{"id":22433,"date":"2026-02-19T09:00:00","date_gmt":"2026-02-19T17:00:00","guid":{"rendered":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?p=22433"},"modified":"2026-03-05T09:10:07","modified_gmt":"2026-03-05T17:10:07","slug":"read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/","title":{"rendered":"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">At Microsoft, we manage a large, diverse device estate, with more than 1 million devices in use by employees and teams across our global corporate network. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For years, we stitched together insights across multiple tools, wrote custom queries, and maintained fragile reports just to answer basic questions. This approach slowed investigations and delayed patch targeting.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We needed a faster, stronger, cloud-native path. <\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">We\u2019re investing in AI-powered predictive maintenance and intelligent troubleshooting to reduce friction in device management.\u201d<strong><\/strong><\/p>\n<cite>Daniel Manalo, principal service engineer, Microsoft Digital<\/cite><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">The advent of generative AI changed the way we manage our devices. Not only were we able to ask better questions and get targeted help right from the start, we also got faster and more relevant answers from across our entire device management estate.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It\u2019s simpler. It\u2019s faster. It scales with our environment. And we\u2019re doing it natively in the cloud.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u201cWe\u2019re investing in AI-powered predictive maintenance and intelligent troubleshooting to reduce friction in device management,\u201d says Daniel Manalo, a principal service engineer in Microsoft Digital, the company\u2019s IT organization.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">AI and machine learning help us find errors faster and fix them autonomously, in many cases. It reduces our downtime, prolongs lifespans of our devices, and ensures our employees have a consistent and productive experience with their devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Today, we\u2019re applying this approach to everyday operations: Speeding investigations, simplifying updates, and tightening the loop from detection to remediation. The overarching goal remains consistent\u2014reduce workloads, improve clarity, and move our discoveries to earlier in the risk window.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">The role of Customer Zero in evolving modern device management<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We serve as the company\u2019s <a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/inside-microsoft-being-customer-zero-in-an-ai-powered-world\/\">Customer Zero<\/a> for our products here in Microsoft Digital. We run early capabilities in our own tenant, pressure\u2011test them at Microsoft scale, and feed what we learn straight back to engineering. The goal is simple: Turn good ideas into reliable features that any enterprise can use.<\/p>\n\n\n\n<figure class=\"wp-block-image alignright size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"500\" height=\"500\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Senthil-Selvaraj.png\" alt=\"A photo of Selvaraj. \" class=\"wp-image-22437\" style=\"width:150px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Senthil-Selvaraj.png 500w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Senthil-Selvaraj-300x300.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Senthil-Selvaraj-150x150.png 150w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><\/figure>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">\u201cWe use our collective learnings from our internal deployments to improve our products, which makes them better for our employees and for our customers.\u201d<\/p>\n<cite>&nbsp;Senthil Selvaraj, principal group product manager, Microsoft Digital<\/cite><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">Our Microsoft Digital teams work side-by-side with the Intune product group to modernize our device management approach. The Intune group builds and operates the platform, while we bring real\u2011world scenarios, signals, and guardrails. Together, we help develop, test, and deploy a better cloud-native product for our customers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u201cWe use our collective learnings from our internal deployments to improve our products, which makes them better for our employees and for our customers,\u201d says Senthil Selvaraj, a principal group product manager in Microsoft Digital.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">For the same reasons, we work hard to make sure that we deploy our tools and services in the same way our customers do.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u201cThat enables everyone at the company to have good visibility into the experiences our customers will have when our products get to them,\u201d Selvaraj says. \u201cThis makes us more accountable to our customers and helps us move quickly when improvements are needed.\u201d<\/p>\n\n\n\n<aside class=\"wp-block-group aside-for-guide has-white-200-background-color has-background has-global-padding is-content-justification-right is-layout-constrained wp-container-core-group-is-layout-3f1abf08 wp-block-group-is-layout-constrained\" style=\"border-radius:10px;padding-top:var(--wp--preset--spacing--spacing-12);padding-right:var(--wp--preset--spacing--spacing-12);padding-bottom:var(--wp--preset--spacing--spacing-12);padding-left:var(--wp--preset--spacing--spacing-12)\">\n<div class=\"wp-block-group is-nowrap is-layout-flex wp-container-core-group-is-layout-298f84b7 wp-block-group-is-layout-flex\" style=\"margin-top:0;margin-bottom:0;padding-top:0;padding-bottom:0\">\n<figure class=\"wp-block-image size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"132\" height=\"132\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/10\/Engage-with-our-experts_blogs.png\" alt=\"\" class=\"wp-image-20636\" style=\"width:48px\"\/><\/figure>\n\n\n\n<p class=\"has-body-lg-font-size wp-block-paragraph\"><strong>Engage with our experts!<\/strong><\/p>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\" style=\"margin-top:var(--wp--preset--spacing--spacing-4)\">Customers or Microsoft account team representatives from Fortune 500 companies are welcome to <a href=\"mailto:msitstaff@microsoft.com\">request a virtual engagement<\/a> on this topic with experts from our Microsoft Digital team.<\/p>\n<\/aside>\n\n\n\n<p class=\"wp-block-paragraph\">Customer Zero for device management spans more than Intune.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We partner across teams responsible for Microsoft Purview, Microsoft 365 Copilot, Microsoft Defender, Windows (Autopatch and Hotpatch), GitHub, and Microsoft Azure to produce comprehensive device management capabilities. These are the surfaces where we test, learn, and refine the end\u2011to\u2011end device management experience.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The loop is tight. We identify a need, prototype a solution with the product groups, roll it out to targeted rings, measure impact, and iterate. Those learnings inform what ships in Intune\u2014from data-driven insights to built\u2011in prompts that surface device health data as a conversation, rather than a simple query.