Office 365 (O365) Security Architecture Review/Azure

365 Azure

Security best practice reviews of your Azure/O365 environments

Problem: As many organizations have moved their business information and resources to the cloud using Azure and Microsoft Office 365 (O365), the transition also came with risk. The majority of companies have deployed Microsoft services with the default configurations. These configurations do not adhere to Microsoft and CIS published security best practices and will ultimately result in unintended access with reduced visibility and protection.

Recent studies show the risk sourced from these vulnerabilities:

  • 85% of organizations using Microsoft 365 experienced an email data breach in the last 12 months.^
  • A survey of 27 million users across 600 enterprises found that 71.4% of Microsoft 365 business users suffer at least one compromised account each month.*

Solution: Perform a security best practice review of your Azure/O365 environments with prioritized recommendations for hardening.

Security architecture reviews are non-disruptive studies that uncover systemic security issues. This specialty-focused review provides a comprehensive, expedient process to identify any risks in your working environment.

 

SCOPE OF ACTIVITIES

Azure security best practices review of:

  • Logging and monitoring
  • Policies
  • Authentication methods
  • Security center capabilities
  • Subscription configuration
  • Basic networking configuration of Azure
  • Events review

Office 365 security best practices review of:

  • Logging and monitoring
  • Policies
  • Authentication methods
  • Data management configuration
  • Mail auditing capabilities
  • Events review
  • Mobile device management

 

DELIVERABLES

Written report that includes findings and recommendations for security enhancements to the Azure and Office 365 instance.

Microsoft Office 365 Azure Security Architecture Review

 

 

 

 

Corresponding spreadsheet with all the checks and findings.

O365 Azure Security Architecture Review

 


KEEPING YOU INFORMED – HALOCK SECURITY BRIEFING FOR CLIENTS

The HALOCK Security Briefing is a review of significant events, trends, and movements that will influence how you manage cybersecurity, risk, and compliance. Our clients receive periodic overviews with an extensive report file on the topics discussed. This insightful document also includes reference links throughout the report for easy navigation and deeper research.

HALOCK, a trusted risk management and cybersecurity consulting company headquartered in Schaumburg, IL, near Chicago, advises clients on reasonable security throughout the US.

Contact Us