AI with Zero Trust Security

7 snips

Feb 17, 2026

Michael Madrigal, a security product manager who leads Microsoft’s Zero Trust approach, explains protecting identities, endpoints, data, AI resources, apps, and infrastructure. He covers continuous verification and least-privilege access. Conversations include runtime protections, AI agent identity, network segmentation, data labeling and DLP, and confidential computing.

Ask episode

AI Snips

Chapters

Transcript

Episode notes

INSIGHT

Zero Trust Core Principle

Zero trust means never assume trust and always verify every access request across people, agents, apps, and devices.
It requires layered, real-time enforcement so attackers cannot exploit a single weak link.

ADVICE

Enforce Least Privilege For Identities

Limit each human user's access to only what they need and require phishing-resistant authentication like passkeys.
Use Entra conditional access, Purview, and Defender integrations to track data interactions and block risky apps.

ADVICE

Treat Agents As Managed Identities

Give each AI agent its own manageable identity and scope it to least-privilege access with sponsor approval.
Evaluate agent risk in real time with conditional access and assign risk levels using Purview and insider risk controls.

Get the Snipd Podcast app to discover more snips from this episode

Get the app

Adopt a Zero Trust approach that lets you verify every access request—human, machine, or AI—before it reaches your most critical resources. As AI agents, semantic search, and automation accelerate how work gets done, you can reduce risk by explicitly validating identity, enforcing least-privilege access, and assuming breach across every step of your environment. Apply layered, continuous protection across identities, endpoints, networks, data, AI resources, applications, and infrastructure so attackers can't exploit any weak links.

Michael Madrigal, Security Product Manager, shares how you can protect productivity and keep pace with an evolving threat landscape, by continuously assessing risk, securing resources at runtime, and adapting policies as conditions change.

► QUICK LINKS:

00:00 - Zero Trust for AI

01:41 - Overview of Zero Trust

02:43 - Identities

04:38 - Endpoints

04:50 - How Zero Trust applies to your network

06:51 - How Zero Trust applies to your data

07:31 - How Zero Trust applies to AI resources

08:24 - App Layer

08:31 - Infrastructure

09:49 - Security

10:23 - Wrap up

► Link References

Check out https://aka.ms/GoZeroTrust Watch our series at https://aka.ms/ZTMechanics

► Unfamiliar with Microsoft Mechanics?

As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft.

• Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries

• Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog

• Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast

► Keep getting this insider knowledge, join us on social:

• Follow us on Twitter: https://twitter.com/MSFTMechanics

• Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/

• Enjoy us on Instagram: https://www.instagram.com/msftmechanics/

• Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics