Office 365 (O365) Security Architecture Review/Azure
Security best practice reviews of your Azure/O365 environments
Problem: As many organizations have moved their business information and resources to the cloud using Azure and Microsoft Office 365 (O365), the transition also came with risk. The majority of companies have deployed Microsoft services with the default configurations. These configurations do not adhere to Microsoft and CIS published security best practices and will ultimately result in unintended access with reduced visibility and protection.
Recent studies show the risk sourced from these vulnerabilities:
Solution: Perform a security best practice review of your Azure/O365 environments with prioritized recommendations for hardening.
Recent studies show the risk sourced from these vulnerabilities:
- 85% of organizations using Microsoft 365 experienced an email data breach in the last 12 months.^
- A survey of 27 million users across 600 enterprises found that 71.4% of Microsoft 365 business users suffer at least one compromised account each month.*
Solution: Perform a security best practice review of your Azure/O365 environments with prioritized recommendations for hardening.
Security architecture reviews are non-disruptive studies that uncover systemic security issues. This specialty-focused review provides a comprehensive, expedient process to identify any risks in your working environment.
SCOPE OF ACTIVITIES
Azure security best practices review of:
- Logging and monitoring
- Policies
- Authentication methods
- Security center capabilities
- Subscription configuration
- Basic networking configuration of Azure
- Events review
Office 365 security best practices review of:
- Logging and monitoring
- Policies
- Authentication methods
- Data management configuration
- Mail auditing capabilities
- Events review
- Mobile device management
DELIVERABLES
Written report that includes findings and recommendations for security enhancements to the Azure and Office 365 instance.
Corresponding spreadsheet with all the checks and findings.
HALOCK, a trusted risk management and cybersecurity consulting company headquartered in Schaumburg, IL, near Chicago, advises clients on reasonable security throughout the US.