Get your Microsoft 365 & Azure Security Checkup

As a market leader in cloud infrastructure, Microsoft 365 and Azure promises a feature-rich and scalable platform for your business.

However, in the cyber-rush to the cloud, IT teams have a tendency to focus on the migration of your core apps and data, whilst overlooking the configuration of critical security measures. Features that transform your IT security posture from being a “soft-target” to secure, often require conscious configuration before their safeguards are assured.

Contrary to popular belief, migrating to a robust cloud platform like Microsoft 365 or Azure doesn’t automatically confer a “Microsoft-certified” security posture.

Multi-factor Authentication

Multi-factor authentication (MFA) once considered a “gold standard” in account security, is now the bare minimum. If your business relies merely on passwords for security, you’re vulnerable to be being compromised.

Whilst enabling Multi-Factor Authentication means your business is 99% less likely to be compromised, it is not uncommon to find business leaders who are convinced that MFA is enabled only to find that more than 50% of user accounts (ex-staff, contractors, board members, etc.) remain unsecured

Legacy Protocols

Microsoft’s historical approach was to leave all functionality enabled, by default. This includes outdated protocols, which cannot be secured by MFA. These protocols represent a critical vulnerability in your company’s security perimeter. The facts are worrying:

  • > 99% of password spray attacks exploit legacy authentication.
  • > 97% of credential stuffing attacks, target legacy protocols.
  • organisations that disable legacy protocols suffer 67% fewer successful attacks than those that don’t.

3rd Party Risks & Delegated Admin

In this cloud-driven world, your technology partners might be your biggest risk. Your IT partner probably has global admin rights, allowing them to modify and access anything within your Microsoft cloud (without your knowledge).

Moreover, if you’ve switched IT providers, it’s often the case that an incumbent will retain access to your tenant unless explicitly removed. Many businesses are amazed to discover the sheer number of external parties who have access. This figure can reach to hundreds and possibly even thousands of 3rd party personnel.

These risks are just the tip of the iceberg. The average business using Microsoft 365 and Azure also hasn’t:

  • audited their password security, disabling departed users and re-permissioning over-privileged accounts;
  • engaged Microsoft Advanced Threat Protection, Cloud App Security or Azure Security Center;
  • implemented essential brand reputation protections like DMARC, SPF and DKIM for their corporate domain;
  • hardened their tenant against the most common network exploits; or
  • reviewed their Microsoft Secure Score and taken conscious steps to improve it.

HELP SECURE MY ESTATE

The average Microsoft Secure Score for M365 tenants is 44% out of 100%

 

Benefits of a Microsoft Cloud Security Checkup

  • Mitigate the risk should current IT support lack the necessary cloud security credentials.
  • Build confidence that hackers need overcome multiple security mechanisms before getting access.
  • Minimise the lost productivity and downtime that follows a cyber-attack.
  • Mitigate the risk should current IT support lack the necessary cloud security credentials.
  • Build confidence that hackers need overcome multiple security mechanisms before getting access.
  • Minimise the lost productivity and downtime that follows a cyber-attack.