5 Tips and Tricks to a More Secure Microsoft Cloud Setup

Written By Jordan Gall

If your organisation utilises the Microsoft Office 365 (O365) ecosystem in any capacity, do you recall the last time you performed a security audit on the system? Most companies make use of O365 for key technology services such as emails, document storage, and collaboration, yet believe that it’s safe and secure right out of the box. The fact is that, by default, many security policies are not enabled and require manual configuration to be enforced within your organisation.

Enter Microsoft Secure Score, a feature within Microsoft Office 365 that provides an overall measurement of your organisation’s security position and allows you to improve your security on the platform. The score varies depending on your setup, but is ranked by a percentage metric. The average score globally is 40%, indicating little actions have been taken to improve their environment, which is quite concerning. Below, we have listed the top 5 changes to make within the platform to enhance your online security.

1. Enforce Multi-Factor Authentication (MFA) for all users and administrators

Sadly, Microsoft admits that the standard implementation out-of-the-box doesn’t have complex security requirements. Enabling MFA is highly recommended and the number one item on our list of security enhancements.

2. Disable Legacy Authentication

By default, Microsoft Office still allows users to bypass the MFA policy by setting up their own app passwords. However, this should be disabled as it enables external parties to target your passwords and breach accounts.

3. Enable Audit Data Recording

Microsoft Office does log user actions, but only for a very short time frame until you enable the audit data policies which will keep logs of user actions indefinitely.

4. Enable User Sign-in Risk Policy

This policy will protect against password cracking and mitigate account breaches in your organisation. It is important to make sure that the organisation also has MFA enabled.

5. Do not expire passwords

It may seem odd but it is recommended that passwords don’t change. If you are changing passwords frequently, standard behaviour is to add another character at the end of the password. It is much better to choose a long, secure password and manage it via your password manager, changing it periodically as opposed to frequently.

Following these steps will have a notable impact on the security of your Microsoft Office environment. If you’d like to know more, don’t hesitate to get in touch.

Jordan Gall

Jordan Gall is a Technology Specialist with over a decade of successful experience enhancing companies use of technology. Jordan has a keen interest in all facets of technology, especially concerning cyber security, mitigating risk for organisations, and creating efficient processes to streamline the use of technology systems and services.

He personally enjoys a good tennis match but can also be found behind a drum kit trying to compose the latest hit rock song.

Previous

A Few Minutes with Our MD on the Cyber Essentials Scheme
Next

Your Digital Carbon Footprint (Yes, that’s actually a thing)