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">\u201cUsing natural language reduces the time it takes us to figure out what\u2019s going on. We are able to ask Security Copilot questions naturally, which allows us to hear the signals that need our immediate action faster.\u201d<\/p>\n<cite>Mohit Malhotra, product manager, Microsoft Digital<\/cite><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">The result is a safer, faster path to value with AI-driven device management, including clear ownership, faster remediation, and features that arrive tested against operational reality.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We\u2019ve learned a lot as Customer Zero, and we\u2019re passing those lessons on to you.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Modern device management: Seven tips<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Here are seven important tips that we\u2019ve compiled to help with your device management efforts.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Tip 1: Ask natural-language questions with Microsoft Security Copilot<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We use the generative AI capabilities in <a href=\"https:\/\/learn.microsoft.com\/en-us\/copilot\/security\/get-started-security-copilot\" target=\"_blank\" rel=\"noreferrer noopener\">Microsoft Security Copilot<\/a> to query device and vulnerability data in plain language and get a unified answer that we can act on.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This allowed us to replace bespoke reports with targeted questions.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u201cUsing natural language reduces the time it takes us to figure out what\u2019s going on,\u201d says Mohit Malhotra, a product manager in Microsoft Digital. \u201cWe are able to ask Security Copilot questions naturally, which allows us to hear the signals that need our immediate action faster.\u201d<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Security Copilot lets us ask about device posture, app versions, cybersecurity vulnerabilities (known as Common Vulnerabilities and Exposures, or CVEs), and exposure across Microsoft Defender and Intune, without stitching the data together by hand. We get the context we need and move faster from finding to fixing.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>How we use it<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Scope impact: \u201cList Windows devices running &lt;app\/version&gt; that are vulnerable, with owners and deployment rings.\u201d<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Prioritize work: \u201cGroup affected devices by business unit and model; show counts and severity.\u201d<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Verify reach: \u201cConfirm which devices received &lt;policy\/package&gt; in the last 48 hours; flag failures.\u201d<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Prompts we rely on<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\"><em>\u201cShow devices affected by &lt;CVE\/app version&gt; and summarize recommended remediation steps.\u201d<\/em><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><em>\u201cBreak down exposure by ring and list top 5 models with highest risk.\u201d<\/em><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><em>\u201cIdentify outliers that failed the last policy sync and provide reasons.\u201d<\/em><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Why it helps<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Less toil: No custom pipelines to maintain.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Faster triage: Discovery and scoping happen in one interaction.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Clear next steps: Results align to our Intune targeting and scheduling paths.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Best practices<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Start specific: Name the product, version, and time window, then broaden as needed.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Keep follow\u2011ups short: Quick pivots like \u201cgroup by region\u201d or \u201cadd owner emails\u201d maintain momentum.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Act on the output: Use the device lists to target updates or policies in Intune, then validate results with a final check.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Note<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">We align usage with least\u2011privilege access and established approval paths so insights come from authoritative sources and actions land through the right channel.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Tip 2: Find knowledge fast with Microsoft 365 Copilot<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We use Microsoft 365 Copilot to pull device context from email, chats, and documents, allowing us to troubleshoot issues faster and easier using generative AI.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Incidents start with questions, not dashboards, e.g. \u201cWho owns this package? When did we change that policy? Where did we discuss the driver rollback?\u201d<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The answers to those questions live in mail threads, Teams chats, and planning docs. Before Copilot, we were forced to sift through these materials manually, which cost us time. Now we ask one question and get a summary with sources, people, and links. That keeps the investigation moving and reduces handoffs.<\/p>\n\n\n\n<figure class=\"wp-block-image alignright size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"500\" height=\"500\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Michael-Griswold.png\" alt=\"A photo of Griswold.\" class=\"wp-image-22438\" style=\"width:150px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Michael-Griswold.png 500w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Michael-Griswold-300x300.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Michael-Griswold-150x150.png 150w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><\/figure>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">&#8220;Copilot helps scan noisy logs and points us to likely causes. Our old process of opening logs, interpreting opaque error strings, and validating a hunch took too long. Getting faster answers matters when incidents stack up.\u201d<\/p>\n<cite>Michael Griswold, principal service engineering manager, Microsoft Intune<\/cite><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">This also helps us during the coordination phase. We can surface the approver for a change, the engineer who ran the last mitigation, and the runbook section that explains the rollback steps. We make better decisions because we see the history and the intent, not just the current state. Then we line up the action in Intune with the right stakeholders already looped in.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>How we use it<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Asking for recent context on a device model, configuration, or app to see decisions and outcomes in one place.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Retrieving owners, approvers, and on\u2011call contacts named in Outlook and Teams messages related to the issue.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Pulling change notes and runbook updates tied to a policy or package before we request an update in Intune.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Prompts we rely on<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\"><em>\u201cSummarize recent emails and Teams messages about &lt;device model\/app version&gt; and list owners mentioned.\u201d<\/em><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><em>\u201cFind the change note or runbook update for &lt;policy\/package&gt; from the last 14 days.