M365Microsoft 365

Trust, but Verify Your Microsoft 365 Tenant

6 July 2026  ·  1 min leestijd  ·  Kevin Oosterlaken

This is the first post on this blog, so a short explanation of what you can expect here seems appropriate.

I work daily in Microsoft 365 environments where compliance is not a paper exercise but a requirement: BIO2, NIS2, and the Dutch Cybersecurity Act. What stands out most in that work is the gap between thinking everything is configured correctly and being able to prove that it is. Almost every organization has policies. Far fewer organizations can demonstrate, on any random Tuesday afternoon, that their tenant actually complies with those policies.

That gap is what this blog is about.

What you'll find here

The topics will be familiar if you've already looked around this site:

You won't find rewrites of product announcements or "10 tips" listicles. Instead, you'll find real-world scenarios I've encountered, worked out into something you can reproduce yourself.

Publishing cadence

I'm aiming for a weekly schedule, with the usual caveat that client work comes first. If you don't want to miss a post, there's an RSS feed, and I announce the larger articles on LinkedIn.

Have a question or a topic you'd like to see covered? Get in touch.

← Alle posts Contact