Frank Marano
Associate Managing Director
Cyber Risk
Secaucus
Microsoft 365 Security Assessment
Fortify your defenses and maximize your technology investment with a Microsoft 365 security assessment from Kroll.
Talk to an ExpertReduce Your Microsoft 365 Attack Surface
More than a million organizations around the world rely on Microsoft 365 for enhanced productivity and collaboration via the cloud. However, this popularity has resulted in a sharp rise in business email compromise (BEC) attacks on M365 estates, alongside other associated security threats. Ineffective implementation and management of M365 could put your organization at significant risk. Fortify your defenses with a Microsoft 365 security assessment delivered by Kroll experts.
Whether it is strengthening your M365 email or configuration, our assessments uncover weaknesses and identify proactive steps your organization can take to get the best from Microsoft 365 without compromising your security. Kroll specialists work extensively within the M365 environment every day and are cross-trained in incident response, penetration testing and risk assessments. Our Microsoft 365 security assessments are directly informed by insights gained through our status as the world’s No. 1 incident response provider and our experience of investigating Microsoft 365 security incidents of all sizes, types and complexities. Kroll’s continuously updated M365 security knowledge ensures that your assessment is closely aligned with the dynamic Microsoft environment and the constantly evolving threat landscape.
Our security assessments are carefully scoped and structured to secure the entire M365 suite, including Entra ID, Teams, SharePoint, OneDrive and Intune. The assessments will cover key elements of your M365 estate, including access control, identity management, and encryption, as well as third-party IAM solutions, such as Okta, Duo, OneLogin and email security gateways, such as Mimecast and Proofpoint.
The Benefits of an M365 Security Assessment
Reduce your organization’s Microsoft 365 security risks with a security assessment from Kroll.
Uncover Vulnerabilities
Gain strategic insight into weaknesses in your M365 estate, with actionable steps to address them.
Advance Defenses
Strengthen your long-term defenses against BEC attacks and other threats that could impact your Microsoft 365 security.
Boost Resilience
Reduce and mitigate M365 misconfigurations that could leave your organization vulnerable to attack.
Improve Planning
Benefit from proven M365 security expertise to create a scalable cloud security action plan aligned with your priorities.
Microsoft 365 Security Assessment Features
Proactively strengthen your organization’s M365 email and collaboration security defenses with Kroll’s unique frontline insight. The Kroll methodology focuses on M365 security hardening aimed at improving your organization’s resilience against the cyber kill chain, including identity and access management practices, messaging and collaboration advance threat protection, workstation defenses and conditional access policies.
Kroll experts deliver a prioritized set of specific remediation recommendations to establish a secure email and cloud configuration baseline for your organization. This involves remotely reviewing your M365 configuration and security defenses to identify proactive measures and controls that will reduce the likelihood of cloud- and email-based attacks. The assessment includes a review of one M365 asset and focuses on the baseline configuration and security hardening for each service, including:
- Entra ID security settings to restrict unauthorized access
- Exchange Online (Messaging) secure configurations
- SharePoint and OneDrive secure configurations
- Microsoft Teams
- Endpoint Manager/Intune secure configurations
- M365, Azure Active Directory, and Security License review and assignments
- Activity logging, alerting and auditing configurations
When Implemented: Third-party integrated IAM and Email Security Service hardening best practices, Email Security Services (e.g., Proofpoint, Mimecast, etc.) and IAM services (e.g., Okta, Duo Security)
Kroll will also conduct interviews to assess your cloud environment’s use-case and secondary defensive measures and practices to protect your organization against cloud- and email-based threats, including but not limited to:
- Endpoint security
- User security awareness and training
- Incident response
- Backup and recovery
- Business processes related to email authorization of payments
Kroll experts will deliver actionable insights and next steps through two reports:
Executive Summary Report – A summary report outlining the project's scope, any critical risks identified, and insight into how your configuration aligns with benchmarks and best practices from Microsoft and the Center for Internet Security
Technical Details Report – A prioritized set of specific remediation recommendations to advance how you manage your email security program. This includes a detailed technical report to support technology teams with tactical remediation recommendations, covering identified weaknesses, implementation priority and implementation guidance.
Talk to a Kroll Expert
Kroll is ready to help, 24x7. Use the links on this page to explore our services further or speak to a Kroll expert today via our 24x7 cyber hotlines or our contact page.
Connect With Us
MDR for Microsoft 365
Immediately elevate your Office 365 security with 24x7 monitoring, analysis, and automated response using Kroll Responder for Office 365. Detect and respond to threats targeting email, Sharepoint, and third-party plugins leveraging frontline threat intelligence.
Cyber Risk Assessments
Kroll's cyber risk assessments deliver actionable recommendations to improve security, using industry best practices & the best technology available.
Cloud Security Services
Kroll’s multi-layered approach to cloud security consulting services merges our industry-leading team of AWS and Azure-certified architects, cloud security experts and unrivalled incident expertise.
Cloud Penetration Testing Services
Kroll’s team of certified cloud pen testers uncover vulnerabilities in your cloud environment and apps before they can be compromised by threat actors.
Penetration Testing Services
Validate your cyber defenses against real-world threats. Kroll’s world-class penetration testing services bring together front-line threat intelligence, thousands of hours of cyber security assessments completed each year and a team of certified cyber experts — the foundation for our sophisticated and scalable approach.
Explore Insights
Threat Intelligence
Threat Intelligence
TODDLERSHARK: ScreenConnect Vulnerability Exploited to Deploy BABYSHARK Variant
March 5, 2024
by Keith Wojcieszek, George Glass, Dave Truman
Threat Intelligence
What is Continuous Threat Exposure Management?
March 5, 2024
Threat Intelligence
Q4 2023 Cyber Threat Landscape Report: Threat Actors Breach the Outer Limits
February 21, 2024
by Laurie Iacono, Keith Wojcieszek, George Glass
Cyber
Data Breach Outlook: Finance Surpasses Healthcare as Most Breached Industry in 2023
February 7, 2024
by David White
Events
Cyber
Cyber
Kroll at RSA Conference 2024
May 6 - 9, 2024|Conference
Join Kroll experts at the RSA Conference in San Francisco May 6-9, 2024. Stop by booth 2239 in the South Expo Hall to meet our team.
Threat Intelligence
Q1 2024 Cyber Threat Landscape Virtual Briefing
May 29, 2024|Online
Join the Q1 2024 Cyber Threat Landscape Virtual Briefing as Kroll’s cyber threat analysts outline notable trends and insights from our incident response intelligence.
Kroll is headquartered in New York with offices around the world.
55 East 52nd Street 17 Fl
New York NY 10055
Sign up to receive periodic news, reports, and invitations from Kroll.
Our privacy policy describes how your data will be processed.
© 2024 Kroll, LLC. All rights reserved.
Kroll is not affiliated with Kroll Bond Rating Agency,
Kroll OnTrack Inc. or their affiliated businesses. Read more.