\u201d<\/em><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><em>\u201cShow known issues linked to &lt;KB\/app&gt; and who resolved the last occurrence.\u201d<\/em><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Why it helps<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Less hunting: We replace ad hoc inbox and wiki searches with a single query.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Faster coordination: We identify the right stakeholders and prior decisions immediately.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Better decisions: We confirm history and context before proposing changes in Intune.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Best practices<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Keep prompts scoped. Include product, version, and a timeframe to focus your results.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Respect boundaries. Align usage with least\u2011privilege access and existing approval and auditing paths.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Capture outcomes. Link summaries, owners, and key docs back to the incident record so future searches return richer context.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Note<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Copilot gets better as more decisions and runbooks live in Microsoft 365, since that\u2019s where the signals come from.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Tip 3: Accelerate log triage with GitHub Copilot, Visual Studio Code, and Log Analytics<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We use GitHub Copilot in Visual Studio Code with Azure Monitor Log Analytics to explain errors, draft KQL, and shorten device log investigations.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">&#8220;Copilot helps scan noisy logs and points us to likely causes,&#8221; says Michael Griswold, a principal service engineering manager with the Microsoft Intune product group. &#8220;Our old process of opening logs, interpreting opaque error strings, and validating a hunch took too long. Getting faster answers matters when incidents stack up.\u201d<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Now we keep the entire loop in one workspace. AI in GitHub Copilot interprets the event, proposes likely causes, and generates KQL to confirm or rule out scenarios. We move from symptom to validated pattern without bouncing across tools.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>How we use it<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Connect VS Code to your Log Analytics workspace and load the tables you need (e.g., inventory and update events).<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Paste a minimal log sample with timestamps and device identifiers, so Copilot has context.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Ask Copilot to summarize the error, suggest probable causes, and produce KQL to test each path.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Run the query, review clusters and outliers, and request an alternate query or grouping if noise is high.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Prompts we rely on<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\"><em>\u201cExplain this error in a device\u2011management context and list three validation checks.\u201d<\/em><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><em>\u201cWrite KQL to find matching failures in the last 24 hours and group by model and policy.\u201d<\/em><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><em>\u201cJoin device inventory with update events for device and surface anomalies.\u201d<\/em><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Why it helps<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Faster pattern recognition: Proposed queries get us to evidence quickly.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Less context switching: Analysis and validation happen inside VS Code.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Cleaner handoff: Results map to our Intune actions for targeted remediation.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Best practices<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Keep inputs tight: Provide a small, representative log snippet, the affected device attributes, and a precise time window.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Iterate on queries: Ask for different filters, joins, or time ranges when results are noisy.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Close the loop: Use the device list to drive policy or update changes in Intune and confirm fixes with a final query.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Note<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">This workflow is broadly repeatable with GitHub Copilot, Visual Studio Code, and Azure Monitor Log Analytics.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Tip 4: Keep firmware and drivers current with Intune update management<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We use Intune firmware and driver update management to identify, approve, and deploy our OEM updates at scale.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">\u201cStaying current on firmware and drivers keeps devices stable and secure. With Intune, we stage updates, watch the rollout, and adjust before issues spread.&#8221;<\/p>\n<cite>Taqui Mohammad, senior service engineer, Microsoft Digital<\/cite><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">Firmware and driver releases don\u2019t land on a predictable schedule. Different vendors ship on different timelines, and a single environment can span hundreds of models.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Tracking this manually slows responses and leaves risk on the table. Intune centralizes the view so we can see what\u2019s applicable, choose the right targets, and roll out updates with the same discipline we use for OS patches.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u201cStaying current on firmware and drivers keeps devices stable and secure,&#8221; says Taqui Mohammad, a senior service engineer in Microsoft Digital. &#8220;With Intune, we stage updates, watch the rollout, and adjust before issues spread.&#8221;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>How we use it<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Review applicability: Open the firmware and driver updates view to see available updates grouped by make and model.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Select a pilot: Target a small ring first (model, business unit, or region) and set short deadlines.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Plan time windows and restarts: Align deployments with maintenance windows and communicate expected reboots.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Monitor, then expand: Track success and failure signals, remediate issues, and scale to broader rings.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Configuration tips<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Standardize categories: Separate firmware from drivers in policies so reporting and rollbacks are clean.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Use device tags consistently: Model, region, and business unit tags make scoping and expansion straightforward.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Define rollback steps: Document how to revert a driver or hold firmware for a specific model when needed.