blog

Notes from the cloud

Practical write-ups on Azure, Microsoft 365, Entra ID, security and infrastructure as code — the things I run into in real enterprise environments.

azurefinopscost-optimization

The Microsoft FinOps toolkit, from A to Z

A practical map of every tool in the Microsoft FinOps toolkit — workbooks, Power BI reports, FinOps hubs, the Azure Optimization Engine, PowerShell and more — and the order I would adopt them in.

Jun 10, 2026 Read →

azurefinopsai

Watching your Azure bill with AI: SRE Agent + FinOps hubs

Beyond routing cost alerts to an AI agent — wiring Azure SRE Agent into FinOps hubs data via MCP and KQL, building a FinOps subagent, and automating cost remediation with guardrails.

Jun 10, 2026 Read →

entra-idsecurityidentity

A pragmatic Conditional Access baseline for Entra ID

A starting set of Conditional Access policies that block the most common attacks without burying your help desk in tickets.

Jun 5, 2026 Read →

metacloud

Welcome — why I started this blog

A short intro to what I do and the kind of cloud, identity and security topics you can expect to find here.

May 15, 2026 Read →