Practice

Generic professional advice from Amit's day job — patterns the peer group can use. Written for G-SIFI architecture, Risk/Compliance/Audit, and M365/Power Platform peers, derived from Amit's experience but stripped of firm-internal specifics.

Currently in flight

v2.2 · live

M365 Copilot Architecture

Live

What changes when a regulated firm turns on Microsoft 365 Copilot, mapped end-to-end. Architecture, regulatory obligations, and an interactive walkthrough — built for a Global Systemically Important Financial Institution audience.

Topic Version · v2.2 · baselined 2026-05-05

Microsoft's contract shifts a large share of privacy and security liability to Microsoft. It does not, on its own, satisfy regulators. The piece maps the M365 E5 + Copilot overlay, identifies where Microsoft's contract ends, and catalogs the residual obligations a G-SIFI must operate regardless of contract.

What's next · v2.3 in flight: refresh xAI/Grok integration classification, tighten CoWork OBO mechanics, advance Posture Sandbox to v1.0 with auto-fact-check.

About this pillar

The Practice pillar is where Amit's day job — leading globally distributed engineering teams in a Global Systemically Important Financial Institution, with a focus on M365 / Copilot / Power Platform — gets translated into patterns useful to other architects, Risk/Compliance/Audit leads, and platform owners. Pieces here are firm-anonymized; the substance is what generalizes.

Topics rotate as Amit's work evolves. What you see today is M365 Copilot Architecture; future topics may move into Power Platform governance, identity-and-access posture, or model-risk operationalization. More about Mogambo · Tell Mogambo.