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Success checks<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Compliance trend: Increased percentage of devices on the latest approved firmware and driver versions after each wave.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Incident correlation: Fewer support tickets related to device stability and peripherals on updated models.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Deployment reliability: Decreased failure rates as pilots catch issues before broad rollout.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Best practices<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Pair with risk signals: Prioritize models tied to active vulnerabilities or incident clusters before broad rollout.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Keep rings small and fast: Validate quickly, then scale; long pilots hide issues and delay benefits.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Document exceptions: If a model needs a temporary hold due to app or peripheral compatibility, record the reason and set a review date.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Verify outcomes: Confirm update levels on target devices and scan for regressions in support queues.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Notes<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Expect uneven arrival patterns across vendors and models; a weekly review cadence helps catch new updates without creating noise.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Treat firmware and drivers as first\u2011class updates; include them in regular compliance reports and reviews so they get consistent attention.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image alignright size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"500\" height=\"500\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Dave-Rodriguez.png\" alt=\"A photo of Rodriguez. \" class=\"wp-image-22439\" style=\"width:150px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Dave-Rodriguez.png 500w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Dave-Rodriguez-300x300.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Dave-Rodriguez-150x150.png 150w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><\/figure>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">\u201cAutopatch Update Readiness catches and resolves common blockers before deployment begins. What used to require manual checks and troubleshooting is now handled upfront, giving us smoother updates and a far more reliable experience for our employees.\u201d<\/p>\n<cite>Dave Rodriguez, principal product manager, Microsoft Digital<\/cite><\/blockquote>\n\n\n\n<h2 class=\"wp-block-heading\">Tip 5: Speed updates with Windows Autopatch, Hotpatch, and Auto Remediation Update Readiness<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We use Windows Autopatch and Hotpatch to reduce disruptions and keep our devices current, and we pair them with automated readiness and remediation so our changes land safely and quickly.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Autopatch handles orchestration for quality updates and feature releases. We define rings that reflect business risk and user impact, then let the service pace deployments as health signals arrive.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u201cAutopatch Update Readiness catches and resolves common blockers before deployment begins,\u201d says Dave Rodriguez, a principal product manager in Microsoft Digital. \u201cWhat used to require manual checks and troubleshooting is now handled upfront, giving us smoother updates and a far more reliable experience for our employees.\u201d<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Where Hotpatch is available, we apply security updates without a reboot, which cuts downtime and helps us move faster on critical fixes. An automated readiness layer checks prerequisites, fixes common blockers, and confirms that devices are ready before rollout.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>How we use it<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Enroll eligible devices in Autopatch and map them to the right scope so ownership, reporting, and break\u2011glass procedures are clear.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Build rings that reflect business priority and user profiles (e.g., VIP laptops, frontline kiosks, engineering workstations, and lab devices).<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Enable Hotpatch on supported SKUs and confirm policy alignment so security updates apply without restarts where possible.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Run readiness checks that verify update agent health, policy state, storage and battery requirements, VPN reachability, and available maintenance windows.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Auto\u2011remediate common blockers such as stale update caches, missing prerequisites, paused services, or conflicting policies before a device enters the next ring.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Start with small cohorts, monitor early signals like install rate and post\u2011update stability, validate rollback paths, then expand the scope deliberately.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Operational checks<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Ring coverage ensures eligible devices are actually assigned to a ring and not stranded outside the managed flow.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">App and driver smoke tests validate business\u2011critical apps, kernel drivers, and peripherals on pilot cohorts before broad rollout.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Safeguard holds and known\u2011issue tracking are able to watch for vendor or service flags, which can pause or throttle a ring until a fix is available.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Rollback readiness confirms who owns the decision, what steps they follow, and how telemetry proves the rollback succeeded on affected devices.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Why it helps<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Continuous movement shortens exposure windows because healthy rings advance without waiting for a fixed date.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Fewer interruptions improve user experience, as Hotpatch removes the need for restarts on supported devices.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Higher success rates come from automated readiness and remediation, removing predictable failures before deployment.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Best practices<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Use consistent device tags so rings map cleanly to models, regions, and business units, which keeps targeting and reporting trustworthy.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Keep pilots small and fast to find issues quickly, then scale once success criteria are met and rollback is validated.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Communicate maintenance expectations in plain language so users know timing, restart behavior, and how to report problems.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Pace by risk rather than calendar, advancing rings when health metrics and support signal quality are within thresholds.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Review deployment dashboards daily during rollout, adjust ring size or cadence when error rates rise, and capture lessons learned for the next wave.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Note<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Hotpatch availability depends on your Windows edition and configuration, so confirm support and prerequisites as part of your scoping work.