O365: Security Baseline Office 365 Initial Security (depends on your O365 implementation) 1.
Check Secure Score : Office 365 Secure Score analyzes your Office 365 organization's security based on your regular activities and security settings and assigns a score. Begin by taking note of your current score. Adjusting some tenant-wide settings will increase your score. The goal is not to achieve the max score, but to be aware of opportunities to protect your environment that do not negatively affect productivity for your users. 2. Turn on audit logging: Need to find if a user viewed a specific document or purged an item from their mailbox? If so, you can use the Office 365 Security & Compliance Center to search the unified audit log to view user and administrator activity in your Office 365 organization. Why a unified audit log? Because you can search for the following types of user and admin activity in Office 365: a) User activity in SharePoint Online and OneDrive for Business b) User activity in Exchange Online (Exchange mailbox audit logging) Configure tenant security: Tune threat management policies in the Office 365 Security & Compliance Center 3. Connect Cloud App Security: Cloud App Security supports the following Office 365 apps: a) Office 365 b) SharePoint c) OneDrive d) Teams (only appears after activities from Teams are detected in the portal) e) PowerBI (only appears after activities from PowerBI are detected in the portal, and requires you to turn on auditing) f) Exchange (only appears after activities from Exchange are detected in the portal, and requires you to turn on auditing) 4. Enable Azure AD Identity Protection: Azure Active Directory Identity Protection is a capability of Azure Active Directory (Azure AD). With Azure AD Identity Protection, you are able to:
a) Get a consolidated view of flagged users and risk events detected using machine learning algorithms b) Set risk-based Conditional Access policies to automatically protect your users c) Improve security posture by acting on vulnerabilities
5. Secure SharePoint sites and files: 3 Tiers of protection: a) Baseline protection b) Sensitive protection c) Highly confidential protection 6. Enable a data governance policy: Data governance is all about keeping your data around when you need it and getting rid of it when you don't. With data governance in Office 365, you can manage the full content lifecycle, from importing and storing data at the beginning, to creating policies that retain and then permanently delete content at the end.
Integrity IT | 3080 Harrodsburg Rd, Ste 104 | Lexington, KY 40503 | 859-253-4284 | www.integrityky.com