• Introduction
• Chapter 1: Understanding Work IQ
• Chapter 2: Establishing trust: How we govern Work IQ
• Chapter 3: How our employees experience Work IQ day-to-day
• Chapter 4: Work IQ beyond Microsoft 365
• Chapter 5: Working with Work IQ: The Customer Zero impact
• Conclusion: Where we’re heading: Work IQ, Fabric IQ, and Foundry IQ

Improving agentic workplace results with Work IQ

Adding deeper contextual intelligence to Microsoft 365 Copilot responses

Enterprise knowledge is perhaps a company’s most valuable asset, but for AI and agents, it can be difficult to take advantage of. Years of emails, documents, chats, meeting recordings, and workflows have created enormous volumes of rich data, scattered across systems and teams in a fragmented way. This data captures how work actually happens, but harnessing it broadly—especially in ways that support better decision making—has traditionally been almost impossible.

Enter the power of agentic AI tools.

In the modern agentic workplace, employees and teams here at Microsoft and elsewhere are finally able to take advantage of all that rich, unstructured knowledge. Microsoft 365 Copilot and AI agents can now access all this data and not simply retrieve information but also reason over it—learning how work gets done and then providing rich contextual responses and guidance.

“By giving AI the ability to reason across the vast repositories of unstructured data that our enterprise possesses, Work IQ fundamentally changes what’s possible for Copilot, agents, and employees alike.”

Brian Fielder, vice president, Microsoft Digital

We’ve given this new, dynamic way of leveraging your enterprise data to boost productivity a special name: Work IQ.

Work IQ represents a big step forward.

For us, it’s enabling the concept of “intelligence on tap” across our enterprise, making our organizational knowledge and work context accessible in real time, grounded in the signals employees generate every day. This transforms unstructured data from a challenge into a strategic resource—one that can support workflows at scale.

“Work IQ represents the next phase of the agentic workplace of the future—and it’s here,” says Brian Fielder, vice president of Microsoft Digital. “By giving AI the ability to reason across the vast repositories of unstructured data that our enterprise possesses, Work IQ fundamentally changes what’s possible for Copilot, agents, and employees alike.”

“It’s not really a brand-new capability, but more an evolution of what users already know, which is access to the grounding data in their Microsoft tenant. The difference is that Work IQ adds an additional layer to provide more context, allowing for richer and more relevant results.”

Aisha Hasan, principal product manager, Microsoft Digital

Internally here at Microsoft, Work IQ is having a tangible effect on how we work every day. A few simple scenarios that illustrate the power of Work IQ—described in greater detail in Chapter 3—include:

• Helping our employees understand which emails require their immediate attention, so they can focus on what matters
• Connecting meeting transcripts to the people involved in a meeting, accelerating actions through a deeper understanding of the participants and their work patterns
• Enabling our employees to create, organize, and publish Microsoft 365 content more quickly and with higher quality

This is just the beginning. As AI continues to permeate our business workflows, nearly every day-to-day task at Microsoft will be simplified, expedited, and improved by the intelligence of Work IQ. This includes the agents that are managing routine business and operational processes, giving them critical business context that helps their reasoning abilities.

This guide explores the ways that Work IQ is impacting how work gets done at Microsoft, and how Microsoft Digital—the company’s IT organization—has played a key role as Customer Zero, validating how Work IQ behaves under real enterprise conditions. It also examines the challenges and considerations that IT organizations will face as we enter an era where AI agents have access to unstructured data to complete workflows.

Chapter 1: Understanding Work IQ

Providing deeper insights through the power of context

Before we can fully explore the implications of Work IQ, it’s important to start with a clear understanding of what it is.

Work IQ is not a new application or service that users interact with directly. Rather, it’s a shared intelligence layer that continuously interprets work happening across the tenant. Understanding this distinction is critical, because it explains why Work IQ shows up everywhere Microsoft 365 Copilot works—and why it must be treated as foundational infrastructure, not as optional, add‑on functionality.

“It’s not really a brand-new capability, but more an evolution of what users already know, which is access to the grounding data in their Microsoft tenant,” says Aisha Hasan, a principal product manager in Microsoft Digital. “The difference is that Work IQ adds an additional layer to provide more context, allowing for richer and more relevant results.”

Work IQ is built on three layers:

• Data: It unifies signals from files, emails, meetings, chats, and business systems.
• Memory: It builds persistent understanding of how people and teams work.
• Inference: It combines models, skills, and tools to reason and act.

At a high level, Work IQ consists of the systems that collect and interpret signals from everyday work. These signals come from many familiar Microsoft 365 applications—Word, Outlook, PowerPoint, Teams, SharePoint, and more—as well as structured data sources (such as those contained in Power Apps and Dynamics 365 resources).

The fact that Work IQ unifies unstructured and structured data into a shared ontology is a key differentiator from traditional search tools. This combination, referred to as semantic unification, means that it can combine the authoritative data contained in structured sources with the intent, nuance, and narrative found in unstructured data.

Work IQ draws from a broad range of work data from your Microsoft tenant. The unstructured data includes:

• SharePoint sites, files, and other content
• OneDrive activity that reflects individual work and collaboration patterns
• Teams content, including chats, channels, and meeting data
• Outlook emails and attachments

In addition, calendar signals—such as meeting participation, recency, and frequency—add time-based context that helps Work IQ understand priority and relevance of different data. This is what it means to go beyond simple information retrieval.

When all these are combined, it provides rich context that allows Work IQ to reason across all our employees’ work in a way that would be impossible if each signal were evaluated independently.

In practice, this means that when an employee asks a question about a current work project in Copilot, the tool’s response is not simply informed by the model’s capabilities or general source material. Responses are shaped by Work IQ’s understanding of the employee’s role, recent work, collaboration patterns (who they work with), and the larger enterprise context and conversations surrounding the question.

How our employees interact with and understand Work IQ depends on their role in the organization.

Our personas and their relationship with Work IQ

End user

Gains richer, context-aware agent conversations

IT admin

Enables and governs Work IQ access

Agent builder

Manages data connectors quickly and easily

Security professional

Knows that sensitive data stays protected with Work IQ

AI agents using Work IQ behave similarly. They use the intelligence to ground their reasoning in real organizational data, ensuring that their actions and recommendations are aligned with how work is happening inside the tenant. Although there are differences in how they are configured, all agents in a Microsoft tenant can be set up to take advantage of the power of Work IQ.

The impact of Work IQ on our company has been dramatic—we’re seeing agentic responses and actions that go deeper than surface-level answers. Our ability to reason over both our structured and unstructured data is producing richer, more nuanced contextual results that are boosting our productivity.

As your organization assesses your level of AI readiness, think of Work IQ not as an abstract concept but as critical infrastructure. It’s the key to connecting enterprise knowledge, trust, and productivity in a single, shared foundation.

Work IQ versus Microsoft Graph

Work IQ does not replace what we call the Microsoft Graph, the general term for unified, API-enabling, secure, permission-aware access to Microsoft 365 data, insights, and services. While the Microsoft Graph provides our employees with access to all their work data, Work IQ turns those signals into meaningful context that AI can reason over. In other words, Graph answers the general question “what info exists,” while Work IQ interprets what that information means and weaves it into responses to make them better.

Key takeaways

As you prepare for Work IQ, these points can help frame how to think about its role in your organization:

• Work IQ is foundational infrastructure, not a user-facing feature. It operates as a shared intelligence layer across the tenant, continuously interpreting signals from everyday work.
• Work IQ draws its power from context, not isolated data. By combining signals from email, meetings, documents, calendars, and collaboration patterns, it enables Copilot and agents to reason about work in a way that goes beyond simple search or retrieval.
• Better agentic outcomes depend on Work IQ being in place. When agents and Copilot are grounded in Work IQ, their responses and actions align more closely with real enterprise work, delivering better relevance and measurable productivity gains.

Learn more

How we did it at Microsoft

• Discover how Work IQ is supercharging our AI usage at Microsoft. This post delves into the ways that Work IQ is boosting agentic response and changing the way we work at the company.  
• See how we’re embracing this agentic moment at Microsoft. This story covers how we use the power of Copilot and AI agents to boost employee productivity.
• Explore our IT playbook for the AI era and learn how we’re becoming a Frontier Firm. This article shares our journey as an IT organization toward the AI-powered future.

Further guidance for you

• Learn more about Work IQ with this post from the Microsoft 365 Copilot Blog.
• Check out this Microsoft Learn overview of the different Work IQ agent tools.
• Read all about the Microsoft Graph on the Microsoft Learn site.

Chapter 2: Establishing trust: How we govern Work IQ

Building on an existing foundation of solid governance and security

Like all Microsoft products, Work IQ was built with security foremost in mind. As the IT team at Microsoft, it is our responsibility to work in tandem with the product groups to ensure that all data that Work IQ has access to is well governed and secure.

The fact that Work IQ does not introduce new data into Microsoft 365 makes meeting this commitment easier. Embedded directly into the Microsoft 365 intelligence stack, Work IQ inherits the same compliance, security, and access controls that already govern the tenant.

“With great power comes great responsibility, and it’s up to your IT team to think about what it means to give your users full access to all this Work IQ data. It can greatly accelerate what people can build and what they can do.”

David Johnson, principal PM architect, Microsoft Digital

For Microsoft 365 Copilot–native agents, Work IQ is enabled to provide governed, context‑aware access to Microsoft 365 work data without requiring developers to build or manage individual data connectors.

As our governance experts note, this represents an inherent trade-off. Giving an agent access only to certain isolated data types reduces risk but also limits its value. Granting access through Work IQ means an agent can reason across everything the employee can access. This simplifies enablement but also requires stronger confidence in governance foundations.

Microsoft 365 intelligence stack

As our governance experts note, this represents an inherent trade-off. Giving an agent only access to certain isolated data types limits risk, but it also limits its value. Granting access through Work IQ means an agent can reason across everything the employee can access. This simplifies enablement but also requires stronger confidence in governance foundations.

“With great power comes great responsibility, and it’s up to your IT team to think about what it means to give your users full access to all this Work IQ data,” says David Johnson, a principal PM architect in Microsoft Digital. “It can greatly accelerate what people can build and what they can do. At the same time, organizations will want to think about the downstream implications of access.”

Exposing underlying governance issues

Our overall solution was to anchor Work IQ to our governance and security policies that already existed for our data. Sensitivity labels, data protection rules, and data-loss prevention policies remain the primary guardrails, as they do for all data across our enterprise. All these controls live at the data layer.

A critical aspect of this governance model is how sensitivity labels propagate through Work IQ experiences. In Microsoft 365, the label that is applied to a source document determines the label of any derived outputs, including summaries, insights, or AI-generated responses. This ensures that users have immediate context about the information’s sensitivity and how it should be handled. The label effectively travels with the data, reinforcing both user awareness and policy enforcement.

Labels also play a key role in controlling access beyond simple permissions. Even if a user has baseline access to a location, sensitivity labels can further restrict whether content can be extracted, shared, or surfaced through AI experiences. In some cases, organizations can configure policies so that content with specific labels is not returned at all in Work IQ or Copilot responses. This gives IT teams an additional layer of control to prevent exposure of particularly sensitive information.

These labeling principles extend across collaboration scenarios as well. For example, meeting labels determine the classification of all downstream artifacts—including recordings, transcripts, and notes. Sensitive discussions remain governed consistently, even as Work IQ helps make them more discoverable and actionable.

For example, even with Work IQ enabled, a document labeled Highly Confidential cannot be exposed through Copilot to someone without access, even if it is referenced in a Teams meeting transcript or included in an AI-generated summary. Copilot may understand that the document played a role in a particular decision, but it cannot extract or reveal its contents beyond what permissions allow.

This distinction—discoverable versus extractable—proved critical in our deployment of Work IQ. The intelligence layer makes data relationships visible, but it does not override protection. In one internal scenario, a sensitive document was found to be accessible through a Copilot query. The root cause was not Work IQ, but a missing sensitivity label—the AI tool simply honored what governance allowed. We treated the incident as a governance signal and corrected labeling at the source.

Remember that Work IQ can only access data that:

• Exists inside your Microsoft 365 tenant or is explicitly connected via approved connectors
• The current user already has permission to access
• Is allowed by tenant‑level admin policy, compliance, and sensitivity controls

The security and governance considerations also extend to how new agents are released across our enterprise. For example, an agent created for use within one internal team has lighter governance controls than one that is published to our internal Microsoft agent portal, which offers companywide access. The latter requires additional review, approval, and monitoring as part of our due diligence for governance and security.

Ultimately, Work IQ adheres to all of the security and governance policies and procedures in our tenant, preserving the trust that our security-first approach creates and maintains.

Key takeaways

The following are important considerations for data governance and security when you consider adopting Work IQ for your organization:

• With Work IQ, governance and security are top-line priorities. We made sure that Work IQ would always inherit the same compliance, access controls, and data protection policies that already govern Microsoft 365 data.
• Work IQ doesn’t introduce new data access—it changes how existing access functions. By packaging tenant data into a single intelligence layer, it facilitates easier agent builder access to the data you already have in your Microsoft 365 tenant.
• The distinction between discoverable and extractable data is central to safe AI deployment. Copilot and other agents can understand how work information is connected and referenced without exposing protected content beyond existing permissions.
• IT admins and leaders should consider the ramifications to their tenant. Work IQ makes agents more powerful and context-aware by opening up access to vast quantities of Microsoft 365 data, but IT professionals should always think through downstream effects on data security and governance.
• Work IQ surfaces governance gaps instead of masking them. When issues arise—such as misapplied sensitivity labels—the solution is not to restrict intelligence, but to strengthen data governance at the source.

Learn more

How we did it at Microsoft

• See how we’re governing AI agents at scale internally. This readiness guide explains how we approach security and compliance for AI agents at Microsoft.
• Read about our experience tackling Microsoft 365 Copilot governance. This guide details our internal governance efforts for Microsoft 365 Copilot as we rolled the tool out across our organization.
• Explore how we’re powering data governance at Microsoft with Purview Unified Catalog. This story explains how Purview is helping us redefine our internal approach to data governance.

Further guidance for you

• Learn more about governance and security for AI agents and find out how to keep your AI initiatives secure.

Chapter 3: How our employees experience Work IQ day to day

Transforming the way work happens at Microsoft

To understand how Work IQ shows up and impacts the workflows of people across our organization, we spoke to several Microsoft employees. They explained how Work IQ makes a difference in the results they’re getting from Copilot and other agentic AI tools and how the intelligence is supercharging their work.

Work IQ in Outlook    

Outlook email and calendars are the space where many of our employees feel the heaviest cognitive load of their day‑to‑day work. It’s also where Work IQ is surfacing some of the most innovative ways to help employees accomplish more.

“You open your Outlook in the morning and Copilot—by drawing on Work IQ context and through features like priority scoring and summarization—can help you see which messages need your attention first.”

Matthew Marzynski, principal product manager, core experiences, Microsoft Digital

Rather than treating messages and meetings as isolated items, Work IQ allows Copilot in Outlook to reason across email signals, conversation history, meeting patterns, and calendar behavior to deliver responses that reflect how work actually unfolds.

This means Copilot goes beyond keywords or unread status indicators to determine importance. Through Work IQ, it understands the context of each conversation—which threads are more urgent and relevant to your work and which are less vital.

“You open your Outlook in the morning and Copilot—by drawing on Work IQ context and through features like priority scoring and summarization—can help you see which messages need your attention first,” says Matthew Marzynski, a principal product manager for core experiences in Microsoft Digital. “Copilot is now beginning to offer proactive nudges to help you stay on top of what matters, surfacing what’s changed and what you need to focus on.”

The deeper context also aids Outlook in generating rich summaries of lengthy threads, which can highlight owners, decisions made, and next steps. This allows employees who are added to the thread or who have been away to quickly catch up on complex conversations without manually digging through seemingly endless past messages or related documents.

Marzynski frames Work IQ as an invisible intelligence layer that quietly reshapes how Outlook behaves over time. His core thesis is simple: Users never have to think about Work IQ; they just observe that Outlook is more helpful than before, and that their work gets easier.

“There are no complex commands to learn or rules to create. The intelligence works behind the scenes as you use Outlook,” he says. “Your inbox just gradually feels more relevant. Outlook adapts to how you work, rather than the reverse, and becomes more like an assistant instead of a filing cabinet of communications.”

Work IQ in Teams + Researcher Agent

Another immediate and tangible way our employees experience Work IQ is in Microsoft Teams meetings. The value begins the moment a meeting is recorded. Transcripts, speaker contributions, shared content, and AI‑generated summaries are automatically captured and folded into the attendees’ ongoing work context—without requiring manual note‑taking or follow‑up documentation.

Ray Peer is a senior product manager in Microsoft Digital who observed the power of Work IQ in a recent project he completed with our internal legal team. According to Peer, the team was struggling to find specific content in their data lake, which contains tens of thousands of documents, articles, and other content items.

“Based just on what people shared in that meeting, and what it knows about their work and about SIPOC diagrams, Researcher was able to generate a fully formed, detailed solution for me. That’s the intelligence layer at work.”

Ray Peer, senior product manager, Microsoft Digital

So, he facilitated a Teams meeting for a free-form process‑mapping discussion with a few members of Microsoft Legal. Days later, he put the meeting transcript into the Copilot Researcher agent and asked it to generate a structured SIPOC (Suppliers, Inputs, Process, Outputs, Customers) diagram and accompanying documentation.

He was amazed by the results.

“Based just on what people shared in that meeting, and what it knows about their work and about SIPOC diagrams, Researcher was able to generate a fully formed, detailed solution for me,” Peer says. “That’s the intelligence layer at work. It reasoned over what we said—there were no visuals shared or anything—and it came up with something that I could cut and paste into the final format. I used to have to do that manually, and it took hours.”

Work IQ connected the meeting transcript to the people involved, the SharePoint sites they used, and similar work done elsewhere in the organization. Copilot was able reason across different tools and unstructured data, rather than just treating the meeting transcript as a static artifact.

Note that this works differently from third‑party meeting tools, because the data never leaves the tenant. Work IQ treats Teams meetings as part of a continuous Microsoft 365 workstream—honoring permissions and sensitivity labels throughout—so conversations can become durable inputs for future work without adding risk or effort for employees.

Work IQ in SharePoint

In SharePoint, Work IQ is helping employees create, organize, and publish content by drawing on the rich context of their Microsoft 365 data. Rather than starting from a blank page or text block, content development is sped up as Copilot draws on their relationships, collaboration history, and metadata to help produce sites and documents.

“Copilot will recommend text changes, but also layout suggestions, image and graphic options, and other helpful assistance. It makes it easy to create more compelling content, more rapidly.”

Sam Crewdson, principal product manager, Microsoft Digital

For example, when you ask Copilot to create a new section in a SharePoint site—such as a project overview, status update, or other material—Work IQ enables the tool to look deeper than the prompt itself. When generating the content, it can draw on documents you’ve recently edited, your emails and Teams conversations, and related work happening across the organization. The output you get from Copilot is highly relevant and grounded in real work.

Sam Crewdson is a principal product manager at Microsoft Digital who has been a part of the SharePoint team for more than two decades. He’s excited about what Work IQ is enabling users to accomplish in the product using Copilot, as well as other agentic tools like Knowledge Agent (a domain-specific agent that can drill down on SharePoint sites and libraries).

“Copilot in SharePoint is now able to not only help you produce better written content, it’ll also offer more contextual and visual help,” Crewdson says. “Copilot will recommend text changes, but also layout suggestions, image and graphic options, and other helpful assistance. It makes it easy to create more compelling content, more rapidly.”

Another emerging scenario Crewdson described is conversational agentic authoring in SharePoint. In these workflows, employees refine their SharePoint pages by interacting directly with an agent—asking it to add sections, adjust tone, or suggest visuals. Over time, these agents will reduce repetitive setup steps and help teams move from draft to publish faster.

Across these experiences, Work IQ is helping shift SharePoint from a manual content creation tool to an application where agents automate everyday content tasks based on your overall work context and related Microsoft 365 data.

Key takeaways

Here are some things to remember when thinking about how Work IQ can impact your employee workflows:

• Work IQ reduces cognitive load in Outlook by understanding work context. By recognizing decision‑driven threads, collaboration patterns, and urgency over time, Copilot helps employees focus on what truly needs their attention without relying on manual rules or keyword searching.
• Email and calendar intelligence improves prioritization, summaries, and follow‑through. Work IQ allows Copilot to highlight owners, decisions, and next steps in long threads and nudge users toward timely action, based on how they typically work with colleagues.
• Teams meetings become durable inputs for future work when powered by Work IQ. Copilot and the Researcher agent can reason across meeting content, people, and related SharePoint work—creating structured outputs while honoring tenant security and permissions.
• Work IQ helps Copilot speed up and enrich content creation in SharePoint. By drawing on Microsoft 365 data, Copilot can generate more relevant content for your SharePoint sites and offer helpful layout and graphics suggestions that accelerate the site development process.

Learn more

How we did it at Microsoft

• See how to pick the right Copilot for the job. This post explores different Copilot agents and modules and discusses how to choose the correct one for your task.
• Discover how we deployed Copilot internally at Microsoft. This step-by-step guide breaks down the deployment and adoption process we followed to roll out this groundbreaking technology across our entire organization.
• Find out how we’re using AI to redefine work in Outlook. This blog post explores the latest AI features that our employees are using to work smarter in Microsoft Outlook.
• Learn five ways we’re getting more out of Teams in the era of Copilot and AI. This article details different Teams features that take advantage of the latest in AI technology.
• Read about the lessons learned using SharePoint agents at Microsoft. This post covers some of the insights gleaned through our deployment of different SharePoint agents.

Further guidance for you

• Check out the Microsoft Copilot Success Kit and learn how to accelerate your Copilot implementation with templates, onboarding guides, and technical readiness resources.
• Explore the company’s essential guide to Copilot adoption for practical steps to onboard, engage, and measure impact in your organization.

Chapter 4: Work IQ beyond Microsoft 365

Integrating Work IQ across the enterprise

As organizations adopt Copilot and other AI agents at scale, the question arises: How does Work IQ show up in different contexts? Is it something that only impacts your work in Microsoft 365 applications, or does it also play a role in external applications and other areas of your IT enterprise?