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Tip 6: Keep third\u2011party apps current with Intune Enterprise App Management<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We use Intune Enterprise App Management to keep third\u2011party apps current without constant packaging work.<\/p>\n\n\n\n<figure class=\"wp-block-image alignright size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"500\" height=\"500\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Humberto-Arias.png\" alt=\"A photo of Arias.\" class=\"wp-image-22440\" style=\"width:150px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Humberto-Arias.png 500w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Humberto-Arias-300x300.png 300w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/Humberto-Arias-150x150.png 150w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><\/figure>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">&#8220;Third-party apps fall out of date fast, so we\u2019re standardizing how they\u2019re updated. We do that with Enterprise App Management, which gives us reliable packages and keeps us moving at a steady cadence.&#8221;<\/p>\n<cite>Humberto Arias, senior product manager, Microsoft Digital<\/cite><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">Third\u2011party software drives real risk: version drift, silent installers change, and manual packaging pipelines break at the worst time.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">With Enterprise App Management, we select from a managed catalog, set assignment and update rules, and let the service handle new versions as they ship. We spend our time on exceptions, not routine updates.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">&#8220;Third-party apps fall out of date fast, so we\u2019re standardizing how they\u2019re updated,&#8221; says Humberto Arias, a senior product manager in Microsoft Digital. &#8220;We do that with Enterprise App Management, which gives us reliable packages and keeps us moving at a steady cadence.&#8221;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This approach also improves the user experience. Updates arrive in predictable windows and dependencies are handled in a timely manner. We avoid surprise prompts and failed installs that generate tickets. When we do need to pause or pin a version, we scope it cleanly and document the reason.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>How we use it<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Build a standard catalog that covers the common apps our users need and assign clear ownership for each title.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Configure update behavior to auto\u2011update.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Use rollout rings so pilots validate the installation success rate and app behavior before expanding to broad audiences.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Scope assignments with device tags such as model, region, or business unit to simplify targeting and reporting.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Monitor install and update status, investigate failures, and retry with adjusted timing or requirements when needed.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Capture exceptions for apps that need holds or custom steps and set review dates to revisit the decision.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Scenarios we run<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Rapid response when a high\u2011risk CVE drops by prioritizing affected apps and moving them to the front of the update queue.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Version cleanup by removing outdated or duplicate installers so devices converge on a single approved release.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Conditional deployment for specialized teams by offering an app as available instead of required while still tracking adoption.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Why it helps<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Less packaging toil because the catalog supplies current installers and metadata.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Faster patching for common apps because updates flow as they publish.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Better compliance reporting because versions and assignments are consistent across rings and groups.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Best practices<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Keep an authoritative list of approved apps with owners, support notes, and rollback steps.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Coordinate maintenance windows for high\u2011impact apps so users can save work before enforced updates.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Require pilots for any app with add\u2011ins or drivers and validate workflows with real users before scaling.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Use uninstall assignments to remove unapproved or vulnerable software and block reinstallation where needed.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Document app\u2011level exceptions, including the rationale and a date to re\u2011evaluate.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Notes<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Some apps need pre-install checks or post-install steps, so include scripts or detection rules where required.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Track license terms and usage for commercial titles so updates do not outpace entitlements.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Tip 7: Close the loop with Defender Vulnerability Management and Intune security tasks<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">We use Microsoft Defender Vulnerability Management with Intune to turn exposure insights into targeted actions that close risk fast.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">&#8220;The Intune Vulnerability Agent gives us a clear list of issues by device and owner. It shortens our path from finding a problem to fixing it.&#8221;<\/p>\n<cite>Harshitha Digumarthi, senior product manager, Microsoft Digital<\/cite><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">Incidents don\u2019t end when we spot a CVE. They end when devices are fixed and verified.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Vulnerability Management gives us an AI-powered live inventory of devices, software, and configurations, then connects that inventory to known threats. It shows which versions run where, highlights misconfigurations, and explains why a device is at risk. We see the problem and the cause, not just a risk score.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">&#8220;The Intune Vulnerability Agent gives us a clear list of issues by device and owner,&#8221; says Harshitha Digumarthi, a senior product manager at Microsoft Digital. &#8220;It shortens our path from finding a problem to fixing it.&#8221;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It also ranks what to fix first. Factors like severity level, exploit availability, active attacks, and business context all feed into the priority list, so that commensurate effort goes where it\u2019s needed most. The service recommends specific actions such as updating, uninstalling, reconfiguring, or applying a policy as appropriate.