Microsoft 365 Security: 8-days Assessment services

Preparation Phase (Remote) • Coordination calls • Microsoft 365 tenant security check

Workshops (1 PD, on-site or remote) • ACTUAL state - Security overview of the customer’s IT landscape • Overview of the Security & Compliance functions in the Microsoft 365 and Office 365 environment • Explanations of each tool and function for Identity, Client, Data and Application protection (Azure Conditional Access, Multi-Factored Authentication , Office 365 DLP, Defender for Identity, Azure Information Protection, Identity Protection, PIM, PAM, Message Encryption OME, Microsoft Cloud App Security, eDiscovery, Customer Key, Sentinel, implementation of Intune, BYOK/HYOK) • Security Dashboards - Centralized Security Management, Monitoring and Reporting • Microsoft services to be sensibly integrated into system landscape (and the security tools already implemented) • Compliance topics "How secure is my cloud provider?" • Managing Shadow IT • Cloud app security (hybrid, including on-premises applications) • Identity management (typical scenarios) • Presentation of a possible security administration concept (cloud, on-prem, hybrid) including RBAC and following the “just in time” and “just enough admin” principles, access to audits and log analytics • Security concept to separate different work spaces (information barriers, conditional access, …) • Office 365 Data Backup, disaster recovery in an SaaS system • Licenses - contents, comparison Microsoft 365 / Office 365 E3-E5 • Security & Compliance in the role of the provider Microsoft • Discussion about the existing situation based on the analysis and preparation of a possible Security RoadMap

Documentation and rework (2 PDs, remote) • Documentation of the workshop and discussions of the results

Deliverable • Monitoring and live reporting as available with Microsoft Azure dashboards based on the Azure Log Analytics center. • Recommendations to close security gaps and increase maturity report