Based on our experience here at Microsoft, the answer is that Work IQ shows up differently depending on where it’s consumed, and those differences matter for admins, agent developers, and other IT professionals.

For most of our employees, Work IQ operates entirely behind the scenes inside Microsoft 365. It is not something users configure, enable, or interact with directly. By reasoning over your entire Microsoft 365 data graph, Work IQ improves the results that Copilot generates in apps like Outlook, Teams, Word, SharePoint, Copilot Chat, and GitHub Copilot.

In this mode, Work IQ is:

Built directly into the Microsoft 365 intelligence stack

Governed by existing permissions, sensitivity labels, and compliance policies

Invisible to users, with no new controls or UI to manage

Continuously learning from signals across emails, meetings, and files

You don’t “implement” Work IQ—it’s already present in first-party Microsoft products by default. If you have enabled Copilot, you are getting the benefits of Work IQ across all of these applications. 

Similarly, any agents you build for Microsoft 365 apps (such as using Agent Builder in Microsoft 365 Copilot) are scoped for use specifically in these apps, rather than outside of them. These agents do not require separate connectors, such as APIs or Model Context Protocol (MCP) servers, to access Work IQ. In fact, Work IQ MCP is a great tool to make your context ubiquitous to whichever agentic experience can be imagined.

Extending Work IQ beyond Microsoft 365: explicit by design

Implementation works somewhat differently outside of native Microsoft 365 experiences. When it comes to custom agents, line‑of‑business applications, or Azure‑hosted solutions, Work IQ does not show up automatically. In these contexts, it is intentionally enabled by our builders and governed by our administrators.

In these scenarios:

• Developers access Work IQ through APIs or MCP servers
• Admins explicitly control which capabilities are enabled or disabled
• Work IQ provides rich enterprise context without duplicating data
• Permissions and governance remain enforced at the tenant level

For us, this design is deliberate and has advantages. Rather than asking our developers to configure dozens of individual connectors for mail, calendars, files, and meetings, Work IQ offers them a single-entry point for enterprise context. Builder tools like Microsoft Foundry and Copilot Studio allow our teams to take the same Work IQ intelligence that Copilot uses and apply it to workflows that live outside Microsoft 365. Examples include automating newsletters, generating insights for account teams, or powering custom agents to handle specific scenarios.

The key distinction is accountability. Inside Microsoft 365, Work IQ is ambient. Outside it, Work IQ is a conscious architectural choice, one that requires actions upfront to enable.

Work IQ does not “open up new data” when used externally. It ports intelligence, not raw access, applying the same rules no matter where it’s consumed. At the same time, it gives organizations flexibility to decide when and how far that intelligence should travel.

This continuum—from implicit use inside Microsoft 365 to explicit use beyond it—also clarifies our roles:

• Our end users benefit without needing to learn anything new
• Our IT teams retain centralized control at the tenant level
• Our builders gain a faster path to context‑aware solutions

Work IQ works best when treated as a shared intelligence foundation, not a feature toggle. It is present by default where trust is already established, and it can be incorporated deliberately where your organizational requirements or innovation needs demand more reach.

Model Context Protocol servers and Work IQ

For organizations that move beyond native Microsoft 365 experiences and begin building custom agents, Model Context Protocol (MCP) servers are the primary mechanism for connecting those agents to Work IQ. While Work IQ is always available inside Copilot, MCP servers are what make much of that same intelligence accessible to agent builders.

At a high level, MCP servers are an open-standard technology (not proprietary to Microsoft) that act as governed tool interfaces to enterprise context. Each Work IQ MCP server represents a scoped slice of Microsoft 365 signals—such as email, calendar, Teams activity, or SharePoint content—and exposes them in a form that agents can reason over. Rather than wiring individual connectors or APIs for each workload, builders can rely on MCP servers to assemble relevant context automatically, while still honoring permissions, sensitivity labels, and tenant policies.

When we’re building agents, Work IQ becomes explicit, and MCP servers are how our builders declare their intent. This includes determining which types of enterprise context the agent needs, how broadly it should reason across work signals, and where governance boundaries apply.

From an IT perspective, MCP servers also provide a critical control point. Our administrators decide which Work IQ MCP servers are enabled in the tenant and which of our builders are allowed to use them. This ensures that extending intelligence beyond Microsoft 365 remains a deliberate choice rather than an accidental one.

Using these servers to connect with your enterprise data also represents real—but manageable—risk. They make existing permissions more actionable, which can amplify the impact of overshared content or weak data hygiene. The best practice is to treat these servers as governed infrastructure: enable them selectively at the tenant level, start with the minimum set required for defined agent scenarios, restrict usage to approved builders, and pair expansion with regular permission reviews and labeling discipline.

Your readiness plan should be to ensure that governance is in place, then selectively enable MCP servers where agents require deeper context. The servers are the bridge that lets agent builders tap into Work IQ safely, allowing you to bring enterprise intelligence into custom solutions without breaking the trust model that makes Copilot effective at scale.

Key takeaways

Here are some things to remember when thinking about how Work IQ shows up across your organization—especially if you plan to extend this intelligence into custom agents and applications:

• Work IQ is foundational inside Microsoft 365 and intentional outside it. Within Copilot experiences, Work IQ operates implicitly, while custom agents introduce a conscious decision to consume that intelligence through MCP servers.
• Governance principles don’t change when extending Work IQ, but they become more visible. MCP servers enforce existing permissions, labels, and tenant policies, making it critical that governance foundations are solid before agents rely on deeper context.
• Agent builders declare intent through MCP server selection. Choosing which Work IQ MCP servers to use defines what enterprise signals an agent can reason over and how broadly it reflects real work patterns.
• Preparing to extend Work IQ beyond Microsoft 365 is about readiness. Organizations that are already ready for Copilot can selectively enable MCP servers to unlock richer agent scenarios without introducing new security or compliance risk.

Learn more

How we did it at Microsoft

• Learn how we’re shaping AI management at Microsoft with Agent 365. This post discusses how we use the Agent 365 control plane to govern Microsoft 365 Copilot and agents internally.
• Read our complete guide to deploying AI agents internally at Microsoft. This Inside Track readiness guide covers all aspects of how we’ve implemented agentic AI across our organization.
• Discover how we’re unlocking enterprise AI extensibility with Copilot Studio. This story explores how we govern more advanced agents built with Copilot Studio, including connectors, orchestration, and scaled governance.
• Check out how we’re protecting AI conversations at Microsoft with Model Context Protocol security and governance. This article delves into MCP governance through secure-by-default architecture, automation, and inventory for faster, safer agent development.

Further guidance for you

• Read this Work IQ MCP overview on the Microsoft Learn site to find out more about how agents connect using Model Context Protocol servers.
• See the Work IQ Copilot reference on the Agent 365 Microsoft Learn site for further technical detail.

Chapter 5: Working with Work IQ: The Customer Zero impact

Change management lessons from our experience with an ambient intelligence layer

Work IQ wasn’t rolled out across our organization as an abstract platform decision or deployment milestone. Its development has been one aspect of our overall transformation into an AI-first Frontier Firm.

Along the way, Work IQ has been shaped by our long‑standing Customer Zero mission at Microsoft Digital: Using our own products at enterprise scale first, learning directly from how employees experienced it, and allowing those lessons to shape how the technology is refined and extended to customers.

In our tenant, Work IQ benefits emerged gradually through incremental improvements to relevance, context, and intelligence across Microsoft 365. These gains were driven by advances in AI that made it possible to interpret everyday work signals more effectively.

There was no formal product implementation or adoption campaign when we launched Work IQ at Microsoft. As ambient infrastructure, Work IQ is an unseen part of all employee workstreams—nearly every experience benefits from it. At the same time, the power of Work IQ depends on everyone in our organization being effective stewards of their own unstructured data, preserving security, governance, and relevance.

Enablement and adoption

To fully realize the value of Work IQ, we have found that organizations must invest in the foundational behaviors that make their organizational knowledge accessible. One of the key steps in this effort is enabling and encouraging the use of meeting transcripts. Work IQ depends on the artifacts of daily work to build context, and without transcripts, a significant portion of meeting insights and decisions remain inaccessible to the intelligence layer.

Making transcription a standard part of our employees’ everyday collaboration proved essential. Transcripts create a durable, searchable record that Work IQ can connect to documents and actions, helping employees quickly understand what happened, even if they weren’t present. When paired with existing governance controls like sensitivity and meeting labels, organizations can capture this data securely while unlocking great value from this collective knowledge.

This is actually a cultural shift.

We gave our teams clear guidance and encouraged meeting transcription as part of their normal workflow. When paired with the enhancements to meeting recaps in Microsoft Teams, this becomes a powerful tool for preserving and leveraging organizational knowledge.

Of course, Copilot adoption and training efforts were also a vital part of our getting the most from Work IQ. Our employees needed demonstrations of all the things that Copilot could help them accomplish, along with encouragement to jump in and try it out for themselves. Our data shows that internal AI usage has grown significantly over time—from a few thousand users to hundreds of thousands across the company—in large part due to:

• Employee-driven champions programs
• Scenario‑based learning efforts
• Timely and consistent internal communications

Usage also grew internally as our product teams continually refined our AI tools, aided by our collection of user feedback on agentic answers to identify low-quality output and irrelevant detail.

Another major insight we captured was the importance of persistent memory to the Copilot and Work IQ experience. Through our work as Customer Zero, we collected a large volume of feedback from employees indicating that this was a priority—users should not have to repeatedly explain who they are or what they are working on.

The experience was subsequently improved, and Work IQ now helps enable Copilot to remember user history and tailor responses accordingly—delivering summaries for communicators and deeper technical detail for engineers, for example.

Our Customer Zero efforts also validated a critical governance principle for us. As intelligence improved, some teams were surprised by how much context Copilot could surface. In every case, investigation showed that the underlying data access already existed. Work IQ did not change permissions or expose new data—it made existing relationships more visible. This reinforced the importance of strong data hygiene, sensitivity labeling, and permission management as prerequisites for trusted intelligence.

Ultimately, our work as the company’s Customer Zero validated that Work IQ is best understood as shared infrastructure. Its value compounds when organizations focus on readiness—governance, learning, and trust—and allow intelligence to scale naturally across work, rather than treating it as a feature to deploy.

When these conditions are in place, Work IQ quietly raises the quality of Copilot and agent experiences without adding complexity for users or additional burden for IT.

Key takeaways

As you consider how Work IQ might take shape in your own organization, consider these observations from Microsoft Digital’s Customer Zero experiences with this new intelligence layer:

• Meeting transcription is the key. Making sure all meetings are transcribed is essential for Work IQ, so it can build context on how work happens in your organization. This is a technical and cultural change that you need to facilitate and encourage.
• Awareness and learning are keys to usage and feedback. Our internal Copilot adoption grew when employees were shown practical scenarios and encouraged to experiment, supported by champions programs and ongoing internal communication.
• Change management drives results. Use employee champions, role-based immersive learning, and timely internal communications to help your employees understand what Work IQ is and how it can help your enterprise maximize the value of AI.
• Treating Work IQ as shared infrastructure unlocks compound value. When governance, learning, and trust were in place, intelligence could reason across all our rich unstructured data —improving Copilot and agent experiences without adding additional work for users or IT.

Learn more

How we did it at Microsoft

• Read about how we serve as Customer Zero in an AI-powered world. This story describes how Microsoft Digital’s role as Customer Zero has grown and evolved as we move into the Frontier Firm era.
• How to pick the right Copilot for the job. This post explores different Copilot agents and modules and discusses how to choose the correct one for your task.
• Recapping our meetings with Microsoft Teams Premium. This Inside Track story explains how Intelligent Recaps have changed the game when it comes to getting the most out of meetings at Microsoft.

Further guidance for you

• Check out the Microsoft Copilot Success Kit and learn how to accelerate your Copilot implementation with templates, onboarding guides, and technical readiness resources.

Where we’re heading: Work IQ, Fabric IQ, and Foundry IQ

Combining different layers of intelligence to transform the workplace

While impactful on its own, Work IQ is just part of larger story of how we’re using the power of rich data and agentic AI to transform how we work at Microsoft.

“While Work IQ can access your Microsoft 365 data, Fabric IQ will connect to your organizational data, such as analytics. Foundry IQ can leverage both, plus other domain data, to help developers build powerful agentic solutions.”

Naveen Jangir, principal architect, Microsoft Digital

Work IQ is one layer. It allows our AI tools to reason over unstructured data so this powerful resource can be a part of our larger enterprise intelligence system. But it also includes two other aspects of this three-layer system—Fabric IQ and Foundry IQ. Combined, these three capabilities enable organizations to take full advantage of your knowledge estate to forge the AI-powered workplace of the future.

“While Work IQ can access your Microsoft 365 data, Fabric IQ will connect to your organizational data, such as analytics,” says Naveen Jangir, a principal architect in Microsoft Digital. “Foundry IQ can leverage both, plus other domain data, to help developers build powerful agentic solutions.”

Here’s how these capabilities work together in complementary roles to impact how work gets done at Microsoft:

• Work IQ handles unstructured data—like documents, emails, PDFs, and web content—by extracting meaning and context from human language.
• Fabric IQ operates over structured data—like tables, databases, metrics, events, and transactions—to bring consistency and analytic rigor to our work.
• Foundry IQ provides the knowledge-grounding layer, where entities, relationships, and ontologies allow reasoning to stay aligned with enterprise truth.

While each component is powerful on its own, the deeper value is what becomes possible when they are used together.

The intent is to enable agents that can reason across all enterprise knowledge, regardless of where it originated or how it was stored. An agent should be able to read a policy, connect it to operational data, understand who and what is involved, explain its conclusions, and take an action (if desired) through a shared ontology based on organizational context.

That kind of capability can’t emerge just from information retrieval. It requires shared meaning across systems, content, and data types.

This is where the role of Work IQ becomes especially important. We have found that unstructured data contains some of the most critical institutional knowledge an organization has, but it rarely arrives in a form that is ready to be reasoned over. Documents reference people, systems, processes, and timelines in ways that make sense to humans, but not to machines. They can also fall out of date or represent a draft state that was never meant to be presented as verified information.

Work IQ bridges this gap by transforming the raw text into structured understanding, without stripping away nuance.

“Work IQ is already helping us change the way that work gets done. Instead of hunting for information or stitching context together manually, our employees can focus on decisions, creativity, and outcomes—because the intelligence is already there, working with them every day. It’s an integral part of preparing our organization for our agentic AI future.”

Vijaya Alaparthi, principal group product manager, Microsoft Digital

The crucial mechanism for that transformation is entity extraction, paired with a shared ontology. When a document mentions an employee, a system, a regulation, or a product, Work IQ identifies that reference as something concrete and reusable. Over time, those entities become the connective tissue between unstructured content, structured records in Fabric IQ, and the semantic backbone that Foundry IQ relies on to ground reasoning in the agents we create.

We can already see signs of this promised future at Microsoft today. Take a tool like our Employee Self-Service Agent, which we launched late last year. What before was a collection of static HR documents becomes a living knowledge system: policies are parsed, roles and eligibility criteria are extracted, and guidance is grounded in an understanding of employee role and location. The agent can answer a question and explain why the answer applies, because it understands both the document and the organizational context behind it.

This is why Work IQ is such a strategic capability. Improving document quality, normalizing metadata, resolving entities, and establishing governance are not one-off hygiene tasks. They expand what future agents will be able to do safely and reliably. The more coherent your unstructured data becomes, the less guesswork agents must do and the more context they can absorb.

“Work IQ is already helping us change the way that work gets done,” says Vijaya Alaparthi, a principal group product manager in Microsoft Digital. “Instead of hunting for information or stitching context together manually, our employees can focus on decisions, creativity, and outcomes—because the intelligence is already there, working with them every day. It’s an integral part of preparing our organization for our agentic AI future.”

For us, the direction forward is clear. The better your data foundation, the more capable—and trustworthy—your agents become. As unstructured and structured knowledge converges, intelligence stops being a set of isolated features and becomes a system.

Organizations that invest in technology like Work IQ to harness their unstructured data as enterprise knowledge are the ones that will deploy the most capable agents going forward and will be best positioned to take advantage of the agentic future.

Key takeaways

If you want your organization to be able to use Work IQ to propel your own agentic transformation, consider what we’ve learned on our journey:

• Work IQ transforms unstructured enterprise data into actionable intelligence. By reasoning over emails, documents, meetings, and chats, it unlocks institutional knowledge that was previously fragmented and underused.
• The intelligence operates as foundational infrastructure, not a user-facing feature. Work IQ runs continuously behind the scenes across Microsoft 365, improving Copilot and agent responses wherever they appear without configuration.
• Context is what makes Copilot feel truly intelligent. By combining signals from collaboration patterns, conversations, documents, and more, Work IQ enables agents to respond based on how work actually happens, not just what information can be retrieved.
• Security and governance remain intact because Work IQ inherits existing controls. It doesn’t create new access to data; it reveals relationships while fully honoring permissions, sensitivity labels, and compliance policies.
• Employees experience Work IQ as reduced cognitive load, not added complexity. Inbox relevance, richer summaries, and clearer follow-through improve naturally over time.
• Using Work IQ beyond Microsoft 365 is a deliberate, governed choice. MCP servers allow builders to bring enterprise context into custom agents while giving IT teams clear control over scope, access, and risk.
• Work IQ is the foundation for the next generation of agentic intelligence, especially when combined with Fabric IQ and Foundry IQ. The more coherent and well-governed your unstructured data is today, the more capable, explainable, and trustworthy your future agents will become.

Learn more

• Explore how Work IQ is helping supercharge AI usage at Microsoft.
• Discover our chapter-by-chapter internal deployment guide for Microsoft 365 Copilot.
• Check out how we’re embracing this agentic moment at Microsoft.
• Dive into a Microsoft Learn overview of different Work IQ agent tools.
• Read an IT playbook for the AI era and learn how we’re becoming a Frontier Firm at Microsoft.
• See how we’re using Model Context Protocol security and governance to protect AI conversations at Microsoft.
• Learn about our experience governing AI agents at scale in this readiness guide.
• Find out how we’re unlocking enterprise AI extensibility with Copilot Studio.

Try it out

Get a closer look at Work IQ.

The post Intelligence on tap: How Work IQ enables AI and agents at Microsoft appeared first on Inside Track Blog.

In an always-on business environment, even routine collaboration can be overwhelming. But in an environment of Frontier Transformation, this challenge represents an opportunity for AI.

Our employees don’t need to handle all their work alone anymore, because agents can now extend their responsiveness and reach. Here in Microsoft Digital, the company’s IT organization, one of those AI agents is acting as a digital twin for just that purpose. It’s called DigitalMe, a personal virtual proxy designed to keep work moving when our employees are busy with other tasks.

Always-on knowledge without always-on employees

Large meetings generate a constant stream of questions, side conversations, and follow-up items. They’re often more than a single presenter or moderator can manage in real time. Important insights get buried in chat threads, queries go unanswered, and valuable momentum gets lost.

For our teams at Microsoft, this challenge became especially visible during large-scale readiness sessions, where subject matter experts found themselves inundated with requests for clarification and guidance.

“In order for our transformation into a Frontier Firm to be successful, we need to step back and ask what works well for employees, what doesn’t work well, and where agents can help.”

Stephan Kerametlian, senior director, Microsoft Digital

That’s not the only place where employees can use an extra hand. When people are out of the office, that doesn’t mean work stops. Their coworkers often need access to their colleagues’ knowledge to move mission-critical work forward, even when they’re not reachable.

“In order for our transformation into a Frontier Firm to be successful, we need to step back and ask what works well for employees, what doesn’t work well, and where agents can help,” says Stephan Kerametlian, a senior director in Microsoft Digital. “We’re crossing the horizon into human-led, agent-operated patterns of work.”

One team in Microsoft Digital created DigitalMe to explore what that future could look like in practice.

Go deeper

Becoming a Frontier Firm: Our IT playbook for the AI era

DigitalMe: A personal digital twin for Microsoft employees

For the members of our Employee Experience Success team responsible for adoption efforts around Microsoft 365 Copilot and Microsoft Copilot Studio in the Greater China Region, readiness meetings were becoming unwieldy because of attendee questions.

“Our purpose was to use as little code and as much natural language as possible so people could modify their own personal DigitalMe easily. In Copilot Studio, you can manage agents as a solution. So users can just download and import a zip file, modify an agent like DigitalMe according to their business context and preferences, then use it.”

Ju Bu, business program manager, Microsoft Digital

The team wanted a way to focus on running the meeting while simultaneously providing their knowledge to participants. They decided to create an agent to help deal with the deluge of queries: DigitalMe.

At its core, DigitalMe is a personal, context-aware digital twin with versions that operate in both Microsoft Teams and Microsoft Outlook. It draws on the same knowledge bases and resources that its user can access, for example, SharePoint sites and Teams channels.

The team designed DigitalMe in Microsoft Copilot Studio and prioritized a low-code approach. At most, the creators used code to build 15–20% of the agent and accomplished the rest using natural language prompts.

“Our purpose was to use as little code and as much natural language as possible so people could modify their own personal DigitalMe easily,” says Ju Bu, a business program manager in Microsoft Digital. “In Copilot Studio, you can manage agents as a solution. So users can just download and import a zip file, modify an agent like DigitalMe according to their business context and preferences, then use it.”

Equipped with an employee’s full knowledge base, DigitalMe can respond in Outlook and Teams on its human counterpart’s behalf. To ensure transparency, a label appears at the beginning of each message indicating that it originates from the agent.

DigitalMe also reinforces context for the requester by including their original question in quotations. Finally, the agent @-mentions the recipient to notify them effectively.

The team identified two primary use cases for the agent:

• Moderating live sessions. In large meetings, DigitalMe acts as an always-on co-moderator, answering questions in real time using scoped, preloaded knowledge. By speaking for them in the meeting chat, it helps presenters stay focused while ensuring attendees receive timely, accurate responses. Surfacing information instantly enhances both the efficiency and quality of the session. DigitalMe has the added advantage of being able to pull from resources the presenter might not recall in the moment. Over time, the agent captures and reuses questions and answers, turning live engagement into a growing knowledge base.
• Extending employee availability. DigitalMe also provides a way for employees to remain responsive when they’re out of the office. It can monitor Teams chats or incoming emails, generate context-aware replies, and surface relevant knowledge for colleagues without human intervention. In practice, it’s proven especially valuable for teams distributed across widely different time zones and for handling project handoffs during onboarding or time-off scenarios.

