Speakers
Stream 2 | The Carnegie Stage
Most organisations adopted Microsoft 365 (M365) to collaborate, not to replace their recordkeeping system. Yet business evidence is now routinely created and stored across M365 “workloads”, including SharePoint, Teams-connected locations, and other platform services. In Australia, multiple public-sector guidance streams emphasise that M365 must be governed and configured deliberately to meet recordkeeping obligations, noting the platform’s “evergreen” nature and the need for ongoing monitoring and governance as capabilities change over time.
This session cuts through the myths: retention labels are not the same as recordkeeping; audit evidence can be time-limited unless extended and managed; and “declare a record” approaches are generally misaligned with broader recordkeeping expectations (outside the US). Drawing on practical implementation artefacts (checklists, assessment criteria, and configuration discussion points), we’ll map the minimum governance moves that help organisations treat M365 as a system of record, without crushing productivity. Attendees will leave with a pragmatic framing, a risk-based control set, and a repeatable way to assess where their M365 environment is “substantially compliant” vs. where gaps must be mitigated.
Originally from Canada, Colin Phillips has over 25 years’ experience working across the Microsoft ecosystem. His background spans software development, systems integration, and solution architecture, with a long‑standing focus on SharePoint and Microsoft 365. A five‑time Microsoft Most Valuable Professional (MVP), Colin brings deep expertise in Microsoft Purview, with particular emphasis on records management, information architecture, governance, compliance, and security. He is known for combining strong technical depth with a practical, approachable presentation style.