Home

Security, Privacy & Compliance

213 Conversations

Latest Activity

Custom List Message Item

EJ Bastien, Principal eDiscovery Program Manager in Microsoft's Litigation and Competition Law Group explains and demos how his team leverages Office 365 eDiscovery capabilities our eDiscovery process

 

 

Read More
728 Views
0 Reply

I've created a retention policy for Exchange mail only and for only one particular mailbox. The policy will delete any email older than 6 months. If I make it live, will it automatically apply that policy to every folder within the mailbox and start delet

... Read More
16 Views
1 Reply

Depends on the type of policy you created. If you simply published labels, it functions pretty much as personal tag, so yes the user can apply it to select folders, on de

... Read More

We have two Office 365 tenants that are 100% isolated from each other.  These two tenants have been in use for a couple of years.  Both have MFA enabled and App Passwords.  

 

Recently I've had a handful of users from the two tenants log in to the Portal to

... Read More
15 Views
0 Reply

I am trying to implement Office 365 DLP policy to prevent external sharing of documents in SharePoint based on the AIP Classification.  I can add a notification or block access for internally shared documents but the rule doesn't match when scope is set t

... Read More
36 Views
3 Replies

Give it some time. Not only SPO needs to index the item, but additional delay is added due to the DLP policy deployment. The SLA is supposedly 1h, but in my experience th

... Read More

I am working with labels as a replacement to retention in SharePoint Online. To meet the 17-4a SEC rule I need to enable preservation lock. There are different policies to meet for 5, 7, 10, Forever retention with delete after the date is reached. I dont

... Read More
46 Views
5 Replies

It's by design. Labels don't have the "lock" option, it's configured on the policy, and only when creating it.

I have been using Secure Score to analyze my tenant security.  In the area of mobile devices, I have signed up and have been using Intune.  Secure Score does not seem to properly recognize my Intune installation and pull the settings correctly.  In partic

... Read More
84 Views
3 Replies

Hi Daryl,

The "Enable mobile device management services" and other MDM settings are looking at the use of the Office 365 built in MDM funcationality not Intune.  We are c

... Read More

I was wondering is Secure Score being updated to use the new Azure AD portal security reports? At the moment these actions are recommended and most of them are from the old Azure AD portal

 

Review signs-ins after multiple failures report weekly (Being Reti

... Read More
26 Views
0 Reply

Our firm has PaaS and IaaS resources deployed on Azure. We're undergoing a security audit by a prospective client who has asked how often Microsoft's security team conducts penetration tests of Azure systems and when the last test was performed. I have fo

... Read More
195 Views
2 Replies

I would take a look at Microsoft Trust Center:

 

here is a link to multiple Azure compliance audit reports, including latest pen test:

 

https://www.microsoft.com/en-us/trustcenter/guidance/risk-assessment?downloadDocument=nli&documentId=0cdb9405-2ce8-4a2e-aa87-16e3decd453c#Audit-reports

Read More
Best Response

Hi there,

 

I've been using Secure Score for a few months now to test the security baseline and see how customers can get the most out of it.  However every Tuesday I do the weekly reports which for the last two weeks are not showing up on my score.  You ca

... Read More
570 Views
24 Replies

no one having the same problem or no one using Secure Score :)

Rather than deleting SharePoint Online sites, I move them to a subsite of a site collection called Archive where they can stay in three years until they are deleted. I want to leverage Retention Policies for this purpose so that sites are automatically de

... Read More
32 Views
0 Reply

I'm trying to roll out Office Message Encryption in EOL (E5 org).  Having a major problem in my testing with the ICD 9/10 Sensitive Info types catching WAY too much, not to mention the inability to combine and use logical (AND/OR) operators to be able to

... Read More
75 Views
2 Replies

After more digging and testing different scenarios I don't believe that the SCC is quite ready for this and the integration with the EOL DLP is not yet complete.  I'm hop

... Read More

Afaik it's only doable via the SCC. As to whether this is rolled out to the entire O365 population, support should be able to answer (or at least give you specific answer

... Read More

Hey community!

