Most organizations treat Microsoft 365 like infrastructure — something that quietly runs in the background while business happens on top of it. That assumption is wrong. Microsoft 365 is actually a distributed decision engine making thousands of real-time authorization decisions across identity, data access, collaboration, and AI systems every day. And in most tenants… Nobody owns those decisions. When governance has no owner:

• identities accumulate without lifecycle
• configurations drift away from policy intent
• AI assistants access data nobody classified
• automation runs long after its creator leaves

The system continues operating — but without accountability. That’s what I call the ghost in the tenant. In this masterclass we analyze three real failure patterns that prove the same thesis: Microsoft 365 does not fail because of technology.
It fails because nobody owns governance. Then we build a 30-day operational blueprint to fix it. Key Topics Covered 1. The Accountability Vacuum Why governance committees create shared avoidance instead of shared responsibility. Key concept: Intent vs Configuration Drift Organizations define policy intent, but over time configuration drifts away from it. That gap is where risk lives. 2. The Three Layers of Microsoft 365 Failure Most incidents follow a predictable pattern: Layer 1 — Identity Sprawl

• unmanaged service accounts
• orphaned automation identities
• stale guest access

Layer 2 — Configuration Drift

• policy exceptions accumulate
• external sharing expands
• Conditional Access remains in report-only mode

Layer 3 — AI Governance Collapse

• Copilot inherits sprawl permissions
• agents run with cached privileges
• data classification is missing

When these three layers align, incidents become inevitable. Incident Case Studies Incident 1 — The Orphaned Agent A Power Automate workflow built for invoice processing continues running after its creator leaves. Because it inherited broad permissions, it continues emailing sensitive financial data externally for 12 months. No alert.
No review.
No owner. The automation still had permissions. It no longer had a human. Incident 2 — Configuration Drift Collapse A Fortune 500 tenant allows unrestricted Teams creation and external sharing. Within six months:

• 400 unmanaged Teams
• thousands of external guest permissions
• uncontrolled connectors

Ransomware enters through a compromised account. The attack was not hidden from monitoring tools. It was hidden inside configuration chaos. Incident 3 — Memory Poisoning in AI Assistants A Copilot-enabled tenant allows AI assistants to learn from shared documents. An attacker inserts malicious prompt instructions into a SharePoint document. Copilot retrieves the poisoned context and later recommends sharing sensitive employee salary data externally. The organization cannot explain:

• why the agent made the decision
• what context triggered it
• where the reasoning originated

There was no agent provenance. The 2026 Governance Crisis: Agentic Systems AI agents are fundamentally different from automation. Traditional automation is deterministic. AI agents are probabilistic systems. The same prompt can produce different outputs depending on:

• memory
• context
• training
• retrieval data

Which means organizations must introduce Agent Governance. Key components:

• Agent registry
• Lifecycle ownership
• Connector governance
• Provenance tracing

Without those controls: Your tenant becomes programmable by attackers. The Governance Owner Model The fix is simple but uncomfortable: One person must own governance. Not a committee.
Not shared responsibility.
A named authority. The Governance Owner controls: Tenant Governance Authority Responsible for configuration drift monitoring. Connector Approval Every external integration requires approval. AI Agent Lifecycle All agents must have:

• owner
• purpose
• permissions
• expiration

Escalation Authority Security decisions with risk impact route to this role. The 30-Day Operational Blueprint Phase 1 (Days 1-30) — Establish Authority

• appoint Governance Owner
• deploy Purview sensitivity labels
• enable Copilot audit logging
• build initial agent inventory

Phase 2 (Days 31-60) — Enforce Lifecycle

• require agent lifecycle documentation
• implement Entra Conditional Access for agents
• conduct first access review
• enable risk-based monitoring

Phase 3 (Days 61-90) — Operationalize Governance

• monthly governance reviews
• quarterly policy updates
• continuous configuration drift monitoring
• full lifecycle management for AI agents

The Deterministic Governance Model Organizations must choose between two operating models. Deterministic Governance

• decisions made by Governance Owner
• outcomes predictable
• drift actively corrected

Probabilistic Governance

• decisions made by committees
• exceptions accumulate
• entropy increases

Only one of these scales. The Copilot Deployment Inflection Point Most deployments fail between weeks 6 and 12. Why? Because governance processes designed for pilot scale cannot handle expansion. Organizations add committees and processes instead of authority. Entropy accelerates. Core Thesis The most important decision in your Microsoft 365 architecture is not technical. It is organizational. Who owns governance? Without an owner:

• agents become orphaned
• policies drift

Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365–6704921/support.

If this clashes with how you’ve seen it play out, I’m always curious. I use LinkedIn for the back-and-forth.