A key advantage of DigitalMe is its ability to move beyond simple question-and-answer use cases. In some scenarios, it can also trigger workflows like creating tasks or capturing frequently asked questions.

“Our vision was that DigitalMe shouldn’t just be an assistant. It should function as our digital twin in the cyber world.”

Kai Cheng, program manager, Microsoft Digital

It was important to incorporate human-in-the-loop capabilities. When DigitalMe encounters gaps in its knowledge, it can flag those moments for follow-up, prompting users to refine and expand their knowledge sources. It represents another way that human-led, agent-operated processes continuously improve outcomes.

“Our vision was that DigitalMe shouldn’t just be an assistant,” says Kai Cheng, a program manager working in change management, digital transformation, and AI in Microsoft Digital. “It should function as our digital twin in the cyber world.”

In live sessions, DigitalMe has helped presenters stay focused while maintaining high levels of engagement, responsiveness, and support for participants. Employees are increasingly using it to bridge time zones, support knowledge transfer, and keep projects moving in their absence.

Extending the impact of DigitalMe

After seeing DigitalMe’s early success, our global readiness and adoption professionals identified the agent as an opportunity to turn individual innovation into a scalable capability. After templatizing the agent in collaboration with its original creators, we’ve now included it in our Agent Starter Kit. This resource makes it easy for employees to create their own personal versions of several useful agents.

“Employees often think building an agent might be complex and time-consuming, and that limits their willingness to try and turn their ideas into working solutions. But tools like this show them how easy it can be.”

Alexandra Jones, director of business programs, Microsoft Digital

Our Agent Starter Kit walks employees through importing a ready-made agent, connecting it to their knowledge sources, and adapting it to their specific workflows. This approach has shifted DigitalMe from a single solution into a repeatable pattern, helping employees across the company move from curiosity to hands-on adoption. We’ve also incorporated the Agent Starter Kit into our Agent Launchpad skilling program to accelerate our employees’ agentic expertise as part of a Frontier firm

There’s an added benefit as well. By getting tools like DigitalMe into people’s hands through templatized versions they can modify and configure themselves, we’re highlighting how easy it can be for even nontechnical workers to build agents themselves.

“Employees often think building an agent might be complex and time-consuming, and that limits their willingness to try and turn their ideas into working solutions,” says Alexandra Jones, director of business programs in Microsoft Digital. “But tools like this show them how easy it can be.”

For organizations that want to replicate this kind of solution, the path is increasingly straightforward. By lowering the barrier to entry with templatized agents and no-code tools, our team in Microsoft Digital has demonstrated that any employee can build tailored, high-impact assistants without deep technical expertise.

“The goal of Frontier Transformation is that AI is just there as you’re working, helping you practically do your job to enhance the experience and add value in real time.”

Kevin Wooldridge, senior director of digital transformation, Microsoft Digital

Looking ahead, we’re exploring ways to deepen these capabilities by adding memory and behavioral context so DigitalMe can better reflect individual working styles. The goal is to evolve it from a helpful assistant into a more complete digital representative.

Together, these advances point toward a future where employees routinely work alongside agents that grow, learn, and contribute more over time.

“DigitalMe is an example of the genuine, practical application of agentic use in the flow of work,” says Kevin Wooldridge, senior director of digital transformation in Microsoft Digital. “The goal of Frontier Transformation is that AI is just there as you’re working, helping you practically do your job to enhance the experience and add value in real time.”

The post Meet DigitalMe: Our AI digital twin that works on our behalf appeared first on Inside Track Blog.

“The pace of AI innovation has far outstripped how people learn. The old model of static catalogs, fragmented experiences, and a mindset of ‘consume content and move on’ doesn’t work in this new world, where roles are evolving in real time and every employee is expected to be AI proficient.”

Kavitha Radhakrishnan, general manager, Global Skilling

At Microsoft, this shift exposed a critical gap for us. While access to learning content has expanded dramatically, clarity about how to build and maintain skills has not kept pace. Our IT professionals often know they need to build AI capabilities but struggle with where to start, how to prioritize, and how to align their growth with business outcomes.

This is where our Global Skilling team identified an opportunity.

“We started with a simple observation: The pace of AI innovation has far outstripped how people learn,” says Kavitha Radhakrishnan, a general manager in Global Skilling product development. “The old model of static catalogs, fragmented experiences, and a mindset of ‘consume content and move on’ doesn’t work in this new world, where roles are evolving in real time and every employee is expected to be AI proficient.”

This situation led to the development of a cutting-edge solution: The AI Skills Navigator.

Try it at your company

Start your journey with our AI Skills Navigator

From content overload to guided capability building

At its core, AI Skills Navigator represents a shift in how learning is designed. Instead of asking learners to navigate sprawling catalogs of courses, the platform is built to guide them through a purposeful journey tied to their role, their goals, and the demands of their organization.

“Traditional learning catalogs answer the question, ‘What can I learn?’” Radhakrishnan says. “AI Skills Navigator answers the question, ‘What do I need to learn next—and why does it matter?’”

For IT professionals, that difference is significant:

• Learning paths are aligned to real-world scenarios and roles
• Content is curated and structured rather than fragmented
• Progression moves from foundational understanding to applied capability
• Skills are validated through credentials that signal actual proficiency

This approach helps IT teams move beyond passive learning and toward what Microsoft describes as “active capability building at scale.”

How AI Skills Navigator works for IT professionals

AI Skills Navigator is designed to meet IT professionals where they are, whether they are building foundational understanding, creating agents, or deploying and managing AI-powered solutions in production.

The experience is anchored in four key principles:

1. Curated skilling playlists aligned to real roles. Learners engage with curated playlists mapped to their role and responsibilities. These playlists guide progression from foundational proficiency to deep expertise and leadership with AI.
2. Applied skills, not just content consumption. The platform emphasizes hands-on, lab-based experiences where learners build and demonstrate real capabilities. Applied Skills credentials validate what learners can do, not just what they have completed.
3. Multimodal learning in the flow of work. Content is delivered in formats that fit how professionals learn day to day, including interactive modules, video, and audio-first experiences like podcasts. This makes it easier to build skills without stepping out of the workflow.
4. Skills validation with organizational visibility. Progress and credentials give individuals a way to demonstrate expertise. At the same time, organizations gain visibility into skill development and readiness at scale.

Behind the scenes, the experience is designed to deliver personalization at scale.

“The most important architectural decision we made was treating personalization as a ‘data and signals problem’ before it became a model problem,” says Iliyas Chawdhary, a principal group software engineering manager in the Global Skilling product group. “We built AI Skills Navigator on a modular foundation: a unified content catalog, separate skills and roles taxonomy, an identity and profile layer, and a recommendation surface connected through well-defined contracts. That separation enables us to make updates without rewriting the experience.”

By separating content, roles, identity, and recommendations into modular components, the platform can continuously evolve as technologies and job expectations change.

“The most consistent feedback from IT practitioners is that they need to move quickly from understanding AI to actually operating it.”

Priya Vaidyanathan, director of product management, Global Skilling

A differentiated approach to AI skilling

While many platforms provide access to AI learning content, AI Skills Navigator is differentiated by how it connects learning to real-world outcomes.

“The most consistent feedback from IT practitioners is that they need to move quickly from understanding AI to actually operating it,” says Priya Vaidyanathan, director of product management for Global Skilling. “The focus on governance, security, and how to enable their organizations without slowing innovation is a key differentiator for us.”

AI Skills Navigator is different from other learning experiences in several other ways:

• Built around roles and tasks, not course catalogs. Content is organized into curated playlists aligned to roles and real work scenarios. Learners are not choosing from a library of courses; they are guided to build the specific skills needed to perform in their role, from first exposure to applied execution.
• Orchestrated by specialized agents, not a single recommendation engine. Multiple agents work together to create playlists, guide learning sessions, and ensure content quality. This allows the experience to adapt to the learner, while maintaining grounding in trusted, curated Microsoft content. The result is guidance that is both personalized and reliable.
• Designed to build capability over time, not deliver one-time learning. The platform is designed for repeat engagement. As learners return, recommendations evolve based on progress, feedback, and emerging skills; this enables continuous skill development rather than a one-time completion model.
• Embedded into how work happens, not separate from it. Integration with Microsoft 365 Copilot brings skilling into the tools professionals already use and learning happens alongside real tasks, making it easier to apply skills immediately instead of learning in isolation.

Turning learning into team capability

For organizations, one of the most powerful features of AI Skills Navigator is the ability to align teams around shared learning goals. Skilling playlists enable leaders to define capability journeys that map directly to business priorities.

Instead of assigning generic training, leaders can create structured paths that guide teams toward specific outcomes, like becoming AI literate, managing agents in the enterprise, or building expertise in agent development. This approach transforms learning from an individual activity into a shared experience.

For IT professionals, this means learning is no longer abstract—it becomes directly connected to their role, their team, and the transformation initiatives they support.

Building momentum with an AI Skills Fest

To accelerate skills development through a moment of shared learning, we’re hosting our second global AI Skills Fest initiative in June 2026. The annual event is designed to bring focus, energy, and community to the AI Skills Navigator experience.

AI Skills Fest brings together:

• A global audience of learners across different roles and skill levels
• Curated learning experiences aligned to real-world scenarios
• Opportunities to engage, practice, and validate new skills

The initiative builds on the success of last year, when we brought together more than 126,000 participants in a single day of learning to achieve a Guinness World Record for AI skilling participation. This milestone demonstrated both the demand for AI skills and the power of creating a shared learning moment at global scale.

In 2026, the focus is shifting from the record itself to sustaining long-term engagement. Our AI Skills Fest is designed to help learners discover the right entry points into AI Skills Navigator and build momentum that continues well beyond the event.

“We want learners to think of it less as a single event and more as a catalyst for ongoing skilling at scale,” Radhakrishnan says.

Bringing AI skilling directly to Inside Track

To make these learning opportunities even easier to discover, we’re taking the next step by integrating AI Skills Navigator content directly into the Inside Track experience. This integration will provide IT professionals with:

• Direct access to curated learning journeys, aligned to Inside Track content
• Seamless pathways from insight to action
• A clearer connection between Microsoft’s own transformation story and the skills required to replicate it

For our readers, this creates a new kind of experience. Instead of simply learning how Microsoft approaches AI, you’ll be able to immediately start building the skills needed to apply those insights at your own organizations.

Look for curated deep links from Inside Track stories into AI Skills Navigator starting in the second half of 2026. Additionally, we’ll be adding links to our site navigation and Careers page to make it simpler to help you discover and build role-specific AI skills.

“From an assistant, to a coach, to a learning companion—the endpoint doesn’t feel like a learning platform at all. It just makes you better at your job.”

Iliyas Chawdhary, principal group software engineering manager, Global Skilling

A new model for learning in the era of AI

AI is reshaping how organizations operate, how teams collaborate, and how work gets done. For IT professionals, staying relevant means continuously building new capabilities.

AI Skills Navigator represents our answer to that challenge. The initiative moves beyond static content to create a guided, adaptive, and integrated learning experience. AI Skills Navigator just feels different—and better—than other learning platforms.

“From an assistant, to a coach, to a learning companion—the endpoint doesn’t feel like a learning platform at all,” Chawdhary says. “It just makes you better at your job.”

The era of AI demands a new approach to learning, and that approach is built on a foundation of role clarity, relevance, and continuous growth.

Key takeaways

If you are thinking about promoting AI skilling among your own employees, keep the following in mind:

• Start your journey now. Explore the IT Professional playlist in AI Skills Navigator to identify the skills most relevant to your role.
• Align learning to outcomes. Don’t just take courses: Define the AI capabilities your role or team needs, then use structured playlists to guide progress.
• Make learning continuous. Plan for regular, incremental skilling rather than one-time training events to keep pace with AI innovation. The AI Skills Navigator playlists are constantly being updated to help you keep up with the pace of change.
• Leverage AI-powered guidance. Use AI-driven recommendations, playlists, and coaching experiences to accelerate learning and reduce time to value.

Try it out

Visit our AI Skills Navigator site to start your learning journey.

Related links

• Learn how we’re skilling up for the future of work at Microsoft with Agent Launchpad.
• Discover how we enabled meaningful AI adoption internally with a Microsoft 365 Copilot Expo.
• See how we drove Microsoft 365 Copilot adoption with a virtual skilling event.
• Find out what it’s like to work in Microsoft Digital in the era of AI.
• Explore the new age of AI-led engineering in IT at Microsoft.

The post Building AI skills for the future: How we’re reimagining learning with AI Skills Navigator appeared first on Inside Track Blog.

That’s why, as part of our broader approach to AI at Microsoft, we—Microsoft Digital, the company’s IT organization—are building a framework to measure the impact of the AI investments we’re making on behalf of the company.

“If we want to measure the business impact of AI, the conversation quickly moves toward identifying the agents or AI efforts that are driving the most value and satisfying business outcomes. We know that those conversations can be complex, so we use a value measurement framework to capture and assess the signals we have available.”

Don Campbell, principal group technical program manager, Microsoft Digital

Our framework is helping us move from AI enthusiasm to AI accountability. It creates a common way for us to talk about value across our different initiatives, teams, and business processes. It also helps us ask a harder, more specific question every time we assess the impact of AI at Microsoft Digital: If AI saves time, reduces costs, improves quality, or lowers risk, what changes are we making to take advantage of that?

We don’t have the full answer yet—we’re still improving the way we measure. Some of our signals are instrumented, some rely on strong hypotheses, and some need better telemetry. But we’re not waiting for perfect results to start learning.

“If we want to measure the business impact of AI, the conversation quickly moves toward identifying the agents or AI efforts that are driving the most value and satisfying business outcomes,” says Don Campbell, a principal group technical program manager in Microsoft Digital. “We know that those conversations can be complex, so we use a value measurement framework to capture and assess the signals we have available.”

Building a framework for AI business value

AI value doesn’t show up the same way everywhere. One investment we make might help employees complete a task faster, while another might improve quality, reduce risk, increase coverage, or lower operational costs. Some of that value can be measured directly, while in other cases it starts as a hypothesis that needs to be tested. That range is why we needed a common framework instead of a single metric.

Our value measurement framework helps our Microsoft Digital teams answer three basic questions before and after they build:

• What kind of value do we expect this AI investment to create?
• How will we measure that value?
• What will we do with what we learn?

We organize the answers to those questions around six value areas:

Revenue impact: How an AI investment contributes to our business growth, sales activity, customer targeting, or deal velocity.

Productivity and efficiency: How AI helps our people complete tasks faster, increase throughput, optimize processes, or automate work.

Security and risk management: How AI helps us identify, prevent, or manage security vulnerabilities, risk exposure, or Responsible AI compliance.

Employee and customer experience: How AI improves satisfaction, engagement, or the quality of a product or service experience.

Quality improvement: How AI improves deliverables, accuracy, confidence in outputs, or process quality.

Cost savings: How AI reduces our operational cost, improves our resource allocation, or helps us avoid future cost.

Our framework doesn’t require every AI investment that we make to create value in all six areas. In fact, that rarely occurs. A support automation scenario might focus primarily on productivity, employee experience, and cost avoidance. A security scenario might involve risk reduction, vulnerability coverage, or the ability to address more issues than a team could handle manually. A process quality scenario might relate to measures that are specific to a particular workflow and be harder to roll up into a single number.

“Measurement sources vary based upon the type of AI initiative. The six value areas give us a framework for measurement, but we need to observe and collect information where measurement starts to become practical. Teams need to understand the processes affected, including how long work takes, how many resources are involved, and what the workflow looks like before and after AI.”

David Laves, director business programs, Microsoft Digital

The framework creates consistency in how we talk about value, while giving teams room to measure what actually matters for their scenario. Some measures roll up easily, including cost savings, time savings, and certain risk measures. Others are more specific to the process being improved. Those measures still matter because they help business owners understand whether AI is changing the work in a meaningful way.

“Measurement sources vary based upon the type of AI initiative,” says David Laves, a director of business programs in Microsoft Digital. “The six value areas give us a framework for measurement, but we need observe and collect information where measurement starts to become practical. Teams need to understand the processes affected, including how long work takes, how many resources are involved, and what the workflow looks like before and after AI.”

Our framework also helps us make better investment decisions. Before we commit to an AI scenario, we can map the opportunity to the value areas that matter most, estimate the value we think it can create, and decide what needs to be measured. After implementation, we can compare results against the baseline, review the data with the right business and AI owners, and adjust the work based on what we’re seeing.

That last step is critical. Our framework creates a way for us to create an operating rhythm around AI value. It helps us take a promising scenario and prove its worth (or lack thereof) by establishing expected value, evaluating what is being measured, and deciding what to change because of the results.

It’s a continual evolution of business value measurement that prioritizes progress over perfection, and it’s helping ensure that our AI approach stays grounded in the outcomes that are most meaningful to our business.

Turning measurement into an operating rhythm

A framework only matters if teams use it to make decisions. For us, that means moving measurement out of one-off reporting and into a regular management cadence. We track our highest-business-value AI initiatives by priority and business function, then review the KPIs that show whether those investments are creating the value expected.

Some KPIs roll up cleanly. Our cost savings, time savings, and certain risk measures can be summarized across initiatives and discussed at a leadership level. Other KPIs stay closer to the individual scenario because they’re tied to a specific workflow, process, or business outcome. We need both. Our rollup metrics help our leaders see broad progress, while the scenario-level metrics help our teams understand what’s changing inside their work.

“We actually create monthly targets and end-of-year targets for every top AI-enabled initiative,” Campbell says. “Then we basically reiterate every single month with our leadership team to look at the value we’re driving and have conversations about it.”

That monthly rhythm helps us proactively manage AI value. If a measure is trending positively, we look at what’s working and where else the pattern might apply. If a measure is off track, teams can dig into the supporting data, review the assumptions, and decide whether they need to adjust the solution, the measurement, or the operating process around it.

This process supercharges prioritization. Our team here in Microsoft Digital has a large set of AI opportunities, and not every idea can move at the same pace. By mapping initiatives to value areas, estimating expected impact, and tracking results over time, we can have a more grounded conversation about where to invest, where to scale, and where to keep learning.

That discipline becomes more important as AI moves deeper into business processes. We don’t want teams to measure only adoption or usage if the real goal is a better business outcome. Usage matters, but it doesn’t tell the whole story. A tool can be used often and still fail to improve the process it was meant to change.

Applying the framework: Global Support

Consider the following example of applying the framework from our Global Support team. This team is currently examining how AI can help automate specific pieces of the ticket management process.

“In Global Support, the processes that often matter most from a value perspective are the ones with high repetition. If a process runs thousands of times a month and can operate autonomously, without human input, that’s where AI can deliver meaningful, measurable impact.”

David Finney, principal program manager, Microsoft Digital

As part of this effort, we examined a support process that depended on manual follow-up. In this process, after a Global Support team member marks an issue as resolved, the team waits for the user to confirm that the ticket can be closed. If the user doesn’t respond, the agent must follow up once a day for up to three days. After the third attempt, the agent simply closes the ticket.

This user flow gave us a practical way to test the value framework. It has repetition, because it runs often; it has autonomy potential, because the steps are deterministic and rule-driven; and it has a clear time-savings opportunity, because a human agent spends time checking the ticket, writing the follow-up, and sending the message. It also has a measurable implementation effort, because the data exists in the ticket process but the solution still needs to integrate with ServiceNow.

“In Global Support, the processes that often matter most from a value perspective are the ones with high repetition,” says David Finney, a principal program manager in Microsoft Digital. “If a process runs thousands of times a month and can operate autonomously, without human input, that’s where AI can deliver meaningful, measurable impact.”

Finney estimated that about 5,000 tickets a month execute this process. Because each ticket can require up to three follow-ups, that can create up to 15,000 manual email follow-ups a month. At about three minutes per follow-up, that’s roughly 750 hours of productivity spent on one small piece of the process each month.

The framework helps us look at that work through both value and effort. On the value side, we can evaluate repetition, autonomy potential, and time savings. On the effort side, we can assess whether the data exists, how complex the solution is, whether engineering work or system integration is required, and how long implementation may take.

“We started to evolve our conversation to, ‘So what?’” Campbell says. “You saved money, you saved hours. What did you do with it? Where did the actual business outcome sit?”

Don Campbell, principal group technical program manager, Microsoft Digital

That structure matters because a high-value opportunity still needs the right implementation path. In this case, the process is part of the ticket workflow, so the needed data exists. The complexity comes from integrating the automated agent with ServiceNow so it can interact with the ticket, check whether the user responded, send follow-ups, and resolve the ticket according to the defined process.

Instead of trying to automate all of support at once, the team identifies specific subprocesses where AI has a clear role and the value can be measured. “It’s taking a sort of bite-sized approach to AI rather than trying to solve for everything in one big go,” Finney says.

That’s the kind of practical example the framework is designed to surface. It helps us find work that’s frequent enough to matter, structured enough for automation, and measurable enough to prove whether the AI investment changed the process.

Moving from savings to reinvestment

Measuring value starts the next conversation. If an AI investment saves time, reduces cost, increases coverage, or improves quality, we need to know what happens next. The number is relevant, but the business outcome is more important.

“We started to evolve our conversation to, ‘So what?’” Campbell says. “You saved money, you saved hours. What did you do with it? Where did the actual business outcome sit?”

That’s the harder part of AI value measurement. A team might use AI to reduce time spent on repetitive work, but the real value depends on how that recovered capacity gets used. In some cases, the reinvestment path is clear. A team can point to more programs delivered, more backlog reduced, more issues reviewed, or faster service delivery.

In other cases, the value is harder to trace. Some AI improvements return small amounts of time to many employees. Those minutes matter, but it’s difficult to prove exactly where each person reinvested them.

We’re careful when it comes to measuring ROI. We know our leaders will ask for it, and it belongs in the broader value conversation. But we don’t want ROI at the center of the story before we have the right cost model, telemetry, and approved data to support it.

