AzureDay Poland 2026 — security hits, skipped AI tracks, and a hotel I had seen before
Thursday, 12 March — AzureDay Poland 2026 at Airport Hotel Okęcie in Warsaw. My second time at the event, same venue as last year. Small coincidence: I had already slept in that hotel as a regular guest on the way back from Ignite in San Francisco a few months earlier. Conference day turns the lobby into badges, queues, and sponsor stands; a Tuesday night layover is just a quiet corridor and room service. Same building, completely different atmosphere.
This is not a session replay. I picked a path through the agenda, skipped whole blocks on purpose, and left with a notebook full of names rather than slide URLs. That is usually how AzureDay works for me — one long Polish Azure community day, dense enough that you cannot catch everything.
Most of my community orbit sits in Wrocław — SysOps meetups, MAUG sessions, university workshops, the people I bump into at the coffee machine between tracks. AzureDay is a useful counterweight: a reminder that Warsaw runs its own Azure calendar, with different regulars, different sponsor mix, and a capital-city scale that Wrocław cannot replicate in a single room. I do not go often enough to know everyone by sight, and that is part of the point. If you live in western Poland and only ever attend local events, you miss how much happens three hours east by train.
Opening keynote — energy first, depth second
The keynote leaned more toward building hype than delivering dense technical content. I say that without malice — the organisers clearly had fun putting the day together and stayed enthusiastic from the first slide to the last coffee break. Keynotes at regional Azure conferences often carry a sales-and-vision mix; this one fit the pattern. Useful as orientation, not as something I would rewatch for implementation details.
Paula Januszkiewicz — forensics as performance art
The first real highlight was Paula Januszkiewicz on extracting data from computers — practical Windows forensics, attack paths, and the mechanics of breaking protections when you know where to look.
Most of the scary examples were Windows-specific. I switched to a Mac for work in October and run Fedora on my personal machines, so I filed the session under “things to remember for customer environments” rather than “reasons to lose sleep at home.” At work I sometimes still have to touch some of Windows estates; the talk was relevant, just not personally alarming.
The ending was the part people will remember. She put a QR code on screen for supplementary materials. The room scanned it immediately. Then she asked whether everyone was really brave enough to scan random QR codes at a security talk. Peak cinema. A better lesson than half the slide decks I saw that year.
Marcin Reichman — Azure Local and déjà vu from banking work
Next I sat Marcin Reichman’s session on Azure Local — interesting especially through the lens of regulated industries. I have done platform work for financial-sector customers before, where hybrid boundaries and data residency were never abstract slide bullets. Azure Local’s pitch — Azure control plane and services patterns on your own hardware — maps to conversations those organisations still have about latency, compliance, and how much actually lives in the public cloud.
A lot of it rhymed with Azure Arc thinking: extend Azure management and policy to boxes that are not pure public cloud. Different product name, similar architectural question — where does the control plane live, and what do application teams actually experience day to day?
Kamil Mrzygłód — emulating Azure, but not the way I expected
Kamil Mrzygłód’s talk on emulating Azure leaned more toward his own open-source tooling for local Azure-like development than toward Microsoft’s first-party local-dev story. That was a pleasant surprise once I recalibrated — practical, hands-on, the kind of project you might actually try on a weekend — even if the session title had me expecting a product tour first.
Robert Przybylski — hardening Microsoft Entra
Another strong session: Robert Przybylski on tooling and practices for securing Microsoft Entra ID. Lots of concrete examples, sensible defaults, and the kind of “here is what attackers actually try” framing that platform engineers need when identity is shared infrastructure.
This landed close to my day job — landing zones, conditional access, service principals, governance — and close to material I care about publicly. If you only watch one AzureDay recording when they appear online, this genre of talk ages well.
Entra External ID / B2C — configuration depth vs migration story
I had a personal reason to stay for the Azure AD B2C / Entra External ID session: I had submitted a similar proposal to AzureDay and it was rejected. I watched another speaker’s version instead — very well researched, clearly structured, more focused on Entra configuration and policy knobs than on application wiring in code.
A few weeks later I recorded my own take as a Warsaw IT Days VoD (early April) — GitHub · YouTube. Different emphasis, both valid. Kudos to the AzureDay speaker for portal depth; my material spent more time on greenfield React and .NET integration and on splitting login from permissions.
Tomasz Kopacz — .NET at cloud speed
Not strictly a cloud talk — .NET tooling and practices — but Tomasz Kopacz is the kind of speaker who can pull any topic. I am a long-time fan of how he runs a room: fast, dense, no filler. Huge amount of material in a short slot, all of it worth the sit.
I cooperate with .NET less than I used to, yet I still walk out of his sessions with one or two ideas to steal for platform work — CLI ergonomics, developer workflow, how teams actually adopt change. Good speakers make you forget the track label.
Paweł Siwek — WAF basics worth revisiting
Last session I caught was Paweł Siwek on Web Application Firewall patterns on Azure. Strong overlap with what I implement for customers regularly — Front Door, Application Gateway, rule tuning, false positives.
Even when you deploy WAF weekly, it helps to sit through a refresher every year or two. Vendors add rule sets, attack patterns shift, and it is easy to inherit a policy nobody has reviewed since the first go-live. Nothing revolutionary; exactly the kind of session that prevents quiet drift in production.
Why I mostly skipped the AI track
I deliberately avoided most AI-labelled sessions. At this stage of the cycle there is still more hype than substance in conference AI tracks — marketing language, FOMO demos, fewer honest postmortems. The market is stabilising, but while the bubble lasts, stage time tends toward announcement energy rather than “here is what broke in our Terraform apply.”
That is not a rejection of AI work. I use the tooling, I write about Foundry and agents, and I have hit my share of Microsoft Foundry integration potholes over the last few months. I simply find more actionable AI-on-Azure content in long-form blog posts and meetups where speakers show failures. Conference keynotes and AI tracks still skew toward slide-deck optimism. AzureDay was pleasant anyway — I would go again — but my notebook filled up on identity, hybrid, and security, not on copilots.
Would I go again?
Yes. AzureDay Poland hits a sweet spot for the local Azure community: serious practitioners, a full day without travel abroad, and enough parallel tracks that you must choose — which forces you to have an opinion about what you care about this quarter.
Thanks to MAUG Poland and the organisers for another solid edition. If you missed March 2026, watch azureday.pl for the next date — they have been running since 2016 and the venue familiarity is part of the charm.