About me

Hi and welcome to my blog.

My name is Kasper Nørregaard, and I work as an IT consultant focusing on Microsoft infrastructure and security.

I spend most of my time working with identity, Active Directory security and data protection. That includes everything from old-school AD tiering and hardening to cloud security like Conditional Access and Administrative Units. I still deal with hybrid environments where ADFS and legacy setups are part of the picture.

For me, security is not something that just needs to look good on a slide. It has to work in real environments with legacy systems, hybrid setups and users who do not always behave as expected.

In my day-to-day work, I help organizations move from thinking they are secure to actually being in control. That can be tightening AD tiering, locking down privileged access, improving Conditional Access policies or making data protection something people actually use.

This blog is where I share practical approaches, lessons learned and things that do not always go as planned. Topics include data classification, DLP, Copilot readiness, Active Directory hardening, Conditional Access and hybrid identity.

I will also share lab testing of new features and security ideas. The goal is to keep it practical and hands-on, not just something that looks good on slides.

In 2025, I decided to start speaking at conferences and community events. It is a way for me to share what actually works, learn from others, and stay close to the real challenges people are dealing with.

If you are working with Microsoft security, Active Directory or trying to bring structure to chaos, you are in the right place.