For now, we’re focused on the operating discipline: Define expected value, baseline the current state, instrument the AI-enabled process, track results, review the data, and act on what we learn. That discipline is teaching us a number of practical lessons:

• Measurement needs to be built into the design of the AI investment, not added after launch.
• Teams need a baseline for the current process, so they can compare it with the AI-enabled process.
• Teams need to pick measures that fit the scenario.
• Data must have clear ownership, because uncertain data weakens the conversation with business owners and leaders.

Consistency matters as much as the metric itself. When our teams review value on a regular rhythm, they can see trends, test assumptions, and adjust the solution or the process around it. Some measures will be mature, and others will be directional. Some will need better instrumentation. The point is to keep improving the quality of the measurement while keeping the conversation focused on business value.

We’re continuing to build our value measurement muscle across Microsoft Digital. We’re not looking for one perfect formula for every AI investment. Instead, we’re creating a repeatable way to define value, measure it, review it, and use it to guide our next action.

As our AI investments and overall strategy mature, that framework helps us stay honest about what we know, clear about what we still need to learn, and focused on the outcomes that AI is designed to improve.

Key takeaways

Here are five actions you can take to help measure the impact of AI investments at your organization, based on what we’ve learned in our own efforts:

• Start with business outcomes. Define the business result you want first, so you can measure whether the AI investment creates real value.
• Choose metrics that fit the scenario. Select measurement areas that match the workflow, such as time saved, cost reduced, quality improved, or risk lowered.
• Establish a baseline before launch. Capture current performance before implementation, which will enable you to compare results and show what changed.
• Review results on a regular rhythm. Check performance consistently with the relevant stakeholders so that you can spot trends and adjust quickly.
• Reinvest gains intentionally. Use the time, savings, or capacity that AI generates to deliver clear value and ROI, instead of treating efficiency as the final goal.

Try it out

Get started with Microsoft Agent 365.

Related links

• Learn how a data council is powering our unified data strategy at Microsoft.
• Discover how a Center of Excellence is powering the technical veracity of AI at Microsoft.
• Explore how we’re reshaping Microsoft with continuous improvement and AI.
• Find out why Responsible AI matters and how we’re infusing it into our internal AI projects at Microsoft
• Read about the enterprise tools and solutions at Microsoft AI.
• Check out more details about Responsible AI at Microsoft.
• Learn more about the opportunity for AI in the Microsoft 2026 Work Trend Index Annual Report.

The post Measuring the impact of our AI investments in IT at Microsoft appeared first on Inside Track Blog.

Our Global Collection team in the Microsoft Treasury division makes sure payments are seamlessly executed in our fast-moving global enterprise environment. However, our case managers were often losing valuable time figuring out things like who the right contact was for a given customer, which issues were likely to be challenged by a customer, and where an exception should be routed next. This information was spread across systems or buried in handoffs.

To solve these challenges, our team built a human-led, AI agent-assisted support system to reduce preparation time and streamline their processes.

“Building the AI assistance wasn’t the hard part,” says Kathy Brustad, a director in the Global Treasury and Financial Services division at Microsoft. “The hard part was reimagining the collection experience with AI front and center, and bringing the underlying infrastructure up to speed to get it there.”

In this post, we explain how we did it so you can learn from our experience.

“We have over 1,000 collectors around the world who perform collections for Microsoft. They had multiple systems they had to go to in order to find out things like the totality of the customer’s invoice and what conversations a different team had with the customer. The information was fragmented.”

Kathy Brustad, director, Global Treasury and Financial Services

Stitching together information across systems

Our AI agent is focused on helping our case managers prioritize high-value work by:

• Predicting late payments and possible customer disputes
• Summarizing customer case interactions for use by case managers
• Routing customer emails to the right collections manager faster and with greater precision Automatically matching payments to invoices
• Automatically responding to customer inquiries

“We have over 1,000 collectors around the world who perform collections for Microsoft,” Brustad says. “They had multiple systems they had to go to in order to find out things like the totality of the customer’s invoice and what conversations a different team had with the customer. All of this information was fragmented. We didn’t have a single view of how much a customer owed us.”

We started by consolidating these dispersed tools and systems into an SAP and Microsoft Dynamics 365 environment, creating a single source of truth for all relevant customer, invoice, and payment data.

On that foundation, we layered on Microsoft’s IQ intelligence platform to infuse semantic understanding and business context. That standardized our workflows by simplifying templates and worklists to reduce complexity and put consistent global practices into place. Routine communications became fully automated.

We then applied AI to improve payment matching accuracy from 40% to 90%, generate customer response drafts, and intelligently route cases to reduce time-consuming back‑and‑forth.

Copilot assistance was embedded directly into the daily workflow of our case managers to reduce administrative load by providing inline knowledge suggestions, summarizing calls, and automatically drafting replies. With these standardized automated workflows, we could apply 98% of payments within 48 hours.

“In a nutshell, this is the collection story: We have various agents and models deployed to assist our human agents with all the activities they have to do, saving hundreds of thousands of hours that we spent on manually tracking things before.”

Kathy Brustad, director, Global Treasury and Financial Services

Moving faster on ‘act ready’ work

Deploying the agent was only the starting point. The harder work was helping our collection team change established ways of working. Brustad described the shift as learning to “run it in a different way,” moving from manual, fragmented preparation toward workflows where prioritization, context gathering, and routing were increasingly supported within the system.

To make that shift possible, the team introduced a change management work stream program and role-based training focused on real, day-to-day scenarios alongside the rollout. By anchoring the work in clear business pain points and showing tangible improvements, our team saw how the new approach made their work easier. Each morning, the agent prioritized each case manager’s workload according to urgency and past client behavior so case managers could immediately focus on the accounts that were the most pressing.

We reduced repetitive communications using automatically drafted responses and automated statements.

“In a nutshell, this is the collection story: We have various agents and models deployed to assist our human agents with all the activities they have to do, saving hundreds of thousands of hours that we spent on manually tracking things before,” Brustad says.

After deploying this system to our case managers, we saw measurable improvements in both productivity and speed, including:

• Hundreds of thousands of hours unlocked annually in order to do more human-led high-value work rather than routine administrative tasks
• 40% reduction in call preparation time
• 2X growth in automatic cash applications
• 2.5X acceleration of customer inquiry resolution time

Operationally, the team also saw up to 60% reduction in inquiry handling time through inline suggestions, summarized calls, and automatically drafted replies. To ensure these improvements were real and repeatable, we emphasized observability in our evaluation approach. Our team tracked dollars collected through collections and hours worked to create productivity metrics.

Data, trust, and good governance

When introducing AI systems or agents into finance workflows, leaders often ask two questions:

1. Can we trust the outputs?
2. Can we govern the process?

“The biggest takeaway is to know your own process very, very well. You need to understand where all the bottlenecks and pain points are. Start from there to design the new agent-enabled process instead of saying, ‘I’m going to just inject the agent into my existing process.’”

Kathy Brustad, director, Global Treasury and Financial Services

For us, trust came from getting the basics right in the form of right-sizing our enterprise data, standardizing our workflows, and establishing clear ownership for each part of the work. When we tested early and included frontline users throughout the process, outcomes improved.

“The biggest takeaway is to know your own process very, very well,” Brustad says. “You need to understand where all the bottlenecks and pain points are. Start from there to design the new agent-enabled process instead of saying, ‘I’m going to just inject the agent into my existing process.’”

Embed custom agent assistance directly into the moments where time disappears, such as prioritization, preparation, routing, and drafting so adoption feels natural and can be measured. You can prove impact with a small set of metrics like cycle time, throughput, dollars collected, and hours saved, and iterate from there.

Key takeaways

Modernizing collections is about fixing the fundamentals first, before you add AI into the mix. As you begin to streamline your own finance workflows, keep these lessons in mind:

• Fix fragmented workflows before adding intelligence: AI delivers the most value when it’s layered on top of standardized processes and a unified data foundation rather than disconnected systems and ad hoc handoffs.
• Embed assistance where time is actually lost: Copilot-style support works best when it shows up directly in prioritization, preparation, routing, and drafting to reduce friction without changing how people work.
• Focus AI on high‑ROI decisions, not just automation: Predicting late payments, flagging likely invoice disputes, and surfacing context can help teams spend time where it matters.
• Design around the practitioner’s day: When work arrives prioritized and prepped, case managers spend less time chasing context and more time resolving exceptions.
• Measure what matters to prove impact: Cycle time, dollars collected, throughput, and hours saved provide a clear, repeatable way to track productivity gains and cashflow velocity.
• Pair generative AI with strong governance: Trust comes from clear ownership, standardized workflows, quality data, and ongoing human oversight.

Editor’s notes:

• SAP is an enterprise finance system that many organizations use to manage invoices, payments, and financial records in a single, centralized platform.
• All metrics cited are based on Microsoft internal data gathered during the writing of this article. They’re best read as directional signals from that period, and they may change as systems, processes, and behaviors evolve. Microsoft makes no warranties, express, implied, or statutory.

Try it out

• Build and test an AI‑assisted workflow with Microsoft Copilot Studio to see how agents can help prioritize work, summarize context, and route cases more efficiently.
• Start a Dynamics 365 free trial.

Related links

• Discover the five lessons we learned on how to make AI stick for sellers during our Copilot rollout.
• See how we revamped and modernized our Microsoft Treasury infrastructure using Azure.
• Explore how we’re supercharging our support experience with Microsoft Dynamics 365 and AI.
• Learn how we’re transforming the marketing function at Microsoft with AI.
• Read about our role as Customer Zero in an AI-powered world.
• Check out how we’re measuring the impact of Microsoft 365 Copilot and AI internally.

The post Streamlining finance cash collection at Microsoft with AI appeared first on Inside Track Blog.

As AI capabilities advanced, we saw an opportunity to move beyond individual productivity gains and toward something more transformative: Empowering our developers to build intelligent agents that can automate workflows, streamline operations, and create new business value.

Realizing this vision required more than new tools. We needed to rethink how we foster development, govern innovation, and operate at scale.

“We’ve made a lot of progress enabling our developers to build agents that make us more productive. We’re Customer Zero at Microsoft, which means we’re the first to deploy and use the technology and services that we later sell to our customers. Those learnings give us a unique perspective and story to share about the journey our developers have been on with AI and agents.”

Brian Fielder, vice president, Microsoft Digital

Today, we’re sharing the foundation we built that supports this shift.

We’re driving employees across Microsoft to create and use AI agents—from simple, task-focused solutions to enterprise-grade applications available across the company. It’s all supported by a secure, governed, and extensible platform.

“We’ve made a lot of progress enabling our developers to build agents that make us more productive,” says Brian Fielder, vice president of Microsoft Digital, the company’s IT organization. “We’re Customer Zero at Microsoft, which means we’re the first to deploy and use the technology and services that we later sell to our customers. Those learnings give us a unique perspective and story to share about the journey our developers have been on with AI and agents.”

Within the context of Microsoft Build 2026, we’re sharing what it really takes to move from experimentation to impact. Through this collection of stories and resources, we highlight how we’re empowering our developers to build with agentic AI—from establishing governance and platform capabilities to driving adoption and delivering real-world outcomes. Our goal is to provide practical insights you can use to accelerate your own AI journey.

“We hope you find the journey we’ve been on practical and useful,” Fielder says. “When it comes to agents, we’re accelerating fast and scaling at an enterprise level. As our story continues to evolve, we look forward to sharing it with you.”

Guidance for developers: How we manage agentic AI at Microsoft

These articles outline our vision for agentic AI, showing how we’re building a secure, governed, and extensible foundation for AI agents—from Work IQ and Copilot Studio to Agent 365, Azure DevOps, and Model Context Protocol—so developers can create scalable, high-value solutions across the enterprise.

April 16, 2026

Alex Fleck

Becoming a Frontier Firm: A guide for deploying AI agents based on our experience at Microsoft

May 21, 2026

Alex Fleck

Governing AI agents at scale: Lessons from our journey at Microsoft

• How Work IQ is supercharging our AI usage at Microsoft
• Shaping AI management at Microsoft with Agent 365 and Copilot controls
• Deploying Microsoft Agent 365: How we’re extending our infrastructure to manage agents at Microsoft
• Unlocking enterprise AI extensibility at Microsoft with Microsoft Copilot Studio
• Powering AI value with Microsoft 365 Copilot extensibility at Microsoft
• How our employees are extending enterprise AI with custom retrieval agents
• Transforming our approach to sensitivity labels at Microsoft with Microsoft Entra
• Reclaiming engineering time with AI in Azure DevOps at Microsoft
• Protecting AI conversations at Microsoft with Model Context Protocol security and governance

UPCOMING POSTS

• Intelligence on tap: Our guide for How Work IQ enables Microsoft 365 Copilot to better understand how we work at Microsoft
• Our guide for deploying Agent 365 based on our experience at Microsoft
• Agentic modernization: Securing Python at scale for agentic AI at Microsoft

Our IT guide to becoming a Frontier Firm

These stories share our IT playbook for becoming a Frontier Firm, highlighting a practical path to enterprise AI maturity through agentic transformation, operational scale, responsible innovation, and partnership—showing how IT leaders can balance governance, modernization, and employee engagement while building an AI-first organization.

December 4, 2025

Keith Boyd

Becoming a Frontier Firm: Our IT playbook for the AI era

• Enterprise AI maturity in five steps: Our guide for IT leaders
• The agentic future: How we’re becoming an AI-first Frontier Firm at Microsoft
• AI at scale: How we’re transforming our enterprise IT operations at Microsoft
• Transforming into an AI-first Frontier Firm in partnership with our works councils
• Fast Train to the AI Frontier: Balancing risk and innovation in the era of AI at Microsoft

Working as developer in IT at Microsoft in the era of AI

These stories explore what it means to work in Microsoft Digital during the AI era, showing how developers and knowledge workers are reshaping engineering, the employee experience, and their own career growth through AI-powered tools, new ways of working, and personal journeys that reflect the evolving culture of IT at Microsoft.

May 21, 2026

Matthew Cooke

IT on the cutting edge: Working in Microsoft Digital in the era of AI

• Powering the new age of AI-led engineering in IT at Microsoft – Inside Track Blog
• The Frontier Firm: How knowledge workers are forging their own AI tools at Microsoft – Inside Track Blog
• The future of work is here: Transforming our employee experience with AI – Inside Track Blog
• Olutunde Makinde: From Lagos to Redmond, a Microsoft IT engineer’s journey – Inside Track Blog
• Building from the inside: Anahit Hovhannisyan’s impact on IT at Microsoft – Inside Track Blog

Key takeaways

From our journey enabling agentic AI across Microsoft Digital, several key principles have emerged to help organizations move from experimentation to scalable, enterprise-wide impact.

• Treat your organization as Customer Zero. Use your own AI capabilities first to generate real-world insights, validate scenarios, and build credibility before scaling to customers.
• Build a foundation for scale. Establish a secure, governed, and extensible platform that enables developers to create AI agents—from simple solutions to enterprise-grade applications.
• Empower developers to drive transformation. Move beyond productivity gains by enabling developers to build intelligent agents that automate workflows and unlock new business value.
• Align governance with innovation. Rethink how you enable development, govern AI, and operate at scale to balance flexibility with responsible use.
• Connect tools, platforms, and workflows. Integrate AI capabilities across your ecosystem—linking platforms, governance models, and development tools to support consistent, scalable adoption.
• Translate experimentation into impact. Focus on turning early AI exploration into coordinated, enterprise-wide efforts that deliver measurable outcomes.

Try it out

Learn more about Microsoft Build.

Related links

• Read our guide for deploying AI agents based on our experience at Microsoft.
• Learn about how we’re governing AI agents at scale internally.
• Find out how Work IQ is supercharging our AI usage at Microsoft.
• Check out an IT playbook for the AI era and see how we’re becoming a Frontier Firm.

The post Microsoft Build 2026: Empowering our developers to adopt agentic AI at Microsoft appeared first on Inside Track Blog.

At Microsoft Digital, the company’s IT organization, we’re using a set of employee councils to guide how we deploy and adopt AI across our organization. We took this approach for a simple reason: We need a model that can keep pace with technological change while staying grounded in business value.

Our baseline expectation for AI at Microsoft is practical.

Our AI initiatives need to deliver value every quarter, and we track progress through KPIs reviewed monthly at the leadership level. That standard creates healthy pressure. It also exposes a common gap many organizations experience in the beginning stages of their AI efforts: It’s easy to generate a lot of activity without producing business results.

“Our strategy council is how we separate signal from noise in our AI acceleration. It identifies the top scenarios with the greatest enterprise leverage, sharpens our executive focus on what truly matters, and enforces a one-to-one alignment between the work we resource and the outcomes we’re accountable to deliver.”

Don Campbell, principal group technical program manager, Microsoft Digital

In our council-based approach to AI, different councils focus on different needs. Together, they help us move from experimentation to repeatable, enterprise-grade outcomes. We think of these councils as building blocks that we can combine and evolve as the technology, the business, and our operating model change.

In this model, AI strategy needs its own council to help guide the overall approach and align our efforts across the enterprise. At the highest level, the strategy council is where we prioritize what matters most, decide how it maps to the outcomes we’re accountable for, and determine how we’ll judge progress month over month.

“Our strategy council is how we separate signal from noise in our AI acceleration,” says Don Campbell, a principal group technical program manager in Microsoft Digital. “It identifies the top scenarios with the greatest enterprise leverage, sharpens our executive focus on what truly matters, and enforces a one-to-one alignment between the work we resource and the outcomes we’re accountable to deliver.”

Strategy keeps our AI conversation at Microsoft from getting bogged down in discussions of tools and technology and forces us to keep our focus on the main goal: What are we trying to change in the business, and how will we know if we’ve succeeded?

“We need a single cohesive story to bring together what’s happening across the organization and how those efforts contribute to real impact. The goal is to stitch that story together and solve for redundancies—if one part of the org has already solved a problem, another team shouldn’t have to reinvent the solution.”

Mohit Chand, principal group engineering manager, Microsoft Digital

AI strategy in action: Focus, alignment, and a monthly cadence

As our AI work at Microsoft accelerates, we continuously balance two truths at the same time. We want broad experimentation, because it’s how teams and employees learn fast. At the same time, we want our people to focus on what matters most to our enterprise and to ensure we are identifying and reducing potential redundancy.

Maintaining this balance is the core work of our AI strategy council. It helps us identify the AI-enabled scenarios that will deliver the most value, then keeps us honest about whether we’re delivering against the outcomes we’ve committed to.

“We need a single cohesive story to bring together what’s happening across the organization and how those efforts contribute to real impact,” says Mohit Chand, a principal group engineering manager in Microsoft Digital. “The goal is to stitch that story together and solve for redundancies—if one part of the org has already solved a problem, another team shouldn’t have to reinvent the solution.”

We have a detailed process that relies on engaging with our subject matter experts to keep the most impactful AI portfolio visible and actionable. We use it to summarize and track our top scenarios. Our AI strategy council views this process as work that’s always in process—a living view that changes as products ship and priorities shift. Delivered items come off, emerging bets go on, and the continuing discussion stays anchored to our goals.

“The pace right now is incredible. There’s a lot of excitement, but there’s also a risk if it’s not sustainable. A big part of our focus is figuring out how to take churn out of the system and make this work long‑term—for the business and for our people.”

Myron Wan, principal group product manager, Microsoft Digital

A tight rhythm and monthly cadence ensures that our conversations stay focused on whether the biggest bets are moving the needles we care about. That cadence helps us answer the questions leaders and customers are asking on a regular basis:

• Where are you investing?
• Why?
• What’s working?
• What would you do differently next time?
• What did you learn along the way?
• Where are we reinvesting and creating additional agency or capabilities for our employees?

When these questions frame the conversation, the outcomes naturally align to the direction our enterprise wants to go.

Structuring strategy and execution

To make our strategy council effective, we needed more than just a monthly meeting. We needed a way to organize work, assign accountability, and compare progress across very different teams without forcing everyone into the same mold.

We use three practices to accomplish this:

• Group work into clear focus areas
• Rely on product owners to drive execution
• Use a shared approach for measuring value

“The pace right now is incredible,” says Myron Wan, a principal group product manager in Microsoft Digital. “There’s a lot of excitement, but there’s also a risk if it’s not sustainable. A big part of our focus is figuring out how to take churn out of the system and make this work long‑term—for the business and for our people.”

Working into focus areas

When we started to scale our initial AI efforts, our first challenge was simple: Everyone is building, but not always toward the same destination. That’s why we split the work into two primary focus areas that match how an IT organization operates. These areas include:

• AI for corporate functions. Our AI work supports teams like finance, legal, and HR. We focus on removing friction from core processes and helping people make faster, better decisions.
• AI for IT. We support AI initiatives across our IT operations in several areas:
  • Network and devices. We’re using AI for faster network device lifecycle management, more efficient incident management and remediations, and lower costs
  • Employee experience. We want to enable Microsoft employees to contribute real business value and enjoy how they do it.
  • Support. We’re reducing tickets, resolving issues faster, and helping support teams stay ahead instead of reacting.
  • Tenant management and security. Our AI investments strengthen how we run and protect our Microsoft 365 tenant.

From there, we map AI initiatives into those focus areas so we can see what’s happening across the landscape and spot gaps, overlaps, and opportunities to reuse what already exists.

“We operate a council which helps set direction, but product management oversees execution of the solutions. Without product management’s ownership, our council would degrade into just a low-level approval step, which quickly makes us a roadblock instead of an enabler.”

Bill O’Brien, principal group product manager, Microsoft Digital

This step sounds basic, but it changes the conversation. It moves us away from a list of disconnected projects and toward a portfolio view, where we can figure out which scenarios matter most, where we have duplication, and where we need to invest more.

Keeping execution with product owners

While our AI strategy council sets direction, execution lies strictly with our product owners. A strategy council can’t run delivery. If it tries, it slows everything down. We avoid that trap by separating direction from doing.

“We operate a council which helps set direction, but product management oversees execution of the solutions,” says Bill O’Brien, a principal group product manager in Microsoft Digital. “Without product management’s ownership, our council would degrade into just an approval step, which quickly makes us a roadblock instead of an enabler.”