 

As I understand it, when we moved to the Monthly Quality Rollup model for updates, the was a plan to go back and add any updates previously released little by little to these Roll-ups.   I realize there are vast amounts of these updates t

... Read More
34 Views
0 Reply

Secure Score can now help stop data exfiltration with client created rules, that auto-forwards email from users mailboxes to an external email address.  This is apparently an increasingly common data leakage method that is being successfully used by 'bad

... Read More
136 Views
0 Reply

The journey to be a digital business is driving a technology evolution that requires integrated enterprise mobility management. How are you managing mobile devices and applications? Check out our post on MDM vs. MAM here.

Read More
82 Views
0 Reply

IoT early adopters must plan for integrated scalability even without prevalent cybersecurity standards in place. Is your company vulnerable to attack? Check out our post on IoT and mobile security here.

Read More
36 Views
0 Reply

My customer is concerned about licensed user logging in from home on the family computer, accessing the tenant, then closing the browser.  Another family user opens the browser,  opens some history, and sees all of the organizational data, SP sites, mail,

... Read More
157 Views
2 Replies

Good news - this feature is coming to O365 shortly for non-domain joined devices.  It will warn after x minutes and then log user off after y minutes.

Best Response

And how do you detect the "browser close" even from O365 side? :) Especially now, with Modern auth, pretty much all the authentication related traffic is "browser traffic

... Read More

Check out this new video from Yoann Mallet, which will help you choose the right gateway type with Advanced Threat Analytics (ATA). This is the most important decision to be made when deploying ATA. The video contains guidance on how to make that decision

... Read More
34 Views
0 Reply

Over the past 30 days we have been trying out Microsofts Cloud App Security service they recently aquired from Adallom. We had a breach incedent recently where rogue actors were able to gain access to one of our executives Office 365 Accounts. They used t

... Read More
99 Views
2 Replies

I'm curious, did you ever get this resolved to your satisfaction?

There's a great new blog post about how Azure Security Center (ASC) can automate the deployment of a web application firewall (WAF) to protect your servers:

 

https://azure.microsoft.com/en-us/blog/how-azure-security-center-helps-protect-your-servers-with-web-application-firewall/

... Read More
31 Views
0 Reply

How do you configure sharepoint to be GDPR compliant?

102 Views
1 Reply

That's an interesting question, I am not aware of any specific steps right now to take for GDPR compliance in SharePoint.  Saying that, here is some related information,

... Read More

Is there a way to view multipe customer tenant score in secure score?

 

We are an MSP with over a 100 tenants to manage

55 Views
1 Reply

Not out of the box that I aware of. It might be worth investigating the Office 365 Secure Score API which can help monitor and report on secure score in downstream report

... Read More
Best Response

Hi,

 

Has anyone had scenarios where:

 

e.g. You need to delete a contract one year after the contract termination date?

e.g. Delete specific OneDrive files (CV's for example) one year after the user has been removed form the tenant?

 

Is there a clever way to g

... Read More
32 Views
1 Reply

I doubt you will be able to implement such process without a human element. Best you can do is automate parts of it, for example a PowerShell script that disables/removes

... Read More

Is it possible to give view only rights to the "Reports" dashboard in the Security and Compliance Center?

 

2017-07-13 08_06_26-Microsoft Edge.png

Read More
46 Views
1 Reply

If you assign the "Security Reader" role in the SCC permission section to a user, he will be able to access a limited set of options, including the Reports.

 

And in case y

... Read More

The 'learn more' page explanation does not seem to fit my tennant.

When I go to 'launch now' then I do indeed get a list of active users, but how can I see the users that have not logged on recently? I downloaded the spreadsheet, but there is no 'last logg

... Read More
53 Views
1 Reply

The reports in the O365 Admin portal give you this information: https://portal.office.com/adminportal/home#/reportsUsage/LicenseActivity

Read More

Hi,

maybe someone else has noticed this one too. We have a SharePoint Online Teamsite with the organisation name in the URL as of when O365 was set up. Now we had to change the organisation name. Sure, I did not expect that site to be renamed, but apparent

... Read More
90 Views
3 Replies
We have the same issue...

I am really surprised no one else using SecureScore has renamed their company name and faced the same issue.

By the way, our score is still wrong and all the links to Laun

... Read More

Adding @Brandon Koeller, he should be able to answer.