M365 security audit

Microsoft 365 (M365) is a cloud platform from Microsoft that provides applications such as Outlook, Teams, SharePoint, and OneDrive. M365 is an attractive target for attackers because business-critical data is often stored there. Unauthorized access to a user account can also be the first step in a longer attack chain against the company. Since M365 is accessible via the internet, it is particularly exposed. A particularly security-critical role is played by identity and access management via Entra ID (formerly Azure AD).

Why M365 security audits

s
Our key reasons for M365 security audits:

  • Reviewing an M365 tenant’s configuration for security-relevant settings and implementing common best practices
  • This includes, for example, user and sign-in security, email security, monitoring and alert settings, overly broad read permissions for user groups, and email forwarding to private addresses

When to perform M365 security audits

In our view, the best times are:

  • As part of the rollout
  • After relevant changes
  • At regular intervals, as the platform is continuously evolving

Results

i
Typical results of an M365 security audit include:

  • Recommendations for improving security-relevant configuration, including a description of issues and risks
  • Covers the following portals in M365/Azure: Admin, Entra ID, Security, Compliance / Purview, Teams, Exchange, Intune, SharePoint, Defender, Azure

What we need from you

For the M365 security audit, we need from you:

  • Access to your M365 tenant with read-only administrative permissions

Book a free initial consultation now

Whether it’s a pentest, red teaming, or “something in between”—
we look forward to talking to you!

Contact
Configurator