Security Action Plan and Secure Score
Microsoft have put a lot of effort in to improving the security of Office 365 tenants, but the onus is on the end user to implement the changes.
Office 365 tenants now receive a security score that provides a numerical indication of the security level for your implementation. This score is accessed from within the Security and Compliance Centre.
The maximum score varies but is typically between 700 and 800 and we will often see companies score between 50 and 100 and the average is only 37 which shows how much work is required. There is a law of diminishing returns within this system that means once the low hanging fruit has been picked it becomes increasingly more difficult and expensive to improve the score.
Microsoft provide a useful comparison with similar sized companies so that you can judge how you are doing. In the example below we can see that the Secure Score for this tenant is much higher than the average for similar sized and industry companies. We can see from the average score of 37 this tenant is at a much higher level but can still be improved.
A detailed action plan is given by Microsoft; however, this is not a simple tick box exercise, it does require a high level of knowledge to implement some of these changes.
With such a long check list in the Secure Score it will not be an instant fix, and some of the actions we would recommend are outside of the Office 365 tenant. A good starting point of actions are listed below:
If you unsure on how to implement these changes then call us on 02392 482556 and let us help you with these tasks.