Why do this
Security issues in Microsoft 365 are rarely caused by one thing - they usually build up over time.
We typically see environments where:
- controls were set up at one point but haven’t kept up with changes
- new features were enabled without revisiting security settings
- access and permissions have expanded over time
- security standards have evolved, but the environment hasn’t been revisited
Running a baseline gives you a clear picture of where things stand today and what’s worth addressing.
What we do
We run a focused baseline assessment against industry-standard security practices (aligned to CISA / federal guidelines), and walk you through what we find.
- Baseline your tenant against security best practices
- Provide a clear view of your current security posture
- Identify gaps and risks
- Deliver a practical, prioritized remediation roadmap
- Estimate effort to address issues
- Highlight where you may be over or under licensed
- Highlight where you may be over or under licensed
What we review
We look across the core parts of your Microsoft environment:
- Azure Active Directory (identity and access)
- Microsoft Defender
- Exchange Online
- SharePoint and OneDrive
- Teams
- Power Platform
- Azure security and logging foundations (where applicable)
What we typically find
These are common across most environments:
- Legacy authentication still enabled
- MFA not fully enforced or hardened
- Conditional access policies inconsistent or incomplete
- External mail forwarding enabled
- SharePoint / OneDrive sharing too open
- Too many admin accounts or permissions
- Teams guest access not controlled
- Third-party app access granted without oversight
Common across most environments - and typically where we end up focusing improvements.
What you get
- A clear view of your current security
- A breakdown of gaps and risks across your environments
- A prioritized list of what's worth fixing (and what isn't)
- A practical roadmap, including effort and trade-offs.
Most clients end up with a number of clear issues worth addressing - and a straightforward plan to deal with them.
How it works
- We connect to your Microsoft 365 and run the baseline checks
- We go through those results with you - focusing on what actually matters
- We identify what's worth addressing, and how to approach it
We can then help implement the changes, or work with your team to address them, depending on how you want to move forward. We can also provide this as an ongoing monitoring and managed service.