More than half security breaches enabled by issues simple to rectify through configuration With a Microsoft 365 security assessment you will gain immediate visibility on the security of your Microsoft 365 instance.

Verify your Microsoft 365 instance's alignment with both industry-adopted and our proprietary benchmarks. Ensure all relevant Microsoft 365 security and data protection mechanisms are configured and enforced. Assess the exposure of your organization to well-known Microsoft 365 threats.

Microsoft 365 security assessment options

Essentials modules (Plan 1)

• CIS Microsoft 365 + Orange Microsoft 365 Cyberdefense Benchmarks (205 security controls assessed)
• Microsoft 365 threat & risk assessment
• Multifactor authentication
• Conditional access strategy

Standard modules (Plan 2):

• Privileged access management
• Enterprise and 3rd party apps
• Mobile devices and mobile apps
• Emergency access
• Hybrid & federated identities infrastructure security
• Guest / external accounts
• VIP accounts strategy
• Password policies
• MS365 groups security
• Exchange Online and email security
• MS Teams security
• SharePoint Online & OneDrive security
• Defender for Endpoint
• Security auditing and logging
• Security monitoring and alerting
• Resilience capability
• Data residency profile
• Licensing strategy

Extended modules (Plan 3):

• Purview

Deliverables:

• Findings report
• Management summary
• Risk mitigation toolkit (raw source data, structured format)
• 90-minutes technical presentation
• 30-minutes executive presentation

Logistics & test criteria

• Read-only access required to tenant
• Performed 100% remotely
• 1 to 3 weeks depending on number of selected plans to cover in the assessament
• CIS Benchmark - Microsoft 365
• CIS Benchmark - Azure Foundations (IAM chapter)
• Orange Cyberdefense proprietary benchmarks