This clarity on roles and responsibilities helps teams work fast and ensures the council remains strategic. Product owners can prioritize week by week, learning from usage, adjusting product features, and shipping value. The council can stay focused on the portfolio and which bets rise to the top, what tradeoffs to make, and how we communicate progress and business outcomes to leadership.

“The first part of our strategy was all about getting people to a point where they could identify what they were trying to accomplish and report on how they’re getting there. We created a value measurement framework in partnership across multiple key players to give teams an idea of what’s valuable to the organization.”

Keith Bunge, principal software engineer, Microsoft

Using a common value framework

Once we can see the portfolio and have identified clear ownership, we still need one more thing: A shared language for determining value. Early in our journey, we were tempted to declare success simply based on activity—how many pilots we launched, how many tools we built, or how many demos we could show.

That activity is critical for innovation, but it doesn’t help us understand and drive business value. We needed teams to define the value they expect to deliver, explain why, and show how they’ll measure it.

“The first part of our strategy was all about getting people to a point where they could identify what they were trying to accomplish and report on how they’re getting there,” says Keith Bunge, a principal software engineer at Microsoft. “We created a value measurement framework in partnership across multiple key players to give teams an idea of what’s valuable to the organization.”

That framework helps in two ways:

1. It forces upfront discipline: Teams clarify what value they’re chasing and how they’ll prove they’ve achieved it.
2. It allows for fair comparison across very different initiatives: Everyone is describing impact in consistent categories, rather than inventing a new scorecard each time.

As our approach matures, we’re also pushing past raw savings metrics to the harder question: What did we do with the time or money we saved, and how did this create increased agency or capabilities?

Combining strategy and execution: A practical example

Here’s how that looks when we apply this approach to a real-world scenario.

Say one of our teams is proposing an AI solution to automate energy management in buildings. On day one, the idea sounds great: use signals from internal temperature and movement sensors to automatically adjust HVAC usage across large buildings. But the role of the strategy council isn’t just to approve great ideas. We ask for a clear value claim and a measurement plan.

Bunge provides a solid value claim for the example above.

“I’m going to come up with an automation that allows me to automatically turn off air conditioning in a building based on signals that we have from our internal sensors,” he says. “I think I’m going to be able to save $100,000 a quarter with this project because of my usage projections overlaid on the HVAC costs over the past five years.”

That kind of statement is useful, because it’s specific. It also forces the next question: How do you prove it? We’re asking teams to explain what data they’ll use as a baseline, what counts as savings, and how they’ll report progress over time.

We’re also raising the bar as the program matures.

Early on, teams may be able to prove that they saved time or reduced effort. As we get more rigorous, we’re pushing the “so what” conversation: What happens with the time saved, and what changes in the business as a result? It’s all part of moving from value measures to business outcomes, including what gets reinvested and where impact actually accrues.

Connecting AI strategy to the rest of our councils

Our AI strategy council is not the final measure or a standalone solution. We use it as the front door to a broader ecosystem that helps us move AI from ideas to enterprise outcomes.

“Business strategy needs to lead the AI strategy. Business strategy defines the ‘what and why.’ AI defines the ‘how’ to get the business strategy implemented with real value. We need to use AI to help us achieve the business strategy, not the other way around.”

Qingsu Wu, principal group product manager, Microsoft Digital

Here’s how it fits together in practice. We use the strategy council to set our direction, and we keep a short list of top scenarios visible. Then we rely on complementary councils and capability groups to make those scenarios real: teams are building skills and patterns through enablement, strengthening foundations through data readiness, and applying Responsible AI practices so solutions scale safely.

We use process improvement and change management to drive adoption, because a strong model doesn’t matter if people don’t change how they work. And we use metrics and value tracking to keep the entire system accountable.

We’re also keeping a clear principle at the center: Business strategy leads, AI follows.

“Business strategy needs to lead the AI strategy,” says Qingsu Wu, a principal group product manager in Microsoft Digital. “Business strategy defines the “what and why.” AI defines the ‘how” to get the business strategy implemented with real value. We need to use AI to help us achieve the business strategy, not the other way around.”

That distinction matters as AI capabilities keep expanding and as teams continue to move faster.

Moving forward

As this work matures, one thing is clear: Strategy isn’t something we finish and move on from. It’s something we’re actively maintaining as AI adoption accelerates.

What we’ll do next is consistent with that mindset.

We plan to keep scaling what works while tightening and improving the system around it. We’re strengthening alignment across teams, pushing for more consistent measurement of impact, and sharpening how we choose the right approach for the right problem. We’re also treating strategy as a living motion, not an annual document, because business and technology are constantly changing.

We know that what got us here isn’t going to get us where we need to go next. We’re excited about the continued evolution of AI strategy here at Microsoft Digital as we focus on scale, alignment to real business problems, and making sure the pace is sustainable for our business.

Key takeaways

Leaders who are scaling AI across IT can apply these lessons from our experience to stay focused, move faster, and deliver measurable business impact.

• Treat strategy as an ongoing practice. We’re revisiting priorities regularly to keep our AI work aligned with changing business goals.
• Separate direction from execution. We’re using a small strategy group to set focus and expectations while product teams remain accountable for delivery.
• Create a shared language for value. A consistent way to describe impact helps leaders compare initiatives, make tradeoffs, and explain progress with confidence.
• Let experimentation mature into focus. Early exploration builds capability, but scaling requires narrowing attention to the AI scenarios that matter most.
• Design for scale and sustainability. We’re paying as much attention to reuse, data readiness, and team sustainability as we are to speed and innovation.

Try it out

New to Microsoft 365 Copilot? Check it out!

Related links

• Check out how our data council is powering our unified data strategy at Microsoft.
• Learn how we’re powering the technical veracity of AI at Microsoft with a Center of Excellence.
• Find out how we’re reshaping Microsoft with continuous improvement and AI.
• Learn more about our approach to Responsible AI at Microsoft.
• Read about the enterprise tools and solutions at Microsoft AI.
• Learn how Azure AI apps and agents can help you build enterprise-scale AI solutions.

The post Visualizing success: Steering your AI deployment with a strategy council appeared first on Inside Track Blog.

• Introduction
• Chapter 1: Building your agent governance strategy
• Chapter 2: Establishing a solid data foundation for agent governance
• Chapter 3: A matrixed approach to agent governance
• Chapter 4: Tracking, impact, and value
• Conclusion: Governing the frontier

Empowering employees and protecting your organization through agent governance

Welcome to the agentic frontier

Agents are expanding the frontier of enterprise AI. By creating tools that surface knowledge, take actions, and even reinvent workflows, organizations can apply the power of AI to business processes in new and innovative ways.

But this shift raises questions for business and IT leaders: How do you get the benefits of agents without putting your organization and employees at risk? How do you encourage citizen developers to create agents freely while maintaining control, security, privacy, and compliance?

At Microsoft Digital, the company’s IT organization, we’re putting practical governance structures in place to ensure our internal agents are useful, safe, and properly scoped. Through a deliberate strategy of empowerment with established guardrails, we’re unlocking the potential of agentic transformation while maintaining the trust that defines our work.

Read and prepare

Check out our complete guide to deploying and adopting agents across the enterprise, based on our own experience here at Microsoft.

The AI maturity model and frontier transformation

Agentic AI has made a new operational model possible, one that blends machine intelligence with human judgment, creating AI-operated, human-led teams.

We call organizations that enact this model Frontier Firms.

As organizations move toward this new operational state, they progress from foundational AI assistance through escalating levels of agentic maturity and complexity. First, humans operate with help from an AI assistant like Microsoft 365 Copilot. Then, human-agent teams work together. But the future lies with humans leading teams of agent users: AI agents that perform core labor with relative autonomy.

Capturing the benefits of this model relies on many factors, but in our experience as Microsoft Digital, two main tenets are instrumental to a successful transformation:

1. Empowering employees and teams to create and experiment with their own agents
2. Properly governing those agents to protect the enterprise

It’s a balance. If you set agent builders free without the proper guardrails, you risk data overexposure, agent sprawl, and security vulnerabilities. However, being too restrictive about governance stifles individual imagination, workflow reinvention, and innovation that can come from agentic AI.

“At Microsoft, we’ve moved beyond envisioning the agentic future into operating within it every day. Our experience as Customer Zero gives us a unique perspective on what it takes to govern AI agents at scale, turning early lessons into proven practices that help organizations innovate with confidence.”

Brian Fielder, vice president, Microsoft Digital

We’re here to help you find the right balance for your organization.

This guide shares what we’ve learned along the way. As you read, you’ll follow our journey as Customer Zero at Microsoft, and you’ll gain access to tips and resources that we’ve assembled to help you apply our expertise to your own agent governance practice.

Every organization is different, and your experience will differ from ours in terms of risk tolerance, technical capability, resourcing, and more. This guide highlights some principles and best practices you can apply to your own business context, needs, and objectives.

“At Microsoft, we’ve moved beyond envisioning the agentic future into operating within it every day,” says Brian Fielder, vice president of Microsoft Digital. “Our experience as Customer Zero gives us a unique perspective on what it takes to govern AI agents at scale, turning early lessons into proven practices that help organizations innovate with confidence.”

Now is the time to seize this opportunity. Follow along to start your own journey toward frontier transformation and capture the benefits of trusted, connected agentic intelligence.

Learn from our experience governing agents

Within Microsoft Digital, we’ve been acting as Customer Zero for frontier transformation by creating the tools, infrastructure, and processes that power agents at Microsoft.

Our goal is to make it easy for employees to engage with agentic tools freely and adaptably while maintaining safety and responsibility. The path to this objective relies on a three-pronged approach to governance:

• Embedded governance functionality: Agent creation and publishing tools should incorporate good guidance, governance, and guardrails out of the box, making agents people create essentially self-governing.
• IT oversight: This is a new space and a new way of working, so it isn’t feasible for all agents to self-govern at this point. As an IT organization, we fill gaps in governance through reviews and oversight. We establish risk-based policies around types of agents, exposure and sharing, and other pivots.
• User education: It’s almost impossible to predict every governance gap and need, so educating our users helps them avoid accidentally increasing risk. Our Agents at Microsoft team and individual change managers are the guides for these efforts. Employees can also refer to resources like Microsoft Learn courses and the Agent Builders SharePoint hub.

Throughout this journey, we’ve empowered our employees to create all kinds of agents, ranging from simple personal tools built by people working in every function, with every level of technical skill, all the way to AI-powered enterprise tools designed by professional developers for use across lines of business and even the entire company.

As part of the process, we’ve incorporated guardrails to ensure less technical employees are limited to tools that simply retrieve enterprise knowledge, such as SharePoint Agent Builder or Copilot Studio, while software engineers get the full power of any tool they need that can take action or automate workflows, including Microsoft Foundry and Microsoft 365 Agent Toolkit.

Over the course of this journey, we’ve learned valuable lessons about effective agent governance, including:

• How to build an impactful but flexible governance strategy
• Strategies for creating an AI-ready data ecosystem
• Ways to apply appropriate policies and controls for highly diverse agents
• Approaches for tracking the impact and value of agents

Chapter 1: Building your agent governance strategy

Thinking through your organizational needs and building a framework to govern agents

As we’ve incorporated agents into different aspects of our organization, we’ve also deepened their involvement in employees’ daily workflows and core business processes. Because of this, we’re diligent about the governance guardrails and policies that protect our organization.

We’ve accumulated a wealth of knowledge and insights in this area through our efforts governing Microsoft 365 Copilot. Based on this experience, some of the key priorities that we made sure to adhere to included:

• Effectively applying controls to ensure users and apps don’t get access to privileged information
• Preventing employees from creating agents that violate company policies
• Balancing the freedom for employees to share their creations with the need to prevent agent sprawl
• Delineating which agents are authoritative and applicable for enterprise functions and which ones are meant for employees’ own personal use.
• Inventorying agents to provide lifecycle management
• Securing and protecting confidential data while respecting our responsible AI principles: Fairness, reliability and safety, privacy and security, transparency, accountability, and inclusiveness
• Unlocking telemetry that enables us to govern agents effectively

By focusing on each of these dimensions, our governance team has centered its efforts on the value these agents provide to the company while also ensuring organizational safety and trust. To realize this value, we emphasize three key principles that help protect both our employees and the organization:

Security

We’ve established standards for data classification, policies for handling confidential information, and other security measures to protect data from unauthorized access, misuse, and disclosures. Microsoft Purview powers these capabilities through data labeling, rights management, and data loss prevention.

Privacy

Privacy compliance measures keep personal data protected and ensure agents adhere to regulatory frameworks in the regions where we operate. We conduct regular privacy assessments for all applications, including high-impact agents.

Regulation

Regulatory compliance assessments ensure agents meet prevailing legal standards. Our legal and compliance teams carefully monitor AI guidelines, regulations, and laws as they evolve so we can understand and incorporate them into these assessments.

We incorporated elements of our tenant’s minimum bar for governance into how we secure agents. Those include Microsoft Purview Information Protection, a functional inventory, activity logging, lifecycle management, and the ability to properly isolate agents so that they don’t cross data boundaries.

Our overarching tenant governance strategy is to govern items like documents and data at the container level. However, within a SharePoint site, for example, the added functionality of agents demands that we introduce further controls like sharing limits, breadth of knowledge sources, agent metadata, and information about an agent’s behaviors.

Turning priorities into principles

To operationalize governance, we developed six principles that guide our approach to agents. They form the governance foundation for a wide matrix of agent creation and usage opportunities.

1. We ensure a strong data hygiene foundation so we can trust our data estate as employees build and use agents.
2. We empower employees to build personal agents that can access permitted services and data sources to help automate and accelerate their tasks.
3. We empower teams and lines of business to build agents with known lower-risk patterns to accelerate impact.
4. We provide a smooth release path for engineering teams to develop agents designed for enterprise functions so they can access all the services and sources they need. This includes the same software development lifecycle (SDLC) reviews and certifications as other enterprise software, which we outline in Chapter 3.
5. We accelerate innovation through agent and automation templates while maintaining an AI Center of Excellence (CoE) to help teams think through their opportunities.
6. We reimagine employee experiences and task execution to simplify and optimize productivity.

Read and prepare

Powering the technical veracity of AI at Microsoft with a Center of Excellence.

Securing control through agent lifecycles

As we strategized to operationalize good governance, agent lifecycles became one of our most crucial tools. We superimposed the enterprise lifecycle on top of these policies, with both user-based and attestation-based lifecycles.

This means we treat agents owned by individual employees like any other user app and delete them when they leave the organization. Meanwhile, we ensure that agents owned by teams have a lifecycle that’s defined by the tenant and tied to attestation, our internal enterprise SDLC, and accountability confirmations.

This approach helps us combat sprawl by eliminating agents that no longer serve a purpose. It provides a solid foundation for more fine-tuned, matrixed policies and practices.

Governing amid real-time technology acceleration

One recent development illustrates how the rapid advancement of AI technology requires us to stay ahead of policy for new features.

Model Context Protocol (MCP) adds new capabilities, but also new risks and challenges. It’s a simple standard that lets AI systems communicate with the right tools and data without custom integration work. Instead of building a new connection or API every time, teams plug into a common pattern.

That standardization delivers speed and flexibility, but it also changes the security equation. We’ve extended our security and governance practices to account for MCP servers.

Our practices and policies help us govern agents effectively in this new environment. First, we assess security across four layers: Applications and agents, the AI platform, data, and infrastructure. We establish a secure-by-default strategy by positioning every remote MCP server behind our API gateway and establishing practices for vetting, identity management, automation that slows agents at the right moments, context trimming, and server isolation.

As you define policies for governing your own agentic ecosystem, you can take inspiration from our process. Start by asking questions about what you want to accomplish and what you want to protect, then move on to establishing your most important priorities. From there, you can cement those priorities into policies.

Learning from our approach to agent governance strategy

Match policies to progress on your AI journey

The complexity of agent governance depends on the maturity of your organization and where you are in your adoption journey. Start slowly to let that maturity grow over time.

A strong policy framework is the foundation

Lean on existing app governance policies, then layer agent-specific structures on top.

Take your cues from established standards

Global regulations around privacy, security, and responsible AI provide a good baseline for establishing governance policies. Assign teams to work through these regulations and incorporate their insights into your agent governance strategy.

Decide on your comfort level with risk

Bring cross-disciplinary experts together from across your organization to determine what level of risk is acceptable for different agents and their use cases. Put guardrails in place for low-risk scenarios and establish processes for supporting more complex or sensitive use cases. Evaluate what data sources agents can extract information from. Establish whether users have shared sensitive data sources.

Change is constant

Plan to reassess and revise your governance structure regularly. Agents are evolving rapidly, as is the tooling surrounding them, so maintaining good governance policies will be an ongoing practice.

Governance is a value driver for employees

Governance isn’t just about protecting your organization. It also provides the right patterns to make sure your employees are getting value from agents. Establish strong measures of business value and a robust methodology for management and assessment of agents through ongoing tracking. This kind of observation and telemetry is foundational and should be a key part of your governance efforts.

Key takeaways

Use these tips based on what we learned here at Microsoft to build your strategy for agent governance at your company:

• Establish a cross-disciplinary agent Center of Excellence. Bring together stakeholders across the organization to define priorities, goals, and shared practices for agent adoption.
• Right-size oversight based on risk. Determine your organization’s risk tolerance and define which agents require more or less involvement from IT, security, and compliance teams.
• Operationalize agent oversight and management. Establish an oversight model and implement tools that help manage agents at scale.
• Establish change management and adoption. Determine and implement a strategy for driving adoption to educate and empower employees.
• Create a centralized governance and information hub. Provide employees and agent builders with a single place to find guidance, standards, and governance information.

Learn more

How we did it at Microsoft

• Find out how we’re protecting AI conversations at Microsoft with MCP security and governance. This post outlines how we’re streamlining MCP governance through secure-by-default architecture, automation, and inventory.
• Explore our IT playbook for the AI era and learn how we’re becoming a Frontier Firm. This article shares our journey as an IT organization in support of this new operating model.
• Discover how Microsoft is becoming an AI-first Frontier Firm. This story shares how we’re approaching the idea of an agentic future.
• Read our five-step guide for IT leaders who want to drive greater AI maturity. This resource can help you chart a course through AI maturity to reimagine what’s possible for the enterprise.
• Learn from our experience tackling Microsoft 365 Copilot governance. This guide details our governance efforts for Microsoft 365 Copilot and can serve as a starting point for agentic governance.

Further guidance for you

• Secure your agents at scale with Microsoft Agent 365 guidance for unified identity, compliance, and control across platforms.
• Learn about the responsible AI policies and practices that guide our use of AI at Microsoft.

Chapter 2: Establishing a solid data foundation for agent governance

Setting agents up for success using a secure, robust data foundation

Operating according to an escalating maturity model means we’ve done the foundational work to secure and govern our data estate for Microsoft 365 Copilot. Many of the same principles apply to agents, with the added complexity of incorporating additional data sources.

To lead these efforts, we established a cross-functional team of data professionals within our AI CoE. This team is mostly comprised of Microsoft Digital employees who support corporate functions like Corporate, External, and Legal Affairs (CELA) and Global Workplace Services. Together with our AI CoE, this team helped us define what it means to have AI-ready data.

In essence, AI-ready data just means information we’ve certified for AI workloads. We certify those data sources using Microsoft Purview to identify defects in our core data products, and we’ve also built AI-powered assessments to certify which data lakes are AI-ready.

In most ways, governance is tool-agnostic and rooted in basic principles. With robust data labeling, data hygiene, and permissions in place alongside our AI tools, which respect labels by default, we can confidently give every employee the ability to build basic agents and trust in our governance guardrails. For decades, the challenge of data analysts and engineers was maintaining a consistently reliable source of truth despite inconsistent data quality, insufficient governance, and years of collecting data in silos. Microsoft Fabric and Microsoft Purview can help resolve these issues.

We’re embracing a more balanced, federated approach to data management today. We call this approach a data mesh. Rather than allowing unchecked decentralization or forcing all our data into a single centralized system, the data mesh formalizes domain ownership while embedding governance, quality, and interoperability directly into shared platforms.

The data mesh connects and distributes, data products across domains, enabling shared data access and compute while scaling beyond centralized architectures.

Platform services are standardized blueprints that embed security, interoperability, policies, standards, and core capabilities — providing guardrails that enable speed without fragmentation.

Data management zones provide centralized governance capabilities for policy enforcement, lineage, observability, compliance, and enterprise-width trust.

With this approach, our domain teams publish data as well-defined, discoverable products, while common standards for security, metadata, and compliance are enforced through automation rather than manual processes. This model preserves enterprise trust and consistency without sacrificing speed or autonomy. By adopting a data mesh mindset, we can scale analytics and AI more effectively across the organization while still keeping ownership closely connected to the business focus.

Confidentiality labels, the practical framework for data protection

To operate according to Zero Trust principles, we needed a coherent system that lets us see, label, and protect data. Otherwise, the burden of data loss prevention would fall solely on employees, who would have to exercise individual discretion whenever they decided how to house and share potentially sensitive content.

With labeling, it’s important to strike a balance between the depth necessary for supporting an array of data governance controls and the simplicity to ensure labeling isn’t burdensome for users.

We decided on four overarching labels for container and file classification, each with its own sub-labels. The highest-level schema looks like this:

1. Highly confidential: We only share our most critical data with named recipients.
2. Confidential: Any items crucial to achieving our goals feature limited distribution.
3. General: Employees can share daily work–like personal settings and postal codes–internally throughout Microsoft.
4. Public: We share unrestricted data meant for public consumption freely. That includes information like publicly released source code and openly announced financials.

For our risk tolerance and organizational needs, we made the decision to protect data designated confidential or higher. As a result, we contain data flows to their tenants and only trust suitable storage destinations for content. That suitability depends on a storage location’s ability to gate which connectors can work with particular source data and sensitivity labels.

The administrators responsible for workspaces like SharePoint sites set default labels. These labels serve as a foundation for appropriate access and circulation for objects within those containers. It takes the burden of labeling off of employees. The sensitivity labels that administrators apply map to several different categories of policies that can anticipate and help to mitigate data loss and risk.

