Thursday March 19, 2026
10:00AM PT | 1:00PM ET
60 minutes – Interactive Office Hours
Many security teams do not have a complete inventory of SaaS applications connected to their Microsoft 365 tenant. In our 2024 State of SaaS Security research, nearly half of respondents estimated fewer than 10 connected applications. In practice, most enterprise environments contain significantly more integrations, each with its own permissions, configurations, and potential risk considerations.
This session focuses on the fundamentals of evaluating and strengthening Microsoft 365 security in a SaaS-connected environment. We will review common SaaS attack patterns, discuss the tactics used against cloud productivity platforms, and walk through a practical approach to monitoring integrations, identifying configuration risks, and improving visibility.
The format is interactive and discussion-driven. Bring real questions from your environment. The goal is to leave with a clearer understanding of how to assess SaaS-connected risk within Microsoft 365 and where to focus next.
Learning Objectives:
- Spot and Grasp the SaaS Threat Scene: Identify current threats, vulnerabilities, and preferred attack tactics in SaaS setups.
- Get the Basics of Security TTPs: Have a foundational understanding of the strategies attackers use against SaaS platforms.
- Build Simple SaaS Security Architecture: Real time monitoring of these SaaS products for security issues and security posture state changes.
- Secure Application Configurations: Identify and tackle prevalent misconfigurations that risk Microsoft 365 data exposure.