Microsoft 365 Security Assessment Features
Proactively strengthen your organization’s M365 email and collaboration security defenses with Kroll’s unique frontline insight. The Kroll methodology focuses on M365 security hardening aimed at improving your organization’s resilience against the cyber kill chain, including identity and access management practices, messaging and collaboration advance threat protection, workstation defenses and conditional access policies.
Kroll experts deliver a prioritized set of specific remediation recommendations to establish a secure email and cloud configuration baseline for your organization. This involves remotely reviewing your M365 configuration and security defenses to identify proactive measures and controls that will reduce the likelihood of cloud- and email-based attacks. The assessment includes a review of one M365 asset and focuses on the baseline configuration and security hardening for each service, including:
- Entra ID security settings to restrict unauthorized access
- Exchange Online (Messaging) secure configurations
- SharePoint and OneDrive secure configurations
- Microsoft Teams
- Endpoint Manager/Intune secure configurations
- M365, Azure Active Directory, and Security License review and assignments
- Activity logging, alerting and auditing configurations
When Implemented: Third-party integrated IAM and Email Security Service hardening best practices, Email Security Services (e.g., Proofpoint, Mimecast, etc.) and IAM services (e.g., Okta, Duo Security)
Kroll will also conduct interviews to assess your cloud environment’s use-case and secondary defensive measures and practices to protect your organization against cloud- and email-based threats, including but not limited to:
- Endpoint security
- User security awareness and training
- Incident response
- Backup and recovery
- Business processes related to email authorization of payments
Kroll experts will deliver actionable insights and next steps through two reports:
Executive Summary Report – A summary report outlining the project's scope, any critical risks identified, and insight into how your configuration aligns with benchmarks and best practices from Microsoft and the Center for Internet Security
Technical Details Report – A prioritized set of specific remediation recommendations to advance how you manage your email security program. This includes a detailed technical report to support technology teams with tactical remediation recommendations, covering identified weaknesses, implementation priority and implementation guidance.