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">From there, it pushes the work into our change tools. Tasks flow to Intune, Autopatch, and Enterprise App Management so the remediation is traceable. Exceptions are tracked, including data on owners, compensating controls, and review dates. Closure is verified by watching exposure decrease and confirming the fix landed with the intended devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>How we use it<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Review exposure by CVE, software, and device group to see where risk concentrates.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Prioritize based on business impact, internet exposure, and privilege level so high\u2011value targets move first.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Select the fix that fits the issue, including app updates through Enterprise App Management, OS and quality updates through Autopatch or Hotpatch (where supported), firmware and drivers through Intune update management, or policy changes for configuration weaknesses.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Target the right scope using tags for model, region, and business unit so remediation lands where it\u2019s needed.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Set deadlines and user experience settings that balance urgency with productivity.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Validate closure by rechecking exposure, confirming install success, and watching support signals for regressions.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>What we monitor<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Exposure trends over time, to prove that remediation is reducing risk.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Top vulnerable apps and models, so effort tracks where it matters most.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Noncompliant devices and owners, so follow\u2011ups are direct and accountable.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Exceptions that need compensating controls, documented rationale, and a review date.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Why it helps<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Fewer handoffs because the same team that sees risk can initiate remediation.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Measurable outcomes because exposure and deployment data live in connected systems.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Consistent execution because rings, tags, and approvals follow the same patterns as other updates.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Best practices<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Keep device tags authoritative so targeting and reporting stay reliable.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Use pilots even for urgent fixes to catch compatibility issues before broad rollout.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Link vulnerability records to Intune assignments so audit and learning loops are clear.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Communicate clearly with affected users about timing, restarts, and how to report problems.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Document exceptions with owners and expiration dates so temporary holds don\u2019t become permanent.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Notes<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\">Not every fix is an update, and some issues require a configuration change or feature disablement with clear rollback steps.<\/li>\n\n\n\n<li class=\"wp-block-list-item\">Least\u2011privilege access and standard approvals keep remediation fast without expanding risk.<\/li>\n<\/ul>\n\n\n\n<div class=\"wp-block-group has-global-padding is-content-justification-left is-layout-constrained wp-container-core-group-is-layout-c0392459 wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<div class=\"wp-block-group has-global-padding is-layout-constrained wp-container-core-group-is-layout-7db9d80f wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<figure class=\"wp-block-image alignleft size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"190\" height=\"190\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Key-takeaways-badge.png\" alt=\"\" class=\"wp-image-19493\" style=\"object-fit:cover;width:75px;height:75px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Key-takeaways-badge.png 190w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Key-takeaways-badge-150x150.png 150w\" sizes=\"auto, (max-width: 190px) 100vw, 190px\" \/><\/figure>\n\n\n\n<p class=\"has-body-xl-font-size wp-block-paragraph\" style=\"margin-top:var(--wp--preset--spacing--spacing-24);margin-bottom:0;padding-top:var(--wp--preset--spacing--spacing-24)\">Key takeaways<\/p>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Our approach for managing devices and updates has changed. We shifted device and update management from manual hunting and ad hoc remediation to a connected loop that starts with a question and ends with verified resolution\u2014reducing investigation time and speeding recovery.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A few lessons stand out:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\"><strong>Make natural language work by grounding it in trust.<\/strong> Natural language becomes a force multiplier when insights are drawn from authoritative data and access is tightly scoped.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Keep pilots small, fast, and intentional.<\/strong> Focused pilots surface issues early without slowing momentum or introducing unnecessary risk.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Standardize signals to build confidence.<\/strong> Consistent tagging and clear ownership make reports, deployment rings, and rollbacks easier to interpret and trust.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Control exceptions with discipline.<\/strong> Every exception requires a written rationale and a review date, ensuring temporary holds don\u2019t become permanent policy.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Close the loop\u2014every time.<\/strong> Verification matters as much as detection. We confirm outcomes and capture learnings to continuously improve the next cycle.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">What we&#8217;re improving next: <\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"wp-block-list-item\"><strong>Strengthen question\u2011to\u2011action flows.<\/strong> We\u2019re deepening prompts and playbooks that connect Security Copilot and Intune so operators can move from investigation to scoped change in a single flow.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Expand Hotpatch adoption and measurement. <\/strong>As support broadens, we\u2019re increasing usage and measuring the impact on downtime, reliability, and user experience.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Grow app coverage with clearer stability rules.<\/strong> We\u2019re expanding Enterprise App Management while enforcing stronger version\u2011pinning guidance where predictability is critical.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Automate deployment decisions.<\/strong> Additional automation around ring placement, readiness checks, and rollback triggers will allow deployments to adapt to live health signals.<\/li>\n\n\n\n<li class=\"wp-block-list-item\"><strong>Accelerate investigations with reusable telemetry. <\/strong>We\u2019re developing richer telemetry patterns and reusable KQL in Visual Studio Code to reduce noise and speed repeat investigations.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">It\u2019s a continuing evolution of our awareness and capabilities in device management, and we\u2019ll keep improving on it, one loop at a time.