They communicate four key areas:

1. Breadth of availability: Labels determine whether the workspace is broadly available internally or is a private site.
2. External permissions: We administer guest allowance via the group’s classification, allowing specified partners to access teams when appropriate.
3. Sharing guidelines: We tie important governance policies to the container’s label. For example, can an employee share this workspace outside of Microsoft? Is this group limited to a specific division or team? Is it restricted to specific people? The label establishes these rules.
4. Conditional access: While we haven’t implemented this policy at Microsoft, tying identity and device verification to container labels can introduce additional governance controls.

Within Microsoft Digital, we’ve put a lot of thought into how each of our labels aligns with relevant policies. You can see more of the logic behind our sensitivity labels and their policies in this graphic:

If a container owner needs different policies for a set of files to provide greater external access, they can self-service new groups without accidentally violating our governance practices.

At Microsoft, we use Microsoft Purview, which is our suite of data estate management tools, but you can use your tool of choice to apply labels in your environment. Microsoft tools will respect them. Microsoft Purview helps us accomplish three important tasks: mapping our labeling structure onto the relevant policies, verifying them against our standards, and backstopping self-service data loss prevention practices through automation.

Automation is particularly useful. We’ve configured Microsoft Purview Information Protection to scan automatically for wayward credentials, malicious user behaviors, and other sensitive information in items without the proper protections. When Purview detects a violation, our governance team receives alerts that prompt them to contain the risk by upgrading an item’s sensitivity label or requiring employees to remedy the issue.

The result is a system that allows flexibility for employees to self-manage their digital workspaces while providing guardrails that help our governance experts take appropriate actions without overtaxing their time and resources.

Our approach within Microsoft Digital is just one way to create an AI-ready data estate, but aspects of our story will hold true for almost any organization. Consider establishing a body to take over responsibility for AI-ready data, developing your primary goals for AI-ready data, unifying your data estate, and implementing a system of confidentiality labels.

Learning from our approach to agent governance strategy

Define the responsibility for AI-ready data

Identify and assign enterprise data owners to implement and oversee the processes that guarantee data quality.

Create intuitive labels

Your employees will be the ones applying labels, so make those labels intuitive. For example, “highly confidential” is easy to understand, while “business-critical” could be interpreted in many ways from a sensitivity standpoint.

Don’t overwhelm your users

Make labeling simple and intuitive to ensure it isn’t overwhelming. Employees should have a limited set of choices to keep things comprehensible.

Use existing defaults

Identify the security needs and regulatory compliance that are specific to your organization and use built-in governance controls available through Microsoft tools.

Key takeaways

You can use these tips based on what we learned here at Microsoft to tackle agent governance at your company:

• Establish a cross-functional data council. Form a data council to help promote a culture of AI-ready data with professionals from all relevant disciplines, including human resources, legal, security, IT, and anyone else who can share relevant expertise.
• Certify datasets for AI workloads. Limit agents to datasets that have been certified as “AI-ready” to minimize hallucinations and reasoning errors.
• Define your labeling parameters. Keep the number of labels to five main labels with five sub-labels each. The fewer you use, the better.
• Align your sensitivity labels with policies. Consider how your labels line up with breadth of availability, external permissions, sharing guidelines, and conditional access.

Learn more

How we did it at Microsoft

• Follow our journey as we transform our data culture with AI-ready data. This story highlights how we’re using Microsoft Fabric and Microsoft Purview to revolutionize our approach to data governance and AI readiness here at Microsoft.
• Discover how a data council is powering our unified data strategy at Microsoft. This post tells the story of how the Microsoft Digital Data Council is leading our efforts to adopt an AI-ready data strategy.
• See how we’re conditioning our unstructured data for AI at Microsoft. This article explains our internal strategies for handling unstructured data, which can be surfaced by AI agents.

Further guidance for you

• Learn about governance and security for agents and how to keep your AI initiatives secure across your organization.
• Establish responsible AI policies for AI agents to support ethical, transparent, and accountable AI agent deployment across your organization.

Chapter 3: A matrixed approach to agent governance

Governing different types of agents for different contexts, built with different toolsets

Our customers have expressed a strong desire to start building agents, but they’re concerned about where to begin and how to manage those agents once they’re built. They worry about persistent problems such as hallucinations and agent sprawl. These concerns are especially pronounced on IT teams.

During our Customer Zero journey, we’ve learned that the diversity of agent types and creation methods means there’s no one-size-fits-all approach to governance. Generalized approaches will only get you so far.

We’ve found it helpful to think about different kinds of agents along an escalating spectrum of development complexity:

There’s an entire matrix of different parameters that apply to an agent at any level of this spectrum, and they all require different policies. Those parameters include:

• Level of reach: Personal agents, limited sharing (like development environments or team boundaries), or enterprise-wide distribution
• Agent-building tool: SharePoint agent builder, Agent Builder in Microsoft 365 Copilot, Microsoft Copilot Studio, or tools geared to more professional developers (such as Microsoft Foundry or Microsoft 365 Agent Toolkit)
• Knowledge sources and content accuracy: Public sites, SharePoint and OneDrive, directly uploaded files, enterprise apps and systems, or third-party knowledge bases

Each of these parameters creates a pivot that we need to govern, and we’ve carefully assembled a set of policies and controls to account for them. As our understanding and use of agents advances, we’re continually updating how we match their characteristics and capabilities with relevant policies and any applicable reviews.

Within Microsoft Digital, we’ve adopted a risk-based approach that helps us establish a matrixed model for agent governance. The foundational idea is that we identify potential harms for each kind of agent, then assign policies for the level of review and oversight they require.

For example, simple agents that can only read and present data tend to be low risk. Because their access is tied to their creators’ identities and access, our data governance structures and guardrails can prevent overexposure. But for agents that have capabilities like writing data, taking action, or creating items, more reviews are necessary.

A matrix of agent governance policies, pivoted by parameter

The following matrix enumerates the factors that determine how we govern different kinds of agents created using different tools. This matrix helps our employees understand the agent creation process and helps us maintain safety and control.

In addition to mapping out our policies for governing agents, the matrix illustrates how we see their relative utility across the organization. It demonstrates an escalation from personally useful to organizationally useful agents. Their governance policies and controls escalate accordingly.

Regionality is an additional concern. Regulatory compliance might vary, but it’s important to keep in mind that certain kinds of data access and actions might be perfectly permissible in one region, but not in another.

One example is our Employee Self-Service Agent, a central resource employees can turn to for help with IT support, HR questions, and facilities requests. Because it can access potentially sensitive personal information, this agent required additional review from European works councils to ensure it met all relevant workplace standards.

As you facilitate the experimentation and innovation with agents across your workforce from citizen developers to pro developers, consider adopting a similar matrixed approach to agent governance. It starts with understanding your organization’s needs, your risk tolerance, and the different employee populations you want to equip with agent-building capabilities.

Learning from our matrixed approach to agent governance

Figure out your building environment strategy

Decide which scenarios match up with specific environments and make those environments available to the relevant employees.

Design governance structures that scale from low-code to more advanced agentic tools

With the proliferation of AI agents, platform-level approvals similar to the Power Platform model at Microsoft can ensure rapid innovation while requiring review for individual high-impact scenarios.

Build trust through transparency and structure

A clear, well-documented approval process helps internal regulatory advisors understand new AI technologies and establishes the trust needed for productive, long-term collaboration.

Treat regional partners as strategic allies in the agentic future

Early feedback on digital agents from regional partners like works councils helps improve product design, accelerate approvals, and reduce fear or misconceptions about AI in the workplace.

Don’t forget that Copilot Studio is part of Power Platform

You can use what you’ve learned empowering citizen developers in Power Platform to guide your work with agents.

Key takeaways

Use these tips based on what we learned here at Microsoft to tackle agent governance at your company:

• Establish your tolerance for risk. Determine where the most prevalent risks emerge across different populations and kinds of agents. Remember, you control the guardrails in your environment.
• Determine what agent-building tools you want to roll out and who can use them. Different populations benefit from different agent-building capabilities. Put thought into what individuals and teams can create and the degree of partnership each level will need from IT.
• Define your governance parameters for different kinds of agents. Determine the best ways to hedge against risk at every level. For example, you might choose to trust in tenant governance for simple agents and establish reviews for more complex tools.

Learn more

How we did it at Microsoft

• See how we’re empowering employees with the Power Platform. This article explains how our Power Platform governance model influenced our matrixed approach to agent governance.
• Learn how our employees are building their own AI tools. This article describes how knowledge workers at Microsoft are forging their own agents to help improve efficiency and get more done.
• Check out our lessons learned using SharePoint agents at Microsoft. This post shows how we approached governance for low-risk, knowledge-only agents through our deployment of SharePoint agents.
• Read how we’re unlocking enterprise AI extensibility with Copilot Studio. This story explores how we govern more advanced agents built with Copilot Studio, including connectors, orchestration, and scaled governance.

Further guidance for you

• Explore governance and security for AI agents across the organization with Microsoft Learn content.
• Check out this industry-standard framework that validates matrixed, risk-based governance approaches for AI systems.

Chapter 4: Tracking, impact, and value

Managing agents and assessing their business impact for the organization

It’s clear that agents bring astonishing capabilities to the enterprise. For many organizations, what remains unclear is exactly how to measure their impact. Without that information, businesses are at a loss for ways to articulate value and drive improvement.

Tracking agents is also a crucial component of preventing sprawl: We need to understand what agents we have, how employees are using them, what critical processes they’re supporting, and if they’re contributing value or need to be retired.

We’re at the beginning of our impact-tracking journey, but our work can provide a starting point for your own efforts to measure the value of AI initiatives at your organization.

Managing our agent catalog through comprehensive tracking

Microsoft Digital partners with other internal organizations to ensure we’re prioritizing the right agents and avoiding agent sprawl. Ideally, these engagements take place before teams start building their agents so we can avoid wasted effort or duplicated work.

Still, ongoing management efforts are crucial to keeping our agent ecosystem healthy. Telemetry is the key to assessing usage and ensuring compliance. We’ve developed our own internal tooling to ensure that:

• Metadata is complete and available
• The tooling tells us the right information about our agents
• The tools connect properly with other compliance tooling, like Microsoft Purview

This telemetry also reveals agent behaviors, shows how agents do their work, and tracks events, actions, and policy baselines.

These capabilities help us gain visibility into policy adherence and violations, and then to conduct enforcement actions. We also track the speed of reaction and mitigation. AI-ready data and robust guardrails mean we head off most violations before they occur.

A robust inventory, an agile policy framework, and an automated workflow for enforcement are cornerstones for successfully governing agents at scale.

The release of Microsoft Agent 365, now in early access, represents the next step in agent observability and management, two key aspects of agent governance and sprawl mitigation. This control pane for agents incorporates many of our learnings as we’ve bridged governance gaps through IT intervention.

Some of the key aspects of the control pane:

The registry

Provides a complete view of agents, and the enterprise agent store makes it easy to find the right agents for each role and business process within familiar workflows in Microsoft 365 Copilot and Teams.

Visualization

Delivers the observability layer, including role-specific oversight, compliance and audit features, and performance measurements that can help organizations track their agents’ impact and see where they contribute value.

Interoperability

Ensures Agent 365 is open to any Microsoft-built or partner ecosystem, while delivering work intelligence through access to data and Microsoft 365 apps.

Security features

Provide crucial confidence through visibility into security posture, detection and response capabilities, and intelligent runtime defense.

As Customer Zero for Agent 365, we’re excited to have a platform for observability and telemetry that encompasses everything from agentic creation through usage.

Tracking governance from agent inception

Professionally developed agents add a new dimension of tracking and governance, because we need standards in place for ensuring compliant agent-building and to remediate any issues.

We use our Azure DevOps instance to catalog apps on our tenant, and we’ve applied this practice to agents created professionally for lines of business and enterprise agents. This tool contains our service tree with product and app log registration, which is tied to our KPI dashboard and scoring system that validates agent data against our policies.

Our expectation is that all new apps and agents start from a place of compliance. Any new agent is registered through this platform, and we expect adherence within the first 14 days. In our experience, the introduction of new metrics, policies, or timeframes as our governance policies evolve is where agents tend to drop out of compliance. The priority is restoring compliant status.

We’ve established a series of metrics to help track and manage these expectations:

• Enablement velocity
• Renewal velocity
• Agents in compliance
• Time to remediation of noncompliance

Through a DevOps process built on our preexisting software development lifecycle practices, we’ve applied governance not only to agents themselves, but to the process of building them professionally.

Measuring progress and unlocking value

Properly measuring value depends on concrete definitions of success and metrics that support it. Articulating AI’s impact came with several challenges. First, we had to land on a consistent taxonomy for different measurement areas. Then we needed to make the relevant data accessible, ensure its quality, and confirm it made sense.

The Microsoft Digital AI Value Framework is our flexible, modular tool for measuring the impact of our AI initiatives. With tools for measurement firmly in place, we can effectively demonstrate value and guide further decision-making.

We plan to use the following capabilities to improve the overall ecosystem:

• Filtering our agent inventory on specific criteria like the type of agent or how it was built
• Enhancing governance-specific actions we can take with agents in areas like ownership and quarantining
• Gaining visibility into trends like agent usage
• Ingesting agent blueprints and defining policy templates

We’re still in the midst of our agentic measurement journey at Microsoft, but the blueprint for tracking already exists. Your organization might be in the early stages of agent readiness and deployment. If that’s the case, it could be helpful for you to internalize the lessons we’ve learned as Customer Zero and apply them as early as possible in your own journey toward AI maturity.

Learning from our agent adoption experience

Think proactively, not retroactively

If you put effort into tracking agentic impact early in your AI maturity journey, you’ll be poised to start capturing insights immediately instead of applying your methodology retroactively.

Involve a wide array of stakeholders

This workstream needs oversight from different kinds of stakeholders, including your leadership team, IT, Microsoft 365 administrators, agent developers and builders, and employee champions. That will provide the sponsorship, expertise, and perspective you need for success.

Different measurements will be appropriate for different phases of your initiatives

These measurements include monthly, weekly, or daily active usage; consider which metrics make sense at each phase of an AI initiative.

Establish a continuum of value

Agents need to tie into real business goals, so it’s important to establish metrics that actually speak to those objectives. Cascade business goals to concrete KPIs with well-defined timelines and track those diligently.

Embrace the red

Try to think of underperformance not as failure, but as data. Performance data over time helps you course correct or pivot, making sure you invest where it matters.

Key takeaways

Here are some important steps to keep in mind as you embark on your own tracking and measurement efforts for agents:

• Establish priorities and parameters for tracking agents. Consider measurements that relate to sprawl, usage, and coverage, and build them into your telemetry tooling.
• Pull your stakeholders together to establish measurement parameters. Cascade business priorities into measurable value.
• Conduct ongoing tracking. Establish a cadence for tracking and reviewing progress with your team.

Learn more

How we did it at Microsoft

• Learn how we’re measuring the impact of Microsoft 365 Copilot and AI at Microsoft. Discover our framework for tracking the impact of the investments in AI that we’re making internally.
• Find out how we’re deploying Microsoft Agent 365 internally. This story shares our intentions for using our unified control pane for agents.
• See how we’re building an AI-powered continuous improvement culture at Microsoft. This article outlines our approach to continuous improvement.
• Check out how we’re reshaping Microsoft with continuous improvement and AI. This post discusses the importance of continuous improvement for accelerating AI at Microsoft, including three initiatives already underway.

Further guidance for you

• This Microsoft Learn guidance helps organizations align AI investments with strategic goals and measurable outcomes over time.
• Explore a cloud adoption framework that provides practical guidance for defining success metrics, tracking ROI, and tying AI initiatives to business outcomes.

Governing the frontier to scale innovation

AI agents are rapidly becoming core contributors to how work gets done. As our experience within Microsoft Digital demonstrates, realizing their full potential demands more than powerful tools or enthusiastic builders. It requires thoughtful governance that evolves alongside your AI maturity, protects what matters, and gives employees the confidence to innovate responsibly.

As you consider your own strategy for managing agents, it can be helpful to keep one truth in mind: Governance is a catalyst for progress, not a barrier. By embedding guardrails into tools, grounding agent creation in AI‑ready data, applying risk‑based and matrixed policies, and reinforcing all of it through adoption and education, we’ve been able to expand agentic capability without sacrificing security, privacy, or trust.

From our experience, we’ve learned that governance works best when it’s:

• Proportional, scaling with risk and agent complexity
• Embedded, not bolted on after the fact
• Human‑led, recognizing that accountability and judgment remain essential
• Iterative, adapting as technology, regulations, and business needs evolve

When you design governance this way, it allows experimentation, learning, and impact at scale. Employees feel empowered to build agents that solve real problems, while IT and compliance teams gain visibility and control without becoming bottlenecks. Crucially, leaders can measure value, manage risk, and make informed decisions about where to invest next.

“At Microsoft, we believe the future of agentic AI depends on governance that empowers people first. The structures should be invisible when they’re working, intentional when they’re needed, and trusted by everyone they serve.”

Vijaya Alaparthi, principal group product manager, Microsoft Digital

This is the foundation of the Frontier Firm: Organizations where humans lead and agents operate, guided by clear principles and trusted systems.

As you continue your AI maturity journey, remember that there is no single, correct governance model. Your approach will reflect your risk tolerance, regulatory environment, data maturity, and organizational culture. The practices outlined here provide a proven starting point informed by real-world deployment at enterprise scale.

“At Microsoft, we believe the future of agentic AI depends on governance that empowers people first,” says Vijaya Alaparthi, principal group product manager in Microsoft Digital. “The structures should be invisible when they’re working, intentional when they’re needed, and trusted by everyone they serve.”

Now is the moment to act. Start with strong foundations. Empower your builders. Measure what matters. And treat governance not as a constraint, but as a strategic advantage that allows your organization to move faster, innovate safely, and lead confidently on the agentic frontier.

Key takeaways

Here are the high-level learnings and insights that you need to consider as you embark on your own agent governance journey, based on what we’ve learned here at Microsoft:

• Treat governance as an enabler of innovation, not a brake. Effective agent governance is what makes large‑scale innovation possible. When you embed guardrails into platforms, data, and processes, employees can build and experiment confidently without exposing the organization to unnecessary risk or slowing progress.
• Match governance rigor to agent risk and maturity. Not all agents need the same level of oversight. A risk‑based, matrixed approach lets organizations trust lightweight, personal agents while applying deeper reviews to agents that write data, take actions, or operate across business‑critical systems.
• Start with AI‑ready data and zero‑trust foundations. Strong agent governance rests on secure, well‑labeled, high‑quality data. Clear ownership, intuitive sensitivity labels, default protections, and automation reduce reliance on user judgment and allow agents to operate safely at scale.
• Embed governance where agents are built and used. The most effective governance is built into tools and workflows, not enforced through manual reviews alone. Defaults, limits, identity‑based access, lifecycle controls, and telemetry should apply automatically so agents are governed by design.
• Plan for the full agent lifecycle to prevent sprawl. Agent inventories, ownership models, attestation, and retirement processes are essential. Governance needs to account for how you create, share, evolve, audit, and ultimately decommission agents, whether individuals or enterprise teams are responsible for building them.
• Reinforce governance through adoption and education. Guardrails work best when employees understand them. Targeted adoption programs, clear guidance, prerequisites for advanced tools, and visible leadership sponsorship can help employees build responsibly and recognize their role in protecting the organization.
• Measure what matters to prove value and drive improvement. Visibility drives trust. Telemetry, observability, and clear metrics that span productivity, quality, risk reduction, and experience allow organizations to track impact, course‑correct early, and continuously improve their agent ecosystem.

Learn more

• Discover our IT playbook for becoming an AI-driven Frontier Firm.
• Learn how to secure your agents at scale with Microsoft Agent 365 guidance.
• Read a guide to governance and security for AI agents at your organization.
• Check out this detailed guide to our governance process for the internal rollout of Microsoft 365 Copilot.  
• Explore ways to establish responsible AI policies for agents across the organization.  
• Find out how a data council is powering our unified data strategy at Microsoft.

Try it out

Get started building and managing agents at your company with Microsoft Agent 365.

The post Governing AI agents at scale: Lessons from our journey at Microsoft appeared first on Inside Track Blog.

Working in Microsoft Digital, the company’s internal IT organization, means being part of a group that operates at massive scale, deploying and managing the technology solutions that enable the company to collaborate, achieve, and fully embrace its shift to a Frontier Firm.

“Being successful in today’s fast-paced environment requires more than technical expertise. Success comes from embracing change, adapting quickly, and continuously learning alongside others. The most impactful teams combine technical capability with curiosity, collaboration, and a mindset of continuous evolution.”

Miguel Uribe, principal PM manager, Microsoft Digital

Our work touches on nearly every aspect of the business, from the network our employees rely on to safely connect to corporate resources, to the productivity apps they rely on every day, to the devices that power our global enterprise. We’re also key to the internal deployment and adoption of agentic AI tools for a global workforce of over 200,000 people.

Microsoft Digital employees have the daily opportunity to tackle complex, real‑world challenges while shaping how Microsoft develops new technologies, serving as Customer Zero for the company’s use of its own products and services.

“Being successful in today’s fast-paced environment requires more than technical expertise,” says Miguel Uribe, a principal PM manager in Microsoft Digital. “Success comes from embracing change, adapting quickly, and continuously learning alongside others. The most impactful teams combine technical capability with curiosity, collaboration, and a mindset of continuous evolution.”

The path to Microsoft Digital

Managing the full breadth of IT responsibilities at an organization the size of Microsoft requires a workforce with a diverse range of perspectives and lived experiences. Accordingly, the people who work here possess a wide variety of backgrounds and skill sets, and hail from around the world.

Networking and relationship-building are often helpful in finding your way into the organization. Mykhailo Sydorchuk, a principal product manager in Microsoft Digital, started his career in Ukraine at a SharePoint solution startup with some prominent global customers. After a successful implementation with one of them, he built a strong relationship with a manager there.

When that person’s company later opened up a SharePoint role, Sydorchuk applied, was hired, and relocated to Los Angeles. He wore many hats in the job, serving as a SharePoint administrator, Microsoft 365 tenant administrator, developer, and project manager for internal IT rollouts and large-scale change management efforts.

Eventually, he was ready for a change.

