Microsoft 365 Security Hardening: 2-day Workshop

Malicious attempts aimed at organizations for breaching their information systems are nowadays a daily threat, targeting also cloud services. To prevent security breaches, each organization should have a security plan to develop information system capabilities according to their individual security policies. In Microsoft 365, security is organized in a shared responsibility model. While Microsoft is responsible for the security of the infrastructure, client organizations are largely responsible for the security of their own service environment in the cloud. Therefore organizations should invest in a comprehensive security plan to protect their cloud environment. Advania's Microsoft 365 Security Hardening is a 2-day assessment workshop which goal is to produce a security plan for client´s individual Microsoft 365 -environment. During the workshop, Advania provides comprehensive view to the security principles and technologies of Microsoft 365. To evaluate client's current Microsoft 365 security posture, security practices and implementation are assessed by interviews and analyzing the data collected from existing cloud infrastructure. By combining the modern tools, baseline policies and assessed findings, a security plan is created for the client. Workshop outline:

- Day 1: Walk-through of the client's cloud environment, existing security policies and installation of the tools used for assessment data collection
- Assessment stage: Between the workshop days, Advania's subject matter experts prepare the security plan based on the collected data.
- Day 2: Presentation and review of the assessment findings, report and the security plan After the workshop, the client receives the security plan for the organization's use. The security plan contains: - assessment of cybersecurity maturity level - findings and categorization of security risks based on severity - recommendations to enhance security resilience - suggested roadmap for improvements