<\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-global-padding is-content-justification-left is-layout-constrained wp-container-core-group-is-layout-c0392459 wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<div class=\"wp-block-group has-global-padding is-layout-constrained wp-container-core-group-is-layout-7db9d80f wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<figure class=\"wp-block-image alignleft size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"190\" height=\"190\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Try-it-out-badge.png\" alt=\"\" class=\"wp-image-19492\" style=\"object-fit:cover;width:75px;height:75px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Try-it-out-badge.png 190w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Try-it-out-badge-150x150.png 150w\" sizes=\"auto, (max-width: 190px) 100vw, 190px\" \/><\/figure>\n\n\n\n<p class=\"has-body-xl-font-size wp-block-paragraph\" style=\"margin-top:var(--wp--preset--spacing--spacing-24);margin-bottom:0;padding-top:var(--wp--preset--spacing--spacing-24)\">Try it out<\/p>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/intune\/intune-service\/fundamentals\/manage-devices?OCID=InsideTrack_Product_10779\" target=\"_blank\" rel=\"noreferrer noopener\">Manage and secure your devices with Microsoft Intune.<\/a><\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-global-padding is-content-justification-left is-layout-constrained wp-container-core-group-is-layout-c0392459 wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<div class=\"wp-block-group has-global-padding is-layout-constrained wp-container-core-group-is-layout-7db9d80f wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<figure class=\"wp-block-image alignleft size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"190\" height=\"190\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Related-links-badge.png\" alt=\"\" class=\"wp-image-19491\" style=\"object-fit:cover;width:75px;height:75px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Related-links-badge.png 190w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Related-links-badge-150x150.png 150w\" sizes=\"auto, (max-width: 190px) 100vw, 190px\" \/><\/figure>\n\n\n\n<p class=\"has-body-xl-font-size wp-block-paragraph\" style=\"margin-top:var(--wp--preset--spacing--spacing-24);margin-bottom:0;padding-top:var(--wp--preset--spacing--spacing-24)\">Related links<\/p>\n<\/div>\n\n\n\n<ul style=\"margin-top:var(--wp--preset--spacing--spacing-20)\" class=\"wp-block-list\">\n<li class=\"wp-block-list-item\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/intune\/intune-service\/copilot\/security-copilot\" target=\"_blank\" rel=\"noreferrer noopener\">Learn how Microsoft Security Copilot integrates with Microsoft Intune.<\/a><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><a href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/transforming-security-and-compliance-at-microsoft-with-windows-hotpatch\/\">Explore how we\u2019re transforming security and compliance with Windows Hotpatch.<\/a><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/windows\/deployment\/windows-autopatch\/prepare\/windows-autopatch-start-using-autopatch\" target=\"_blank\" rel=\"noreferrer noopener\">Read more about Windows Autopatch.<\/a><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/defender-vulnerability-management\/defender-vulnerability-management\" target=\"_blank\" rel=\"noreferrer noopener\">Discover how Microsoft Defender Vulnerability Management helps remediate device vulnerability.<\/a><\/li>\n\n\n\n<li class=\"wp-block-list-item\"><a href=\"https:\/\/learn.microsoft.com\/en-us\/intune\/intune-service\/apps\/apps-enterprise-app-management\" target=\"_blank\" rel=\"noreferrer noopener\">Find out how Intune Enterprise App Management enables app discovery and deployment<\/a><\/li>\n<\/ul>\n<\/div>\n\n\n\n<div class=\"wp-block-group has-global-padding is-content-justification-left is-layout-constrained wp-container-core-group-is-layout-c0392459 wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<div class=\"wp-block-group has-global-padding is-layout-constrained wp-container-core-group-is-layout-7db9d80f wp-block-group-is-layout-constrained\" style=\"padding-right:0;padding-left:0\">\n<figure class=\"wp-block-image alignleft size-full is-resized\"><img loading=\"lazy\" decoding=\"async\" width=\"190\" height=\"190\" src=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Wed-like-to-hear-from-you-badge.png\" alt=\"\" class=\"wp-image-19490\" style=\"object-fit:cover;width:75px;height:75px\" srcset=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Wed-like-to-hear-from-you-badge.png 190w, https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2025\/07\/Wed-like-to-hear-from-you-badge-150x150.png 150w\" sizes=\"auto, (max-width: 190px) 100vw, 190px\" \/><\/figure>\n\n\n\n<p class=\"has-body-xl-font-size wp-block-paragraph\" style=\"margin-top:var(--wp--preset--spacing--spacing-24);margin-bottom:0;padding-top:var(--wp--preset--spacing--spacing-24)\">We&#8217;d like to hear from you!<\/p>\n<\/div>\n\n\n\n<ul style=\"margin-top:var(--wp--preset--spacing--spacing-20)\" class=\"wp-block-list is-style-list-no-bullets\">\n<li class=\"wp-block-list-item\"><a href=\"mailto:msitstaff@microsoft.com\">Want more information? Email us and include a link to this story and we\u2019ll get back to you.<\/a><\/li>\n<\/ul>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>At Microsoft, we manage a large, diverse device estate, with more than 1 million devices in use by employees and teams across our global corporate network. For years, we stitched together insights across multiple tools, wrote custom queries, and maintained fragile reports just to answer basic questions. This approach slowed investigations and delayed patch targeting. [&hellip;]<\/p>\n","protected":false},"author":92,"featured_media":22435,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":true,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_hide_featured_on_single":false,"_show_featured_caption_on_single":true,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[71,1],"tags":[199,868,137,820,597,850,852,263,827],"coauthors":[550],"class_list":["post-22433","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-featured","category-uncategorized","tag-ai","tag-ai-deployment-and-adoption","tag-change-management","tag-device-management","tag-employee-experience","tag-end-user-services-and-support","tag-it-and-business-operations","tag-microsoft-365","tag-microsoft-365-copilot","m-blog-post"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.2 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy - Inside Track Blog<\/title>\n<meta name=\"description\" content=\"Learn how we\u2019re using AI, Intune, and Copilot to rethink device management, reducing our workloads, speeding our remediation, and improving our security.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy - Inside Track Blog\" \/>\n<meta property=\"og:description\" content=\"Learn how we\u2019re using AI, Intune, and Copilot to rethink device management, reducing our workloads, speeding our remediation, and improving our security.