Monday 9:00 AM - 5:00 PM · Room S102bc

Building Your Data Protection Program with Purview, Defender, and Microsoft Copilot

In recent years, the amount of digital content moving to the cloud has been dramatic. This has undoubtedly made collaboration easier and more versatile, but it's also brought with it a new set of problems, such as oversharing, data exfiltration, and non-compliant destruction of data. Organizations like yours must ensure data is available when required and protected when sensitive.

Microsoft 365 provides a multitude of tools and features that can assist any organization in protecting its data. Any one of these features can help a business protect its data, but it's the deployment of multiple tools and features that will help organizations build a true data protection program.

In this workshop, your data protection expert will take you through the many features of Microsoft 365 that can assist your organization in protecting its information. Attendees will learn about features such as Microsoft Purview Information Protection, Data Loss Prevention, Endpoint Protection, Insider Risk, and much more. They will also learn how Microsoft Copilot for Security can bolster your data protection program and support your cybersecurity team in protecting your organization.

Tuesday 9:00 AM - 5:00 PM · Room S102bc

Data Protection, Collaboration, and User Engagement: Assisting Your Organization in Doing it All

With the ever-changing cloud landscape, organizations struggle to help their employees collaborate and be effective in their day-to-day responsibilities. Adding data protection and security could raise the difficulty even more, as the business needs to balance the ability to collaborate while keeping its information and users safe. Ensuring user engagement and adoption is fundamental to success.

In this workshop, David and Sarah will cover the design and implementation of Microsoft 365's collaboration tools, such as SharePoint, Teams, Viva Engage, and more, while ensuring the solution is safe, secure, and fully collaborative. They'll help you understand how you can work together to protect your organization's information and employees in a manner that encourages endorsement from those using the tools.

Tuesday 9:00 AM - 12:30 PM · Room S106a

Managing Change in a Microsoft World: Copilot Governance & Change Management

In the era of artificial intelligence, preparing both technically and behaviorally is essential for leveraging AI tools effectively. This workshop is designed to equip technical admins and change practitioners with the skills needed to foster technical readiness and drive user behavioral change, making AI an integral part of daily operations within the Microsoft ecosystem.

Participants will delve into the technical aspects of Microsoft 365 Copilot, understanding its capabilities and governance. Additionally, the workshop will focus on strategies to encourage user adoption and behavioral change, ensuring that AI becomes a habitual tool for enhancing productivity and innovation.

Wednesday 9:50 AM - 11:00 AM · Room S102bc

Getting Started with Security Copilot Agents in Microsoft Purview

Microsoft Security Copilot and Agentic AI capabilities in Microsoft Purview are rapidly expanding, offering security practitioners a powerful set of tools for data protection and investigation. This presentation explores the current portfolio of Microsoft Purview agents, explaining the value of each and demoing real examples of their capabilities across different security functions. We'll examine how these agents are reshaping security workflows, enabling teams to work faster and make better-informed decisions. This session covers practical details like accessing agents, formulating effective prompts, and understanding their outputs. Attendees will walk away knowing which agents are available in Microsoft Purview, when to use each, and how to integrate them into their existing security operations for maximum impact.

Wednesday 11:30 AM - 12:40 PM · Room S105bcd

Secure and Govern AI and Agents with Microsoft & Agent 365

AI changes the threat landscape—and agents expand the attack surface. In this session, learn how to secure and govern Microsoft 365 Copilot and Agents with practical, tenant-ready guardrails. We’ll cover how to limit agent sprawl, apply least-privilege access, protect sensitive data, and reduce risks like prompt injection, data leakage, and shadow AI. You’ll leave with a clear control map across identity, data security, and threat protection—and the first steps to operationalize governance as Copilot and agent adoption scales.

Wednesday 1:40 PM - 2:50 PM · Room S102a

MCP Fundamentals: The What, Why, How, and the OMG Impact

The Model Context Protocol (MCP) is reshaping how we extend AI systems, and this session breaks down everything you need to know to get started. Join Andrew Hess and Daniel Christian, as they will explore the core fundamentals of MCP—what it is, how it works, and why this new standard creates powerful benefits for builders, developers, and organizations adopting AI.

You’ll learn why MCP came into existence, the challenges it solves, and how it provides a unified, secure, and scalable way for models to interact with tools, data, and systems. We’ll also compare MCP vs. the connectors you’re already using in Power Platform and Microsoft 365, clarifying where each shines and how MCP changes the future of extensibility across the AI ecosystem.

To make it real, we’ll walk through live examples of existing MCPs, demonstrating how they work, what they unlock, and the “OMG” moments that make this protocol such a game changer.

Whether you’re new to Model Context Protocol or looking to elevate your Copilot strategy, this session will give you the understanding and excitement to confidently put MCP to work.

Wednesday 1:40 PM - 2:50 PM · Room S102bc

Building the Foundation of Your Data Protection Program with Microsoft Information Protection

All organizations store sensitive information. This information can be sensitive to the organization itself, to you as an employee, to you as a customer, or in any number of other ways. All businesses have a responsibility to keep that information safe. Organizations are learning that data protection is not fully realized with a single feature but with the collaboration of multiple solutions to create a fully realized data protection program.

