Forum Discussion
Secure score portal and wrong readings
Hi Steve,
Thanks for the message.
So basically any control at the moment marked as [Not Scored] means we have not implemented that controls data stream yet. We have a large backlog list of controls we are adding, given the sheer number of controls we had to be quite specific in what ones we did first. Now we are busy going through the rest of the [Not Scored]. Each time we do make an addition it will be added to the Dashboard annoucment widget.
As for the "Strong Outbound Spam" score fluctuating, this was a bug in the datastream job, when the data aggregator ran each evening, if the data stream for a control happended to be offline for maintenance etc, it would get a zero score, then the moment it came online, it would get scored again, giving the appearance of a bouncing score. This was a bug and the code has just been checked in to fix this behaviour. Now if a stream is offline, the backend code will keep the previous score for that control and not relcalculate.
Glad you like the idea, it will only get better as we work out some of the early snags, really appreciate your input.
Stu
We have the same issue with our Office 365 tenant. We have performed may of the suggested security improvements, but many of the entries in the Secure Score site say [Not Scored]. We have another entry for "Strong Outbound Spam" policy that toggles back and forth. We have an outbound spam policy in place, but some days it doesn't get seen so our score drops 15 points. Then a few days later, it gets seen and the score comes up 15 points. This pattern has repeated for several weeks. We haven't made any changes to the Outbound Spam settings.
The Secure Score seems like a great idea. I wish the scoring worked reliably and predictably.
Steve
Stu ClarkMicrosoft
Hi Steve,
Thanks for the message.
So basically any control at the moment marked as [Not Scored] means we have not implemented that controls data stream yet. We have a large backlog list of controls we are adding, given the sheer number of controls we had to be quite specific in what ones we did first. Now we are busy going through the rest of the [Not Scored]. Each time we do make an addition it will be added to the Dashboard annoucment widget.
As for the "Strong Outbound Spam" score fluctuating, this was a bug in the datastream job, when the data aggregator ran each evening, if the data stream for a control happended to be offline for maintenance etc, it would get a zero score, then the moment it came online, it would get scored again, giving the appearance of a bouncing score. This was a bug and the code has just been checked in to fix this behaviour. Now if a stream is offline, the backend code will keep the previous score for that control and not relcalculate.
Glad you like the idea, it will only get better as we work out some of the early snags, really appreciate your input.
Stu
We are working on increasing our Secure Score and find that we have enabled items that are not being scored for more than a few days.
Enable Data Loss Prevention policies
Configure expiration time for external sharing linksAnother issues is with
Enable mailbox auditing for all users
The number fluctuates every time we add new users. Since this requires Owner Activity to get a score our number goes up and down constantly. Can this be weighted? Otherwise I have to check every couple days and re-run the powershell command to enable for the new users.
Thanks,
Denise
My test tenant has consistent issues with scores not appearing to be correct. Like your case, we enabled mailbox auditing days ago, but the score doen't update to reflect that change.
Same thing for third party integrations. It is turned off, and has been for two weeks or so. No change.
I love the idea, but right now this scoring seems very inconsistent.
