifications to work, focusing your data security and governance efforts where they will have the greatest positive impact. During the session, I will cover and demo topics including: * Purview service build-up * Integrating Purview Data Governance with Dataverse * Scanning and classifying information across tables * Investigating discovered assets * Automatic sensitivity labeling tips & tricks for Dataverse * Digging into the Unified Audit Log * Putting your findings into practical use * Cost considerations To help inform your own implementation efforts, I will share my experience-driven insights, tips and best practices for integrating Purview with Dataverse and raise awareness around some potential avoidable pitfalls when considering a move to production.

Thrive Conference 2025

02/06/2025, Kompas Xnet
Ljubljana, Slovenia

Design effective Endpoint DLP solutions with Advanced Hunting & Generative AI

security

compliance

kql

data-loss-prevention

data-security

purview

endpoint-dlp

Designing a holistic, granular and effective Microsoft Purview Endpoint Data Loss Prevention solution to secure sensitive data exfiltration actions on Windows 10/11 and macOS devices can be a daunting task. The key difficulty - and value! - lies in adapting your solution based on the actual usage patterns from the organization you're working with. To build a truly fit-for-purpose production solution with Endpoint DLP, you'll need to accomlish things like: - Mapping various categories of cloud domains targeted by file uploads and content paste activities - Identify network and local printers that are used commonly for print jobs involving sensitive information - Understanding the often sprawling jungle of network shares used by employees and accounting for them - Discover usage patterns of removable USB media across roles.. and more. All of these tasks get exponentially more complex as the size of the organization grows. There is a way forward though: getting comfortable with KQL in Advanced Hunting and Log Analytics. I'll share and demonstrate how I routinely design and build Endpoint DLP data security solutions for organizations of all sizes using repeatable patterns and practices. We'll also get into how I've found it essential to use Generative AI (doesn't have to necessarily be Copilot!) to speed up a few of the most demanding parts of the Endpoint DLP solution design process. During the session, I'll share my favorite KQL queries and how to vary them to meet your requirements - and how to turn the information you get from them into practical solution design. This session is useful for any IT pro, security architect and data security responsible looking to create or maintain a functional Endpoint Data Loss Prevention solution.

Thrive Conference 2025

02/06/2025, Kompas Xnet
Ljubljana, Slovenia

Expectation vs. Reality: Crushing user experience and productivity in the name of security

security

Cybersecurity is ultimately all about balancing risk management with productivity. Too often the mentality is: identify the bad thing, block the bad thing, tell the users to shun the bad thing, case closed, kingdom saved - right? Our experience says something is missing from that equation: the human factor and employee experience. By treating business users like sheep, we are disregarding three of the most powerful drivers of security risks: frustration, creativity and most important: laziness. Whenever people encounter unexpected obstacles that they are motivated to overcome, we have an uncanny ability to find surprising ways to bypass them - unauthorized jury-rigged solutions which are often far worse for an organization's security posture than the original risk the technical controls were meant to protect from. In this session, two seasoned security pros versed in psychology and equipped with deep practical experience unpack how and why idealistic and uncompromising security initiatives can (and often do) eventually backfire, manifesting as a silent and unmitigated workaround culture that breeds inefficiencies and discontent, raising new security risks and ultimately undermining the competitive edge of the business itself. You will leave the session with platform agnostic tips and tricks, along with a fresh outlook to help you properly use the licenses and tools you already have. For example, you’ll be able to: - Go from BlockPoint to SharePoint, opening up secure collaboration by using Microsoft Purview capabilities like DLP and Information Protection - Avoid an exodus from Windows devices towards often looser-managed platforms like MacOS, driven by the desire for more user freedom - Set up guardrails for handling business data on unmanaged devices with a thoughtful implementation of MAM - Provide access to generative AI without compromising on essentials like audit logging and data security The session is recommended for anyone looking for a fresh perspective on an important topic – especially security architects, technical experts and IT decision makers.

European BizApps Summit 2025

26/05/2025, Congress Center Düsseldorf
Düsseldorf, Germany

Understanding data security essentials for Dataverse, Fabric and Copilot Studio

security

power-platform

governance

dataverse

purview

copilot

fabric

While Copilot Agents are the cutting edge of innovation in modern work, Dataverse has already established itself as a leading component of business applications strategies worldwide, while Fabric is now becoming an essential part of our business solutions around Dataverse. AI, data and Power Platform are a powerful mix. In this session we will guide you through the governance and management of the data, with a mixture of demos and real life stories, to help you know what to use where and give you a glimpse of what is coming next on the roadmap. In our experience however, one thing is clear: data security capabilities from Purview and other services are often overlooked or underutilized. To help correct that, we'll dive in and explore how to unlock their full potential. We'll demonstrate how to build a sustainable and secure framework, with sensitive data accounted for and proper guardrails in place using the capabilities available to you today. Key topics that we will demo: Discovering sensitive data in Dataverse and Fabric: What you need to know and what steps to take once you've found it Using Data Activator to drive granular, conditional real-time action and awareness based on data in Fabric Extending critical data protection to Power Platform with sensitivity labels across Copilot Agents, Dataverse, and Fabric Along the way, we'll share stories and actionable insights from our experiences in the field. This session is perfect for.. Power Platform, Dynamics 365 and Fabric admins and those with governance responsibilities Microsoft 365 data security responsibles looking to get up-to-speed on using Purview capabilities effectively Don't miss this opportunity to transform your approach to governing and securing your Copilot Agents and business applications!

CollabDays Poland 2025

16/05/2025, Microsoft Polska
Warszawa, Poland

Streamlining Power Platform environment access and security role management with Entra ID

power-platform

dataverse

entra-id

Does the complexity and clumsiness of access and security role management in Power Platform and Dataverse leave you feeling unsure of how to keep things under control at scale? Do you find yourself wishing you could bring in the familiar and powerful access management and governance functionalities of Entra ID (formerly known as Azure AD) to Power Platform and Dataverse? If so, this is the right session for you! Through demos and insights, I will walk you through a proven, repeatable and easy-to-understand strategy for managing access to Power Platform environments and the Dataverse security roles in them - all powered by familiar Entra ID capabilities and only utilizing native Microsoft features. During the session, I will show you how to.. * Manage Dataverse security roles with Entra ID groups * Control access to Power Platform environments in Entra ID * Clean up security role assignments from stale user accounts * Enable easy an self-service access and role management for environment owners - no admin permissions required! * Implement just-in-time activation (with optional business justification requirements) for System Administrator and other roles - and monitor the use of these roles over time The end-to-end approach I share and demonstrate in this session is based on a set of solutions I've researched, developed, validated and implemented for real organizations over the last years. I will equip you with a set of patterns you can start implementing immediately in your own (or a customer's) organization.

Security Architect

Finland

Past Speaking Engagements

Meet Tatu next at

CollabDays Hamburg 2026

27/06/2026

Tatu can deliver sessions in

Relevant industries

Connect with Tatu

Important links

Report speaker profile

Thank you for reporting this profile, we are going to review it as soon as possible.