Modern Management Summit 2026

This session will provide a comprehensive introduction to table-top cybersecurity exercises, focusing on their importance, design, and execution. Participants will gain insights into the benefits of conducting table-top exercises, including improved incident response readiness, enhanced communication and coordination among stakeholders, and identification of gaps in policies and procedures. Practical guidance will be provided on structuring exercises to align with organizational objectives, selecting relevant scenarios, and engaging participants effectively.

If you’ve ever managed multiple Intune tenants, you know the feeling:different policies, different apps, different baselines… and the same tasks repeated over and over — just with a slightly different logo each time.

In this session, Scaling Intune Across Tenants with Microsoft Graph API, we’re going to show you how to take back control.

We’ll start with a simple introduction to Microsoft Graph API — what it is, why it matters, and how it can become your best friend when you're juggling multiple environments. No heavy theory, just the essentials you need to understand how it works under the hood and why it’s so powerful.

From there, we’ll look at real multi-tenant challenges:
✔️ Keeping configurations consistent
✔️ Onboarding new tenants without spending your entire weekend on it
✔️ Fixing drift before your phone blows up
✔️ Getting insights across all your customers without checking 20 portals

Using PowerShell and Graph API, we’ll walk through practical examples that show how automation can turn hours of manual work into a couple of seconds. You’ll see how you can standardize setups, deploy apps and policies across tenants, and pull reporting — all from one place.

This session is built on real-world experience, not theory. Expect honest explanations, clear code samples, and tips you can use the moment you get back to work. And of course, plenty of demos — because seeing it in action is half the magic.

Whether you’re an MSP, part of an enterprise with multiple tenants, or simply tired of doing the same tasks repeatedly, you’ll walk away with strategies that actually make your day easier.

Kusto Query Language (KQL) is a powerful tool for endpoint admins managing Windows environments.

This beginner-friendly session demystifies KQL, breaking down its syntax and demonstrating its use in data analysis. Through practical examples using tools like Intune’s Single and Multi Device query, Intune data within Log Analytics, ConfigMgr's CMPivot, and Microsoft Defender’s Advanced hunting, you'll learn to craft queries that provide insights, troubleshoot issues, and enhance management capabilities. By the end, you'll have the foundational skills to confidently use KQL in your IT operations.

When companies are affected by a breach, usually they contact an Incident Response provider to get help eradicating the threat actor from their environment.

This procedure generally speaking takes place when all computers and servers are encrypted and the only thing that matters is the RTO and RPO.

This session however, will look at one case where the threat actor was unable to execute their end goal.

Join this session to learn a number of hardening settings you must have in place, tips and tricks on monitoring, and last but not least the importance of end user awareness.