Office 365 Security Best Practices Alignment
Office 365 is not secure out-of-the-box. It’s up to the customer to lock it down to its needs. If you’re not sure your Office 365 is secured, then we’re sure it’s not.
Don’t be ashamed. Be aggressive. Go to Work. We’ve built a practice on securing Office 365 for our clients.
Microsoft introduces (and sometimes takes away) features on a seemingly daily basis. Even though we’re in our clients’ Office 365 accounts all day every day, sometimes we’re still caught off guard by new features.
To keep up with the rapid pace of change, we built an Office 365 best practices catalog, and from that catalog, we built our Office 365 Best Practices Alignment program.
As we add best practices, we add them to our client approval workflow (a series of emails) and an implementation checklist. Once all of the pieces are in place, we kick-off the approval workflow. Upon our client’s approval, implement the new security measures by following the implementation checklist. This way, nothing falls through the cracks, and our client is fully engaged in the process.
Some of our security best practices
Office 365 multi-factor authentication. The first thing we’ll do is enroll your team in multi-factor authentication (MFA.) If you’re not enrolled in MFA, we can guarantee that you’re breached. Even if each staff member is enrolled in MFA, there are still backdoors that are up to the Office 365 customer to close. We’ll close those backdoors.
Block Office 365 login attempts based on risk profile. Even in a world where MFA is fully enforced, passwords still play a critical role. By preventing suspicious login attempts, bad actors don’t have the opportunity to continue to hammer on your users’ Office 365 accounts.
Prevent your staff from giving malicious third-parties access to their Office 365 accounts. Hackers know that end-users are the weakest link in any security model, so they circumvent MFA and strong passwords by emailing a link to an app that’s designed as a helpful Office 365 add-in.
When your staff approve these malicious third-party apps, they give bad actors access to your staff’s Outlook, OneDrive, and SharePoint data. We’ll prevent that.