Making users secure and productive at the same time is a challenge many IT face. With remote work, traditional security layers like working on a trusted network or trusted device are going away. Some of these attacks involve sending malicious Office documents (e.g. containing macros) to unsuspecting users and social engineering them to enable these macros to achieve compromise. It becomes more important to meet the user where they are and offer always advancing security, without affecting their productivity. Attackers are taking advantage of these uncertain times and shift in how and where users work to step up attacks. In this session, we will cover how Microsoft 365 Apps can keep your users both productive and secure no matter where they are. We will walk through layers of defenses starting with security mitigations that are available out the box to mitigations you can configure intelligently that protect users against popular attack techniques.