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/\" \/>\n<meta property=\"og:site_name\" content=\"Inside Track Blog\" \/>\n<meta property=\"article:published_time\" content=\"2026-02-19T17:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-03-05T17:10:07+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2300\" \/>\n\t<meta property=\"og:image:height\" content=\"1293\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Jason Kellington\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jason Kellington\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"20 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/\"},\"author\":{\"name\":\"Jason Kellington\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/873dfaa69644d9b2e9861bc6dac478b6\"},\"headline\":\"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy\",\"datePublished\":\"2026-02-19T17:00:00+00:00\",\"dateModified\":\"2026-03-05T17:10:07+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/\"},\"wordCount\":4380,\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg\",\"keywords\":[\"AI\",\"AI deployment and adoption\",\"change management\",\"device management\",\"Employee experience\",\"End user services and support\",\"IT and business operations\",\"Microsoft 365\",\"Microsoft 365 Copilot\"],\"articleSection\":[\"Featured\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/\",\"name\":\"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy - Inside Track Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg\",\"datePublished\":\"2026-02-19T17:00:00+00:00\",\"dateModified\":\"2026-03-05T17:10:07+00:00\",\"author\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/873dfaa69644d9b2e9861bc6dac478b6\"},\"description\":\"Learn how we\u2019re using AI, Intune, and Copilot to rethink device management, reducing our workloads, speeding our remediation, and improving our security.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg\",\"contentUrl\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg\",\"width\":2300,\"height\":1293,\"caption\":\"We\u2019re using Microsoft Intune, Microsoft 365 Copilot and other AI tools to modernize device management internally here at Microsoft, a shift that is enabling us to reduce our workloads and to speed remediation at scale.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/\",\"name\":\"Inside Track Blog\",\"description\":\"How Microsoft does IT\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/873dfaa69644d9b2e9861bc6dac478b6\",\"name\":\"Jason Kellington\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/d4b158da36ed1724c7b9904b655dca8f848e188c9a11b293da2c41a62cd51391?s=96&d=mm&r=g194a4f0f478cef34134d870cc64e1068\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d4b158da36ed1724c7b9904b655dca8f848e188c9a11b293da2c41a62cd51391?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d4b158da36ed1724c7b9904b655dca8f848e188c9a11b293da2c41a62cd51391?s=96&d=mm&r=g\",\"caption\":\"Jason Kellington\"},\"url\":\"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/v-jaske\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy - Inside Track Blog","description":"Learn how we\u2019re using AI, Intune, and Copilot to rethink device management, reducing our workloads, speeding our remediation, and improving our security.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/","og_locale":"en_US","og_type":"article","og_title":"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy - Inside Track Blog","og_description":"Learn how we\u2019re using AI, Intune, and Copilot to rethink device management, reducing our workloads, speeding our remediation, and improving our security.","og_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/","og_site_name":"Inside Track Blog","article_published_time":"2026-02-19T17:00:00+00:00","article_modified_time":"2026-03-05T17:10:07+00:00","og_image":[{"width":2300,"height":1293,"url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg","type":"image\/jpeg"}],"author":"Jason Kellington","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Jason Kellington","Est. reading time":"20 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/"},"author":{"name":"Jason Kellington","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/873dfaa69644d9b2e9861bc6dac478b6"},"headline":"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy","datePublished":"2026-02-19T17:00:00+00:00","dateModified":"2026-03-05T17:10:07+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/"},"wordCount":4380,"image":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg","keywords":["AI","AI deployment and adoption","change management","device management","Employee experience","End user services and support","IT and business operations","Microsoft 365","Microsoft 365 Copilot"],"articleSection":["Featured"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/","name":"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy - Inside Track Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg","datePublished":"2026-02-19T17:00:00+00:00","dateModified":"2026-03-05T17:10:07+00:00","author":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/873dfaa69644d9b2e9861bc6dac478b6"},"description":"Learn how we\u2019re using AI, Intune, and Copilot to rethink device management, reducing our workloads, speeding our remediation, and improving our security.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#primaryimage","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg","contentUrl":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg","width":2300,"height":1293,"caption":"We\u2019re using Microsoft Intune, Microsoft 365 Copilot and other AI tools to modernize device management internally here at Microsoft, a shift that is enabling us to reduce our workloads and to speed remediation at scale."},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/read-our-seven-tips-for-shifting-to-a-cloud-native-device-management-strategy\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/insidetrack\/blog\/"},{"@type":"ListItem","position":2,"name":"Read our seven tips for shifting to a \u2018cloud native\u2019 device management strategy"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#website","url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/","name":"Inside Track Blog","description":"How Microsoft does IT","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/insidetrack\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.microsoft.com\/insidetrack\/blog\/#\/schema\/person\/873dfaa69644d9b2e9861bc6dac478b6","name":"Jason Kellington","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d4b158da36ed1724c7b9904b655dca8f848e188c9a11b293da2c41a62cd51391?s=96&d=mm&r=g194a4f0f478cef34134d870cc64e1068","url":"https:\/\/secure.gravatar.com\/avatar\/d4b158da36ed1724c7b9904b655dca8f848e188c9a11b293da2c41a62cd51391?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d4b158da36ed1724c7b9904b655dca8f848e188c9a11b293da2c41a62cd51391?s=96&d=mm&r=g","caption":"Jason Kellington"},"url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/author\/v-jaske\/"}]}},"jetpack_featured_media_url":"https:\/\/www.microsoft.com\/insidetrack\/blog\/uploads\/prod\/2026\/02\/10779_Hero-image.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9hcZA-5PP","_links":{"self":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/22433","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/users\/92"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/comments?post=22433"}],"version-history":[{"count":13,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/22433\/revisions"}],"predecessor-version":[{"id":22456,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/posts\/22433\/revisions\/22456"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media\/22435"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/media?parent=22433"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/categories?post=22433"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/tags?post=22433"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/insidetrack\/blog\/wp-json\/wp\/v2\/coauthors?post=22433"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}