“My colleague eventually joined Microsoft,” Sydorchuk says. “She felt I would be a good fit and suggested I apply. I went through the interview process and landed the role here about six years ago. So, I got the job very much through networking.”

Some employees at Microsoft Digital have an extensive work history, while others are just getting started in their careers.

“The internship structure is very supportive. Interns are given broad, open‑ended problems rather than tightly scoped tasks, which allows for deeper exploration.”

Jeni Huang, product designer, Microsoft Digital

Internships offer a great opportunity for many candidates who are new to the job market, giving them a way to get a foothold at the company. Microsoft hires thousands of interns each year globally, with year-to-year fluctuations based on hiring conditions and program scope. Within that broader program, design interns are part of a smaller, close-knit cohort, making mentorship and studio connections especially meaningful.

“The internship structure is very supportive,” says Jeni Huang, a product designer in Microsoft Digital who started with the company as an intern in 2022. “Interns are given broad, open‑ended problems rather than tightly scoped tasks, which allows for deeper exploration.”

In Huang’s early work as an intern at the company, she was encouraged to explore more forward-thinking design concepts rather than incremental improvements. That freedom helped her build strong relationships with her manager and others working in the design studio.

“Even though I’m now on a different team, many of the same people remain,” Huang says. “Those connections played a big role in my return as a full‑time Microsoft employee.”

Interesting, impactful work

The people who work at Microsoft Digital routinely tackle ambitious, forward‑thinking projects, with an eye toward reimagining how IT operates at a global scale. Our teams focus on building intelligent, AI‑powered employee experiences, using cloud-native platforms and data-driven insights to simplify work, boost productivity, reduce friction, and help everyone at the company do their best work.

“Microsoft, even after a long and storied history, remains one of the best places for employees to thrive professionally and personally. Experimenting and innovating are at our core—managers are encouraged to provide the time and space for innovation, and to celebrate both successes and learnings.”

Andrew Osten, general manager, business operations and programs, Microsoft Digital

Many of our projects involve large-scale automation, modernizing legacy systems, and embedding responsible AI into everyday workflows, including personalized self‑service technologies, adaptive productivity tools, and predictive insights for decision making. This environment creates a feeling of autonomy for employees and allows them to make significant impact.

“Microsoft, even after a long and storied history, remains one of the best places for employees to thrive professionally and personally,” says Andrew Osten, general manager for business operations and programs in Microsoft Digital. “Experimenting and innovating are at our core—managers are encouraged to provide the time and space for innovation, and to celebrate both successes and learnings.”

Microsoft Digital employees work on front-line technologies that matter. Their efforts serve as living case studies for Microsoft products, testing them in real-world conditions before they reach our customers. The result is a portfolio of work that combines innovation, pragmatism, and long-term thinking.

“We run hackathons sessions like ‘Fix, Hack, Learn,’ where we train ourselves on new technologies and then actively experiment,” Osten says. “That’s one of the most exciting parts of working here: We’re always pushed to explore the latest and greatest technologies and find real value in them.”

The pace can be fast and intense, but it offers the opportunity to work at the cutting edge and be part of transformative software releases. Innovative products result from being given the time and trust to invest and iterate.

“Open-mindedness and flexibility are critical here,” Sydorchuk says. “Technology evolves too quickly to get attached to specific ideas or scopes. Constant change is the norm, and learning to live with uncertainty is essential.”

Customer Zero: Our defining mission

A central component to working in Microsoft Digital is our role as Customer Zero. This concept describes how we use our own products and services internally before releasing them to customers, subjecting them to security, compliance, and productivity demands at an enterprise-level organization.

“Because we deploy these products internally at scale, we learn a tremendous amount, especially since many of these capabilities are early-stage or newly released.”

Andrew Osten, general manager, business operations and programs, Microsoft Digital

This approach surfaces functionality gaps, risks, and usability issues early, turning internal teams into live stress tests for new technologies before they are released to customers. Customer Zero helps ensure our products are resilient, fit for purpose, trustworthy, and grounded in real-world needs, not idealized scenarios. Just as importantly, these practices help create repeatable governance, adoption, and change strategies that customers can reuse, translating internal learning directly into external value.

“Because we deploy these products internally at scale, we learn a tremendous amount, especially since many of these capabilities are early-stage or newly released,” Osten says. “Our role is to generate energy and interest, help teams adopt the tools in ways that deliver real value, and then capture those learnings.”

Customer Zero means that Microsoft Digital functions differently from a typical IT organization, even though we’re still on point for the fundamentals, like keeping the network and its related infrastructure running safely and securely, managing the tenant, providing IT support, driving deployment and adoption, and ensuring our employees have the right tools, devices, and AI-powered services to succeed in a complex global enterprise.

What makes us unique is that we get access to ground-breaking new Microsoft products, features, and capabilities first. We provide early feedback, are the first to try out new experiences, and validate them at enterprise scale.

“We’re often operating at the edge,” Osten says. “For example, I’m currently using early-stage hardware and agentic technologies that haven’t been released yet for general availability, to both provide product feedback and drive value realization as soon as possible. Years ago, through our internal dogfooding program called Elite, I was using a next‑generation Xbox before it launched publicly. Those experiences are part of how we learn about and improve our products.”

Growing AI-based skills

A good example of something truly transformative to emerge from Microsoft Digital recently was our enterprise‑wide deployment and operationalization of Microsoft 365 Copilot—acting as Customer Zero for generative AI technology at scale.

Rather than treating Copilot as a productivity add‑on, we led a full reinvention of how knowledge work happens at the enterprise level. Building everything from governance and data-hygiene standards to role‑based adoption models and change management playbooks, we went all out to change employee habits and safely embed AI into daily workflows across the company.

“AI is behavioral,” Osten says. “To get real value, we work closely with business units to understand the problems they’re trying to solve, map those processes, identify where people can focus on higher-value work, and then build and drive adoption of agents to support that shift.”

In essence, Microsoft Digital is engaged in building an entire business model with AI serving as a governed, trusted, role-aware layer of intelligence. The company refers to this as the Frontier Firm concept, combining human judgment with AI agents—tools that can reason, plan, and execute tasks across systems.

“Building agents just because we can isn’t the goal. The goal is value. Microsoft Digital plays a key role in identifying the right problems, ensuring the right tools are available, and scaling solutions responsibly, so we’re solving problems while not creating new ones.”

Aisha Hasan, principal product manager, Microsoft Digital

The work Microsoft Digital does to conceive, build, and incorporate agents falls under a company-wide initiative known as Microsoft Agent 365. It focuses on three broad questions:

• What problems are we trying to solve?
• How can we build AI agents and workflows to solve them?
• How do we manage and scale this work without creating sprawl or duplicative solutions?

“Building agents just because we can isn’t the goal,” says Aisha Hasan, a principal product manager in Microsoft Digital. “The goal is value. Microsoft Digital plays a key role in identifying the right problems, ensuring the right tools are available, and scaling solutions responsibly, so we’re solving problems while not creating new ones.”

Prospering in Microsoft Digital

In addition to the central role they play as Customer Zero and the opportunity to engage closely with agentic AI, Microsoft Digital employees also benefit from a wide range of opportunities that go beyond technical skills. Rather than limiting our roles within narrow job definitions, we focus on a more holistic career experience that supports pursuing growth opportunities across Microsoft.

“We invest in growth, exposure, innovation, and collaboration in a way that makes the work both challenging and fulfilling,” Osten says.

Employees at Microsoft Digital use traits like curiosity, empathy, and adaptability to thrive within a fast-moving technical landscape. Being curious leads to learning, learning enables adaptation, and empathy pulls it all together, helping people grow as they collectively manage challenges.

“Technology is evolving so fast that keeping up with everything is a challenge in itself,” Hasan says. “Empathy, for yourself and others, matters when everyone is navigating constant change.”

It’s common for employees to leverage a range of responsibilities both within and between different jobs. Open-mindedness and flexibility are critical. Technology evolves too quickly to get attached to specific ideas or job scopes.

“I began in engineering and operations, moved into network engineering, and then gradually ‘peeled back the onion’ by stepping into technical program management,” Hasan says. “That allowed me to see the end-to-end picture: business value, technology, end users, adoption, and long-term maintenance.”

To be successful at Microsoft Digital, technical skills are important, but what really matters is the ability to innovate and work through uncertainty.

“I look for people who thrive in ambiguity, who enjoy taking on new challenges rather than waiting for perfect clarity,” Osten says. “Collaboration is equally important. In an environment this dynamic, you may be accountable for an outcome, but your success depends on the work of many other teams.”

How Microsoft values drive our work

No description of what it’s like to work at Microsoft Digital is complete without a discussion of the principles that fuel us, both at the department level and for the company as a whole.

“It often feels like drinking from a firehose, in terms of the volume of information one needs to process. It’s high-intensity, but being able to work at the cutting edge and be a part of major technological transformation that empowers everyone on the planet to achieve more makes it totally worth it.”

Mykhailo Sydorchuk, principal product manager, Microsoft Digital

Here are four core Microsoft Digital value pillars, as Osten describes them:

1. People development and skilling. This includes technical skills—including around emerging technologies like agentic AI—as well as people skills. We focus on stakeholder management, storytelling, and career development skills that support long‑term employee growth.
2. Leadership and manager development. We continually build leadership capability through a growth mindset, reinforcing principles like creating clarity, generating positive energy, and driving success. We invest heavily in helping both current and future leaders build “model‑coach‑care” skills.

3. Connection and collaboration. We intentionally create opportunities for teams to understand one another’s dependencies, whether through global meetings or structured collaboration initiatives. It’s easy to become siloed in a large enterprise, and these connections are critical, especially as AI continues to blur traditional boundaries.
4. Inclusion. This means being inclusive across communities, geographies, languages, cultures, and work environments. We focus on how we meet, how remote participation works, and how to ensure everyone can contribute effectively, regardless of location or role.

Following our pillars, and being benchmark examples of Microsoft’s value model, contributes to the success of Microsoft Digital and enables our employees to thrive  working at one of the world’s most prominent tech companies.

“Microsoft is a fast-paced environment, primarily due to scale and constant innovation,” Sydorchuk says. “It often feels like drinking from a firehose, in terms of the volume of information one needs to process. It’s high-intensity, but being able to work at the cutting edge and be a part of major technological transformation that empowers everyone on the planet to achieve more makes it totally worth it.”

Key takeaways

Here are five keys to employee success at Microsoft Digital, which can be applied to any IT organization:

• To get a foot in the door, be resourceful. Microsoft Digital employees find their way into the company through a variety of channels, including personal networking, internships, vendor relationships, and Microsoft external and internal career sites.
• Embracing Customer Zero is crucial. The concept of using Microsoft employees as early adopters of new products and services is a strategic cornerstone and an essential aspect of how the company operates.
• Understand what it means to be a Frontier Firm. Orienting your approach to work in a way that corresponds with the benefits of agentic AI can help you align with Microsoft Digital’s journey, as we become a lighthouse example of a Frontier Firm for other IT organizations.
• Develop your curiosity, empathy, and versatility. Technical skills are valuable, but continuous learning and softer skills are foundational to professional and personal growth and success.
• Know your organization’s core values. Collaboration, connection, and inclusion are vital tenets for succeeding at Microsoft Digital, as reflected in the organization’s values.

Try it out

Empower your future with an IT career at Microsoft.

Related links

• Learn more about our company’s mission, values, and products.
• Check out the main Microsoft Careers page.
• Read about Olutunde Makinde’s journey to Microsoft.
• Learn about Anahit Hovhannisyan’s impact on IT at Microsoft.
• See how Microsoft Digital is transforming IT at the company.
• Discover how Microsoft Digital leverages Customer Zero to drive AI innovation.
• Understand more about how agentic AI is core to becoming a Frontier Firm with this deployment readiness guide.

The post IT on the cutting edge: Working in Microsoft Digital in the era of AI appeared first on Inside Track Blog.

But this kind of fragmentation slows down reasoning. Engineers spend more time navigating tools than diagnosing issues.

To address this, the Microsoft Infrastructure, Networking, and Tenant organization in Microsoft Digital, the company’s IT organization, is building Infrastructure Graph (IGraph), a unified platform that brings topology, real-time telemetry, and operational context into a single view.

On top of this foundation, agentic capabilities enable AI agents to reason across these signals, surfacing insights, explaining issues, and recommending next steps. This shifts the experience from exploring data to making decisions faster and with greater confidence.

“Engineers increasingly face fragmented visibility. We wanted to unify live telemetry, topology, and context into one single intelligent visualization experience and show engineers what’s really important, so they don’t have to dive into oceans of data.”

Astha Sinha, product manager, Infrastructure, Networking, and Tenant team, Microsoft Digital

This visualization layer and intelligence platform provides a view of our entire Microsoft enterprise network—including more than 20,000 on-premises devices across 900 sites worldwide—to instantly surface the most critical issues and offer proactive recommendations to our engineers.

“Engineers increasingly face fragmented visibility,” says Astha Sinha, a product manager in the Infrastructure, Networking, and Tenant team in Microsoft Digital. “We wanted to unify live telemetry, topology, and context into one single intelligent visualization experience and show engineers what’s really important, so they don’t have to dive into oceans of data.”

Network insight at speed

IGraph displays the following in a single pane-of-glass view for a given site:

• Topology and dependency context: Visualizes routers, switches, access points, client devices, and their relationships, enriched with path and dependency awareness to localize impact areas
• Real-time health and telemetry insights: Surfaces live performance signals (utilization, errors, abnormal behavior) correlates directly onto the topology to highlight where the network is degraded or “running hot”
• Operational and incident context: Integrates incidents, tickets, and change signals into the graph, enabling engineers to understand what is happening and where and what systems are affected in a single view

“Fragmentation across operational data sources was only part of the problem. The harder challenge was externalizing and structuring the implicit domain knowledge engineers rely on, then integrating it with real-time telemetry and topology to enable low-latency, context-aware reasoning in the agentic layer.”

Vinod Kumar Singh, principal software engineer, Infrastructure, Networking, and Tenant team, Microsoft Digital

On top of this visualization layer, the team is building an agentic layer using Azure Foundry that allows AI agents to discover and use external tools and data sources.

Without IGraph agent, accessing data involves pulling from multiple existing sources, including servers and logs, with mixed latency (from minutes to hours). This fragmentation makes near-real-time reasoning almost impossible, as agents lack a unified, low-latency view of topology and telemetry.

“Fragmentation across operational data sources was only part of the problem,” says Vinod Kumar Singh, a principal software engineer in the Infrastructure, Networking, and Tenant team in Microsoft Digital. “The harder challenge was externalizing and structuring the implicit domain knowledge engineers rely on, the integrating it with real-time telemetry and topology to enable low latency, context-aware reasoning in the agentic layer.”

How IGraph works

The user starts in context. Say they’re on the IGraph UI for Building 32. They can already see the building topology, recent incidents, support tickets, and live health and performance metrics.

The engineer can ask a natural language question such as, “The internet is not working in Building 32—what’s going on?”

The AI agent begins reasoning across UI context (location, devices, open incidents), topology (involved devices and neighbors), historical metrics, and real-time device calls. It works with specialized MCP servers and agents to identify impacted devices, test live responsiveness, measure neighboring impact, verify data flow, and flag abnormal utilization or error trends.

“Engineers spend a lot of time firefighting. The visualization layer gives them the view they need to quickly solve the incidents. It helps free up their time to engage in more systemic improvements on their applications.”

Abhijit Vijay, principal software engineer manager, Infrastructure, Networking, and Tenant team, Microsoft Digital

Using this context, IGraph pulls in the relevant logs, real-time telemetry, and incident history to complete the analysis.

Instead of raw metrics and hundreds of rows of data, the agent returns a clean summary that provides a view of the failing device, the health of neighboring devices, and the blast radius. It shows what’s broken, what’s still healthy, the likely causes, and next actions.

The engineer stays in one UI for all this, and isn’t forced to use different tools or manually correlate data.

“Engineers spend a lot of time firefighting,” says Abhijit Vijay, a principal software engineer manager on the team in Microsoft Digital. “The visualization layer gives them the view they need to quickly solve the incidents. It helps free up their time to engage in more systemic improvements on their applications.”

The impact of incident visibility

IGraph offers a new real-time telemetry layer that:

• Uses a UI that surfaces telemetry and topology by correlating data from upstream systems
• Decreases effective latency for users, enabling near-real-time insights (often within seconds)
• Provides near-real-time signals in the UI on health, performance, routing state, and neighboring device relationships

“Our goal is to accelerate how network engineers understand what’s happening, enabling them to shift from reactive troubleshooting to proactive prevention—identifying and mitigating issues before they occur.”

Nevedita Mallick, principal product manager, Infrastructure, Networking, and Tenant team, Microsoft Digital

Combined, these capabilities give network engineers an up-to-the moment view of what’s happening across the network, before small issues can cascade into larger incidents.

By making live telemetry easier to access and interpret, IGraph helps teams move from reactive troubleshooting to proactive prevention.

“Our goal is to accelerate how network engineers understand what’s happening, enabling them to shift from reactive troubleshooting to proactive prevention—identifying and mitigating issues before they occur,” says Nevedita Mallick, a principal product manager for the Infrastructure, Networking, and Tenant team in Microsoft Digital.

That speed and clarity are especially important for new engineers.

“The tool delivers value right away, especially for newer engineers. Instead of having to piece things together, they get an instant view of the network that shows how devices are connected and displays the already-surfaced incidents directly on the graph.”

Manjiri Keskar, principal cloud network engineer, Infrastructure, Networking, and Tenant team, Microsoft Digital

Complex networks rely on unwritten knowledge and experience built up over time, which can slow onboarding and make troubleshooting harder than it needs to be. IGraph shortens that learning curve by making the network’s relationships and current state immediately visible.

“The tool delivers value right away, especially for newer engineers,” says Manjiri Keskar, a principal cloud network engineer in the Infrastructure, Networking, and Tenant team in Microsoft Digital. “Instead of having to piece things together, they get an instant view of the network that shows how devices are connected and displays the already-surfaced incidents directly on the graph.”

What’s next for IGraph Agent

Without IGraph Agent, network analysis is largely reactive.

Teams often address failures after customers have already felt the impact, instead of preventing issues by acting when early warning signs appear.

“Agentic AI is transforming networking DevOps from manual, reactive operations into intelligent intent-driven systems that can provision, validate, and troubleshoot networks autonomously. Looking ahead, it will power self-healing networks and dramatically accelerate buildouts, allowing engineers to focus on architecture, strategy, and innovation.”

Sonika Munde, senior network engineer, Infrastructure, Networking, and Tenant team, Microsoft Digital

Teams often address failures after customers have already felt the impact, instead of preventing issues by acting when early warning signs appear.

“Agentic AI is transforming networking DevOps from manual, reactive operations into intelligent, intent-driven systems that can provision, validate, and troubleshoot networks autonomously,” says Sonika Munde, a senior network engineer in the Infrastructure, Networking, and Tenant team in Microsoft Digital. “Looking ahead, it will power self-healing networks and dramatically accelerate buildouts, allowing engineers to focus on architecture, strategy, and innovation.”

That unified network intelligence will let IGraph Agent communicate with multiple lightweight agents that continuously analyze network conditions, dramatically compressing response times.

“What used to happen in hours will happen in minutes,” Munde says.

Now, the team is pushing further. One example is layering in weather intelligence to help engineers anticipate issues before they materialize, as big storms can trigger power fluctuations that ripple through the network. By visualizing this data, engineers can proactively communicate with customers and take mitigation steps that protect operational workloads.

Overall, IGraph lets teams focus on prevention. Engineers spend less time navigating dashboards and cross-checking data and more time detecting patterns and surfacing emerging risks. Manual analysis is reduced as the agent highlights insights in real time.

“By bringing telemetry, topology, and AI together in one intelligent layer, we’re turning fragmented signals into real-time intelligence so teams can move faster, act earlier, and protect the critical workloads that power Microsoft.”

Jason Thompson, principal group product manager, Infrastructure, Networking, and Tenant team, Microsoft Digital

The technology is poised to go even further. IGraph will eventually help power self-healing networks and speed up network build-outs, freeing engineers to focus on architecture and innovation. The future vision for the tool includes fully automated predictive network intelligence across all Microsoft campuses, with agents that monitor, reason, recommend responses, and safely take action.

“By bringing telemetry, topology, and AI together in one intelligent layer, we’re turning fragmented signals into real-time intelligence so teams can move faster, act earlier, and protect the critical workloads that power Microsoft,” says Jason Thompson, a principal group product manager for the Infrastructure, Networking, and Tenant team in Microsoft Digital.

Key takeaways

To move from reactive operations to proactive AI-supported network management, we recommend starting with these steps:

• Start consolidating real-time telemetry into a single view. Even a lightweight dashboard is enough to prepare for AI-driven insights later.
• Identify high-frequency incident types to target for AI triage. Pick the most common or disruptive scenarios and map out what data engineers currently review for them.
• Document the decision logic your engineers use today. Before implementing AI, capture the human reasoning steps to help guide your approach.
• Pilot an agentic solution with one network segment or site. Start with one building, one lab, or a small testbed.

Try it out

Learn more about what Microsoft Azure can do for you.

Related links

• See how we’re boosting network performance at Microsoft with real-time telemetry and performance visualization.
• Discover how we’re reclaiming engineering time with AI tools in Azure DevOps at Microsoft.
• Learn how Microsoft is reducing operational overload with AI-guided insights.

The post Supercharging network operations at Microsoft with AI-based unified network intelligence appeared first on Inside Track Blog.

These innovations have come in many different forms across every group and function at the company. It’s impossible to capture them all in a single concept or story, but one of the ways that we’ve activated the power of AI for our workforce is Work IQ.

Work IQ isn’t a product.

It’s a shared intelligence layer that enables Microsoft 365 Copilot and AI agents to reason over and understand your organization’s work data, then use that context to generate more relevant responses and actions. This means that the entire Microsoft Graph—including rich unstructured data from your Teams chats and meetings, Outlook emails, Word documents, PowerPoint presentations, and more—is now part of your AI-powered work experience.

“It’s not really a brand-new capability, but more an evolution of what users already know, which is access to the grounding data in their Microsoft tenant. The difference is that Work IQ adds an additional layer to provide more context, allowing for richer and more relevant results.”