Join David Drever as he illustrates how Microsoft Purview Information Protection (MPIP) provides the foundation necessary to build out a robust and versatile data protection program. He'll cover the many features of MIP, how it can protect the organization’s sensitive information, leading practices in implementing the technologies and processes, and how MPIP is the foundation for many other features within Microsoft 365 that work together to protect your information.

Wednesday 3:30 PM - 4:40 PM · Room S102bc

Introduction to Microsoft Copilot for Security

Staying ahead of security risks requires cutting-edge tools and technologies. This session will explore how Copilot for Security revolutionizes threat detection, response, and automation. Discover the key features of Microsoft Copilot for Security, learn how to configure its capabilities, and see examples of its impact. Whether you’re a seasoned security professional or new to the field, this session will equip you with the knowledge and tools to enhance your organization’s security posture.

Thursday 10:40 AM - 11:50 AM · Room S102bc

Implement the Top 10 Security Features for Microsoft 365

Microsoft 365 is a great platform complete with collaboration tools for all types of communication. By default, Microsoft provides core Security capabilities to protect the service itself, as well as controls that are available as needed for any organization. However, most organizations do not implement them or even know where they are. Upon reading Microsoft’s documentation, there are hundreds of different configuration options that control end-user authentication, control external access to restricting downloading of content. Knowing which settings to enable or disable, and their impact on overall security is critical to a better security posture. In this half-day workshop, we will walk through not only understanding but also implementing the top 10 security controls and features that every Microsoft 365 tenant needs enabling.

Thursday 12:50 PM - 2:00 PM · Room S102bc

Avoiding Agent Anarchy: Governance Strategies for Microsoft Copilot Studio

As AI capabilities expand across Microsoft 365, organizations face a new challenge: how to empower users with Copilot and agents without letting governance spiral out of control. In this session, we break down the must-have strategies for keeping your environment secure, compliant, and productive.

Learn how to control and monitor Copilot usage across your tenant, including best practices for responsible AI oversight, activity tracking, and ensuring these powerful tools are used effectively and safely.

We’ll also explore how to govern both full agents in Copilot Studio and Lite agents in Microsoft 365 Copilot, giving you practical frameworks for creation permissions, lifecycle management, boundary-setting, and scalable enablement.

Whether you're a governance lead, admin, or AI program owner, you'll walk away with actionable guidance to prevent “agent anarchy” while still unlocking innovation across your organization.

Thursday 12:50 PM - 2:00 PM · Room S103d

Secure and Protect AI Usage in your Organization with Microsoft DPSM

Organizations everywhere are using and adopting AI to improve productivity, gain new insights and amplify creativity! However, organizations are concerned about how they're storing and sharing their data and if users adopting generative AI will lead to data loss. They're concerned about not only Microsoft 365 Copilot, but also Chat GPT, Gemini and other AI solutions their employees might be using. Microsoft Data Security Posture Management (DPSM) provides a set of capabilities so you can safely adopt AI without having to choose between productivity and data protection. It enables organizations to discover and view analytics on generative AI activities in the organization, to enforce policies to protect data and prevent data loss in AI prompts, and comply with regulations by applying controls for data handling and storage. It supports not only Microsoft 365 Copilot, but also many other third-party generative AI solutions your users might be interacting with as well as agents. In this session, you'll learn about how Microsoft DPSM works to protect your organization. You'll see the analytics it provides and the policies it can enforce. We'll demo how it will become a game changer for protecting your organization as you progress in the era of AI.

Friday 9:00 AM - 10:10 AM · Room S102bc

Guardrails for the Future: Securing, Governing, and Managing Copilot Data at Scale

As Microsoft Copilot introduces a wave of new data sources and content types, organizations must rethink how they manage, secure, and govern this evolving digital landscape. In this session, we’ll dive into the 10+ new data sources Copilot creates and explore the implications for data discovery, classification, and protection. We will show you how to: • Identify and cleanse sensitive data before it becomes Copilot-accessible • Understand and control what information is visible to users across your environment • See how tools like Microsoft Purview can be used to establish internal guardrails and enforce compliance • How to manage SharePoint and apply effective data labeling strategies • Build and maintain ethical AI guardrails to ensure responsible Copilot usage • Understand how AI is being exploited—and the tools organizations are using to defend against emerging threats Whether you're a security leader, IT admin, or data governance professional, this session will equip you with the knowledge and tools to confidently manage Copilot’s impact on your organization’s data ecosystem

Friday 12:30 PM - 1:40 PM · Room S102bc

Implementing Microsoft 365 Data Loss Prevention: A Real World Approach

As more and more organizations' content is stored in cloud locations, it can become further at risk for accidental or malicious misuse. Users make good use of cloud collaboration features to share documents with others. Information contained within documents or even the intended recipient of the files may not be properly considered before transmission. This can often lead to data loss and poses significant risks to the organization. To protect against the loss of data control, organizations are looking for solutions that protect the data when it is shared.

Join David as he takes a practical approach to understand data loss prevention techniques and capabilities available within Microsoft 365. David will also provide a real-world approach to implementing the technologies with a strong consideration of the balance of protection and user experience.