The best practices and trade-offs about OAuth apps management are going to be revealed during the session.

Agenda:
• Cyber Security vs Business Productivity
• Consent terminologies
• Disable user consent vs Users can consent to apps
• Balancing security and productivity:
- Risk-based step-up
- Admin consent request workflow
- Publisher verification
• App permissions consent
- What can be wrong with App permissions consent
• Detecting and alerting of suspicious OAuth apps
• Conclusions

Speaker:
Dmitry Kulko
Dmitry is a Senior Customer Engineer with extensive experience and skills, and has been working at Microsoft for about seven years. He has deep knowledge of Modern Identity and Microsoft Enterprise Security. Dmitry combines engineering and technical coaching to empower organizations to achieve more.