Aisha Hasan, principal product manager, Microsoft Digital

Work IQ enables Copilot to not only tailor answers to your role and responsibilities, but also to understand who your most frequent collaborators are, comprehend details about your latest projects, surface deliverables and deadlines, and intuit next steps. Additionally, Work IQ makes it easy for any AI agent to take advantage of the same rich enterprise data to return and act on more contextual results.

“It’s not really a brand-new capability, but more an evolution of what users already know, which is access to the grounding data in their Microsoft tenant,” says Aisha Hasan, a principal product manager in Microsoft Digital. “The difference is that Work IQ adds an additional layer to provide more context, allowing for richer and more relevant results.”

At Microsoft Digital, the company’s IT organization, we’ve seen firsthand how this intelligence layer is accelerating employee adoption of Copilot and agentic AI as outputs become more perceptive and valuable. Work IQ is a foundational step toward a future where AI has moved beyond isolated assistance and become a trusted professional helper—sometimes described as a digital colleague—that carries out tasks and anticipates needs in every aspect of daily work.

How Work IQ impacts everyday work

One of the most instructive aspects of Work IQ’s impact across our organization is that it happened without a traditional deployment. There was no enablement event for employees or operational playbook distributed to administrators. It didn’t require any changes to the application interfaces. Yet over time, our employee Copilot interactions improved in measurable ways.

“There was a period where we weren’t adding new content to Copilot, and yet I noticed our metrics for quality and user satisfaction kept going up. Why was that? It was because of all these incremental improvements that we refer to as Work IQ.”

Dodd Willingham, principal product manager, Microsoft Digital

This was a direct consequence of introducing a shared intelligence layer into a Microsoft environment that was already rich in work signals. Those work signals are extremely valuable data that was difficult to extract meaning from before the advent of AI. As the technology advanced, we could take full advantage of this data to inform and improve agentic responses.

As Customer Zero for the company, Microsoft Digital was at the forefront of measuring the impact of Work IQ. Our employees saw significant gains in relevance, grounding, and answer coherence in Copilot that were visible in the metrics, even during times when the underlying content remained relatively static. That’s the Work IQ difference.

“There was a period where we weren’t adding new content to Copilot, and yet I noticed our metrics for quality and user satisfaction kept going up,” says Dodd Willingham, a principal product manager in Microsoft Digital. “Why was that? It was because of all these incremental improvements that we refer to as Work IQ.”

At a systems level, Work IQ reasons across a broad cross-section of Microsoft 365 data, including:

• Outlook email content, thread structure, and interaction patterns
• Teams chats, channels, and meeting transcripts
• Calendar events and scheduling metadata
• Documents and files across Word, PowerPoint, Excel, OneDrive, and SharePoint
• Signals that show who collaborates with whom, how often, and in what context

Work IQ can also access structured data in tools like Dynamics 365, Power BI, Power Apps, and other business applications. The ability to extract context and interpret structured and unstructured data in a unified intelligence layer is the reason why Work IQ is making such a difference for our employees.

Making Outlook better

Outlook provides a useful lens on how Work IQ functions because it’s both heavily used by our employees and a highly contextual tool. Although the application hasn’t outwardly changed, the way Copilot interacts with inbox and calendar data has evolved, in part due to richer context provided by Work IQ.

“The intelligence works behind the scenes as you use Outlook. Your inbox just gradually feels more relevant. Outlook adapts to your work patterns, making your inbox feel more like an assistant, instead of a filing cabinet of communications.”

Matthew Marzynski, principal product manager, core experiences, Microsoft Digital

Now when you turn to Copilot in Outlook to summarize email threads, it can surface decision points, action owners, and unresolved issues. Instead of treating email as a collection of messages and providing rote summaries, Copilot perceives it as a record of decisions and commitments over time.

Calendar-related experiences are on a similar trajectory. Meeting preparation and follow‑up suggestions are now drawing on prior interactions with the same participants, relevant documents that were previously shared, and historical patterns around similar meetings.

Work IQ isn’t rule-based automation layered on top of Outlook. Users aren’t configuring new filters or workflows. Instead, the system is adapting based on observed patterns, meaning user behavior can remain the same while output quality improves

“The intelligence works behind the scenes as you use Outlook,” says Matthew Marzynski, a principal product manager for core experiences in Microsoft Digital. “Your inbox just gradually feels more relevant. Outlook adapts to your work patterns, making your inbox feel more like an assistant, instead of a filing cabinet of communications.”

Applying persistent memory

Another important aspect of Work IQ is the ability to retain persistent memory of each employee’s role, responsibilities, and work context. Copilot and other agents no longer need to be continually prompted with details about who the user is and what they’re working on. It learns that information and remembers it going forward.

This feature, also called persistent understanding, builds trust and increases efficiency each time an employee turns to AI for help with their work. AI systems that depend on manual context-setting don’t scale well across large organizations, which we at Microsoft Digital learned as we tested and deployed Copilot across the company.

“The user no longer has to tell the agent, ‘I work in this area, so please tailor your response to that’ every time,” says Anishkumar Ramakrishnan, a principal PM manager in Microsoft Digital. “With Work IQ, Copilot and agents recall it going forward. It remembers things that the user doesn’t even remember themselves about their past work and actions. This is the promise of intelligent context.”

From answers to action: Work IQ and AI agents

As organizations move toward integrating AI agents into all aspects of their day-to-day work, the value of Work IQ increases. Any agent—not just a general-purpose agent like Copilot—that can interpret vast amounts of your unstructured work data is going to produce results that are far more relevant than one that simply draws on general knowledge about a topic or process.

“Before, a builder had to go connector by connector and be very prescriptive—calendar read, email read, meeting access—just to build an agent. Now they can simply point the agent to Work IQ, and it gains contextual access across mail, calendar, meetings, and files through a single connector (API or MCP server).”

Naveen Jangir, principal architect, Microsoft Digital

Early agent implementations relied on narrower task-specific access to data. For each agent, a developer would have to build connections to a particular document library, mailbox, or set of calendar data. Each connection required separate consent and management, which generally resulted in a more limited scope.

But with Work IQ, builders can create agents using Microsoft Copilot Studio or other development platforms (such as Microsoft Foundry) that use APIs or Model Context Protocol (MCP) servers to connect to Microsoft Graph data. This enables them to bring the full power of enterprise data to any agentic creation, not just Microsoft 365 agents.

“Before, a builder had to go connector by connector and be very prescriptive—calendar read, email read, meeting access—just to build an agent,” says Naveen Jangir, a principal architect in Microsoft Digital. “Now they can simply point the agent to Work IQ, and it gains contextual access across mail, calendar, meetings, and files through a single connector (API or MCP server).”

This shift doesn’t just simplify agent development—it fundamentally expands what agents are capable of. Instead of operating within narrow, predefined tasks, agents can now reason across a broader work context to deliver better outcomes. For example, an agent supporting a project manager can surface relevant email threads, identify key stakeholders from meeting activity, reference the latest project documents, and highlight upcoming deadlines—all within a single interaction.

Intelligence without bypassing governance

From a governance perspective, Work IQ doesn’t introduce a new security model. Instead, it operates entirely within the existing Microsoft 365 data protection boundaries that our company and our customers already rely on.

The intelligence layer can access this enterprise data, but it does so while honoring permissions, sensitivity labels, access policies, and compliance controls defined at the source. Work IQ can only surface or act on information that the user—or an agent identity acting on the user’s behalf—is already authorized to access.

This inheritance model is intentional. Governance remains rooted in the data layer, not in the AI layer. Work IQ respects established controls such as identity‑based access and tenant policies, which means agents are generally given less access than human users.

“An agent user only gets access to what is explicitly shared with it,” Jangir says. “Human users typically have broader default access. By design in Work IQ, agents can usually see less than people, not more.”

For IT and security teams, this places the emphasis squarely on data discipline and identity controls, which are complementary security layers. Work IQ amplifies the value of well‑governed data and exposes weaknesses where governance is inconsistent. Admins remain in control of access and can turn off APIs and MCP server connections if they want to limit an agent’s data access.

Work IQ, Fabric IQ, and Foundry IQ

As we’ve scaled up Copilot and agentic AI internally, one lesson has become clear: Intelligence works best when it’s part of a layered infrastructure rather than working on its own.

That’s why Work IQ is just one context layer we’re using at Microsoft. We’ve also developed Fabric IQ and Foundry IQ, which are complementary layers in our overall data strategy. Each of these addresses a different aspect of enterprise intelligence.

The three layers serve distinct but connected purposes:

• Work IQ focuses on unstructured productivity data, helping AI understand how people work across email, meetings, documents, and collaboration signals.
• Fabric IQ applies similar reasoning to analytical and structured data, adding context and explanation to metrics, trends, KPIs, and other business signals.
• Foundry IQ provides the foundation for builders to create agents that draw from both worlds, connecting intelligence across Microsoft 365, analytics platforms, and line‑of‑business systems.

Taken together, these layers also contribute to something deeper: the emergence of a shared business ontology. By extracting and aligning business entities—such as people, projects, and processes—from both structured data in Fabric IQ and the unstructured signals captured by Work IQ, the system perceives meaningful connections that previously were hidden. This unified understanding allows agents to reason across domains with greater precision, linking metrics to the real work and making insights more actionable in context.

This architecture matters because it removes artificial seams. Agents shouldn’t need to shift between separate contexts for work content, enterprise data, or application logic. The IQ layers make it possible to deliver a single agentic experience that reasons consistently, applies governance uniformly, and moves with users across environments. Just as importantly, the same controls—identity, permissions, labeling, and policy—flow through each layer, keeping trust intact as capability expands.

At Microsoft, Work IQ and the other context layers are helping Copilot and agents to accelerate beyond AI experimentation. They are now vital operational tools that make everyone more productive across the global enterprise. Context and intelligence in agentic tools are a key part of the future of work, at Microsoft and for our customers as well.

Key takeaways

Here are some things to keep in mind as you prepare your own organization to take full advantage of Work IQ:

• Treat the technology as infrastructure, not a feature. We didn’t formally roll out Work IQ. Its value emerged gradually as it improved Copilot responses and as our agent builders could more easily tap into unstructured enterprise data.
• Expect improvements in AI quality without changes to your data. We saw measurable gains in relevance and user satisfaction even when underlying content remained the same, driven by better contextual reasoning across existing work signals.
• Focus on how employees work, not just what content exists. Work IQ improves AI outcomes by connecting people, relationships, and activity patterns, resulting in more actionable and grounded responses.
• Use Work IQ to move from assistance to action with agents. By giving agents access to contextual enterprise data through a unified layer, we enabled more automated workflows without requiring developers to manage dozens of connectors manually.
• Invest in data governance early to maximize AI value. Because Work IQ inherits permissions and policies from the data layer, its effectiveness—and safety—relies on clear labeling, intentional access design, and disciplined data management.
• Enable self-service collaboration data so it’s available for Work IQ. WorkIQ can only ground on data that is both available and not purposefully hidden. We make sure that our meetings are AI-enabled (and often recorded) and allow self-service in Teams and SharePoint, so the data is not hidden from Work IQ.
• Build toward a unified intelligence model across work and data. Combining Work IQ with Fabric IQ and Foundry IQ means agents can operate seamlessly across different kinds of data and incorporate more intelligence into their output and actions.

Try it out

Get a closer look at Work IQ.

Related links

• Check out how we’re embracing this agentic moment at Microsoft.
• Explore a Microsoft Learn article for more technical details about how Work IQ works.
• Learn how to get started building agents with Microsoft tools.
• Discover our detailed guide on how we deploy AI agents internally at Microsoft.
• Read an IT playbook for the AI era and learn how we’re becoming a Frontier Firm at Microsoft.
• See how we’re using Model Context Protocol security and governance to protect AI conversations at Microsoft.

The post How Work IQ is supercharging our AI usage at Microsoft appeared first on Inside Track Blog.

In 2026, we’re celebrating 25 years of SharePoint at Microsoft. Microsoft Digital, the company’s IT organization, is commemorating this anniversary by reflecting on the journey we’ve taken with the product over the last quarter-century.

In this article, we’ll share our journey as SharePoint’s Customer Zero and step through the lessons we’ve learned building and maintaining an IT stack in the age of agentic AI.

Why SharePoint?

In the early 2000s, we faced a technical challenge familiar to just about any organization: We had important documents and data scattered across siloed file shares, institutional knowledge hidden away in email attachments, and access challenges preventing different teams from collaborating across geographical borders and departmental boundaries.

SharePoint offered the solution to these challenges.

Its flexible, web-based platform gave us the ability to collaborate using shared sites, centralized document libraries, and widely accessible workspaces. The application also fundamentally reshaped our corporate communications and publishing capabilities, providing features that would power key internal portals like Microsoft Web (our longtime internal company homepage, often called MSW), HRWeb, and MS Library.

“At the time, because there were so few customers running SharePoint at scale, the product was in many ways directly built to meet our IT needs.”

Sam Crewdson, principal program manager, Microsoft Digital

The evolution of how we used SharePoint in Microsoft Digital can best be described in three phases:

1. Our on-premises expansion and optimization
2. Our migration to the cloud, self-service growth, and modernization
3. Our incorporation of agentic AI

On-premises expansion and growing pains

When we first adopted on-premises SharePoint at scale, it became indispensable almost immediately. Internal teams used SharePoint to replace their existing file shares, publish information internally, and create many custom workflows and applications tailored to their needs.

Our team at Microsoft Digital was responsible for deploying SharePoint on an enterprise scale. Because we were one of the first enterprise customers to fully use SharePoint’s capabilities, we worked closely with the SharePoint product team from the beginning of its existence as a company. This meant we played a sizable role in influencing what SharePoint ultimately became.

“At the time, because there were so few customers running SharePoint at scale, the product was in many ways directly built to meet our IT needs,” says Sam Crewdson, a principal program manager in Microsoft Digital. “A result of our being their first and best customer at the time was that the SharePoint team often built capabilities for us that no one else was asking for yet, such as specific portals features and supportability needs.”

Our initial adoption of SharePoint exposed some structural limitations and gaps. To meet the goals of our internal customers, we often relied on custom code, which made upgrades more difficult. And data governance and lifecycle management could be challenging, with our internal teams creating thousands of sites with little or no ownership tracking.

Using SharePoint in this way meant rapidly accumulating abandoned sites and outdated content. Trying to conduct even routine maintenance became difficult because there was no reliable way to contact site owners.

“Because of the initial difficulties, SharePoint was frustrating at first, especially for admins. But then I realized how important it was for our users—the product saved them so much time, and they were so happy that it was available. It was a complete 180-degree shift in my mindset towards SharePoint.”

Thomas Snyder, principal service engineer, Microsoft Digital

These challenges meant tensions often ran high for the IT team during the initial adoption phase. Tempers sometimes flared as we navigated this period in SharePoint’s evolution at Microsoft.

However, the time and effort we put into overcoming these growing pains—time and effort our customers didn’t have to invest themselves—made the frustrations well worth it.

“Because of the initial difficulties, SharePoint was frustrating at first, especially for admins,” says Thomas Snyder, a principal service engineer in Microsoft Digital. “But then I realized how important it was for our users—the product saved them so much time, and they were so happy that it was available. It was a complete 180-degree shift in my mindset towards SharePoint.”

Scalable self-service, effective governance, and the cloud

SharePoint’s role at Microsoft quickly expanded from a collaboration platform into a more powerful application where our teams could build workflows, forms, dashboards, and other solutions.

Thanks to a decision to enable SharePoint’s self-service site creation capabilities, our internal customers were able to use it to build the sites they needed without having to wait for us in IT. By removing the friction of having to work with IT, they innovated faster and built new capabilities on their own using SharePoint’s out-of-the-box technology.

However, this self-service power we gave to our users also drove some sprawl that we were not initially ready to manage. By the late 2000s, the information explosion that SharePoint sparked at the company was increasing our operational and governance burden. The rapid growth in sites delayed upgrades and introduced security and compliance issues stemming from a lack of clear ownership when site owners changed jobs or left the company.

As a result of this growth, we made the decision to invest heavily in building up our governance and lifecycle management for SharePoint. We prioritized defining clear ownership for all SharePoint sites, establishing best practices around data cleanup, and building the guardrails necessary to make widespread adoption and use more manageable.

Moving SharePoint to the cloud

Our cloud migration started in late 2010 and quickly became the driving force for us in IT. Rather than see the migration as a simple lift-and-shift activity, we took the opportunity to strategically reconfigure the architecture and customization level of our SharePoint instance.

This was a huge undertaking.

We had to think globally across all our sites in different regions and countries. The tooling suite for migration was immature at the time, meaning some of our portals and sites would require refactoring. We also had to contend with the constraints of varied and sometimes conflicting regional data residency requirements.

“It’s effectively filtering, so you don’t migrate everything. You’re cleaning your house before you move. You don’t move everything in your garage—you clean it out first. The easiest move is the one you don’t have to do.”

David Johnson, principal product manager architect, Microsoft Digital

Our approach to moving SharePoint to the cloud took several phases

First, early adopters who expressed active interest in migrating were provisioned the first sites in the cloud. By harnessing their enthusiasm for cloud services, we allowed them to self-migrate their own site content

Second, we did extensive analysis of all sites to establish actively used sites. Sites where we had no recent usage were backed up, stored offline, and deleted. If nobody screamed, we didn’t move them to the cloud.

Third, we moved the zero- and low-customization sites. These were sites using out-of-box features that had the highest likelihood of a successful migration

Finally, all we had left were the highly customized sites, which often used customization approaches which were not supported in the cloud. These we chose to manually rebuild and often to refactor as part of our migration approach.

While we were making these first-in-the-world migrations, we spent a lot of time with our SharePoint product team partners to learn how best to move sites and to document the approaches for the millions of sites that would follow. Sites which had high levels of customization or features that the cloud couldn’t support were instead rebuilt in the cloud environment from the ground up.

We treated our SharePoint cloud migration as an opportunity to take stock of what we had and decide what we didn’t want to bring with us into the new age of SharePoint at Microsoft. We cleaned our data and retired unused sites based on which content and functions employees told us they regularly used and relied on.

“It’s effectively filtering, so you don’t migrate everything. You’re cleaning your house before you move,” says David Johnson, a principal product manager architect in Microsoft Digital. “You don’t move everything in your garage—you clean it out first. The easiest move is the one you don’t have to do.”

Cloud migration also presented fresh governance challenges for our team. Governance practices had to be established for this new environment that would allow for effective self-service across multiple sites.

Building governance around lifecycle management, attestation, ownership policies, and guarding against oversharing required a significant amount of effort from the team, but it was necessary to ensure a smooth transition from an on-premises tool to the cloud.

Site modernization: Reducing the need for customization

Around 2016, SharePoint rolled out what came to be known as SharePoint Modern. This new version was a game changer for our major portals, as it reduced the need for heavy, developer-driven customization and replaced it with powerful out-of-the-box page creation capabilities, responsive design, and improved accessibility. The product also eventually added seamless built-in integration with solutions like Microsoft Teams and OneDrive.

Less custom code meant we could upgrade faster and dramatically lower our development, support, and maintenance costs. But the best part was the improved user experience and better navigability of the new version. Before this, our IT team fielded numerous questions about SharePoint on a weekly basis. The more intuitive, user-friendly experience of modern SharePoint reduced the volume of inquiries and service requests drastically. Our internal users were happier, and so were we.

SharePoint in the age of agentic AI

We see SharePoint as a key “knowledge platform” for AI. It’s a critical enterprise-scale repository for our documents and data and other information that we use to power our global enterprise.

“Security through obscurity is dead. It’s the double-edged sword of semantic search.”

Thomas Snyder, principal service engineer, Microsoft Digital

As such, it’s one of our key “knowledge platforms,” locations where we store the information that is the lifeblood of our enterprise. And as our enterprise-scale repository for documents, data, and other information used to run our global multinational, it has become the launching point for many of our AI-powered experiences.

AI is only as effective as the quality of the data it can access, which is why we’ve prioritized governance best practices as we make this transition. With these new tools, we’ve had to overcome new challenges.  For example, in the early days of AI, the discovery of previously well-buried personal data is becoming a common occurrence.

“Security through obscurity is dead,” Snyder says. “It’s the double-edged sword of semantic search.”

Prioritizing good governance helps ensure agentic AI only has access to the data it’s permitted to use, avoiding accidental oversharing and related hallucinations.

As an AI-driven Frontier Firm, we’re empowering our non-technical users and engineering and development teams alike to begin building custom AI agents to drive innovation at Microsoft. Our teams can now use agents in SharePoint for tasks like creating applications, knowledge depositories, and sites, saving huge amounts of time and effort.

Many of these agents will eventually be available in Azure DevOps and GitHub, so we’re focused on helping SharePoint site owners put the appropriate data ownership and permissions in place to effectively manage and govern the data for use by agentic AI.

After 25 years, SharePoint remains a core part of IT operations across Microsoft. We look forward to growing alongside it as it continues to evolve and improve.

Key takeaways

These insights can help you mature and transform how you use SharePoint at your company:

• Self-service and good governance go together. Without solid guardrails for your SharePoint instance, your organization could contend with information sprawl and internal friction between departments.
• Cloud migration is a golden opportunity. Before you migrate from on-premises IT to the cloud, take the time to clean your data to avoid carrying technical debt and outdated information into the future.
• Out-of-the-box capabilities are your friend. Customization is useful, but too much of it can be unwieldy and expensive to maintain.
• Make data hygiene a priority. Poorly governed data can undermine users’ trust in AI, expose sensitive information, and delay widespread adoption.

Try it out

Explore how Microsoft SharePoint can help your team collaborate more effectively and be ready for the agentic AI future.

Related links

• Read how we keep our content fresh, findable, and governed with AI-powered SharePoint at Microsoft.
• Learn about how we’re handling Microsoft 365 Copilot governance issues internally in this guide.
• Discover ways to use SharePoint agents to surface knowledge and improve how employees find answers.
• Explore how we’re supercharging SharePoint sites with Microsoft 365 Copilot.

The post 25 Years of SharePoint at Microsoft: Our lessons learned as Customer Zero appeared first on Inside Track Blog.