Beginning of this year in RSA Microsoft announced launching Insider Risk Management solution. I thought I should share some information if you were not aware of it. Insider risk management is a solution in Microsoft 365 that helps minimize internal risks by enabling you to detect, investigate, and take action on risky activities in yourContinue reading "Insider risk management in Microsoft 365"

Defense in Depth as we all know, multiple layers of security controls placed for protection, did you know about Microsoft EM+S Defense in Depth capabilities? Microsoft Enterprise Mobility + Security has defensive rings: Azure Active Directory (Azure AD) Identity Protection Security Reports, like watchmen in the towers, allow you to see configuration vulnerabilities, which areContinue reading "Defense in Depth Microsoft Enterprise Mobility + Security Advanced protection capabilities"

ORCA (The Office 365 ATP Recommended Configuration Analyzer) Microsoft released a tool last year to run against your tenant to make sure EOP and Office 365 ATP is configured correct and follows the new best practices. This tool is called ORCA (The Office 365 ATP Recommended Configuration Analyzer). ORCA is a project to help OfficeContinue reading "The Office 365 ATP Recommended Configuration Analyzer (ORCA)"

Microsoft understands that cybersecurity is complicated. Microsoft security experts have prepared this document to provide guidance on best practices for infrastructure security and to help organizations better understand potential threats to their infrastructure. This document includes guidance to help a variety of organizations proactively address cybersecurity protections and secure systems commonly targeted by malicious actors.Continue reading "Defending Infrastructure – Cybersecurity Threats and Best Practices"

The infrastructure, data, and apps built and run in the cloud are the foundational building blocks for a modern business. No matter where you are in your cloud journey, you likely utilize every layer of the cloud—from infrastructure as a service (IaaS) to platform as a service (PaaS) to software as a service (SaaS). YouContinue reading "Microsoft Cloud Security for Enterprise Architects"

Did you know about Self Service Group Management which is part of Azure Active Directory Premium Plan 1 or EM+S E3? By using the self-service group management features, the day-to-day control of group membership can be delegated to people in the business who understand the business context for that membership. The SSGM Access Panel alreadyContinue reading "Microsoft Azure AD Self Service Group Management SSGM"