Merill Fernando  

@[email protected]
1.7K Followers
771 Following
1.6K Posts
Product Manager @microsoft | entra.news CxP #identity #entra #graphpowershell
Dad β€’ Dev β€’ He/Him β€’ πŸ‡¦πŸ‡Ί β€’ πŸ‡±πŸ‡° β€’ Wurundjeri Country β€’ Toots are my own. @merill on Twitter
Websitehttps://merill.net/about/
Twitterhttps://twitter.com/merill
LinkedInhttps://www.linkedin.com/in/merill
GitHubhttps://github.com/merill
ProfileHe/Him
Newsletterhttps://entra.news
Merill Fernando  1d ago

New Entra Chat! πŸŽ™οΈ Christina Morillo, Senior Director of InfoSec for the New York Giants, shares her journey from help desk to security leader.

Learn why a "learn-it-all" mindset & storytelling are essential for growth. πŸš€

#InfoSec #Identity #EntraChat #CareerGrowth #WomenInTech

Merill Fernando  3d ago

πŸ‘‹ Check out this new Microsoft Entra blog post πŸ‘‡

Run Global Secure Access with confidence: Introducing the GSA Operations Guide

https://techcommunity.microsoft.com/t5/microsoft-entra-blog/run-global-secure-access-with-confidence-introducing-the-gsa/ba-p/4524891

Run Global Secure Access with confidence: Introducing the GSA Operations Guide

Use the new Operations Guide to adopt alert-first workflows, standardize operations, and run Global Secure Access more reliably every day.

TECHCOMMUNITY.MICROSOFT.COM
Merill Fernando  5d ago

πŸ‘‹ Check out this new Microsoft Entra blog post πŸ‘‡

Build AI agents for production with secure identities from day one

https://techcommunity.microsoft.com/t5/microsoft-entra-blog/build-ai-agents-for-production-with-secure-identities-from-day/ba-p/4524606

Build AI agents for production with secure identities from day one | Microsoft Community Hub

Learn how Microsoft Entra Agent ID and the Agent 365 SDK help developers help secure AI agents from the start.

TECHCOMMUNITY.MICROSOFT.COM
Merill Fernando  6d ago

This week I'm starting work on my micro startup: Jozra

Landing site is up at jozra.com

The name has a special meaning to me. It's a combo of my children's names.

I’m excited, nervous, and very ready to build in public.

I’ll be sharing the founder journey here as I build.

Follow along.

Merill Fernando  6d ago

πŸ‘‹ Check out this new Microsoft Entra blog post πŸ‘‡

What's New in Microsoft Entra: June 2026

https://techcommunity.microsoft.com/t5/microsoft-entra-blog/what-s-new-in-microsoft-entra-june-2026/ba-p/4517885

What's New in Microsoft Entra: June 2026 | Microsoft Community Hub

Welcome to the June edition of our monthly newsletter, summarizing the latest news and developments in the exciting, ever-evolving world of Microsoft...

TECHCOMMUNITY.MICROSOFT.COM
Merill Fernando  6d ago

Have you had a chance to read this week's Entra.News?

Read at https://entra.news/p/entra-news-151-this-week-in-microsoft

Merill Fernando  May 31

Passkeys are easy to demo.

Rolling them out to millions of users? That’s where things get interesting.

In this episode of http://Entra.Chat, Vincent Delitz shares 5 practical lessons from large-scale passkey deployments.

Watch the full episode at https://entra.news/p/5-lessons-from-rolling-out-passkeys

Show threadMerill Fernando  May 28

The goal is simple:

πŸŒ€ Make secrets rare.
πŸŒ€ Make permissions least privileged.
πŸŒ€ Make app authentication intentional.

πŸ«† Because attackers don’t need your users’ passwords if they can get access to your app secrets.
14/14

Show threadMerill Fernando  May 28

Also make sure you have a process to regularly review:

App owners
Credential expiry
Unused apps
Graph/API permissions
High privilege service principals
Apps with secrets
Apps without recent sign-in activity

PS We'll go into these in upcoming tips...
13/14

Show threadMerill Fernando  May 28

Hardening actions I recommend:

βœ… Move apps away from shared secrets
βœ… Use Managed Identity for Azure resources
βœ… Use Workload Identity Federation where possible
βœ… Deploy Conditional Access for workload identities
βœ… Implement secret scanning
βœ… Monitor risky app credentials
12/14