Security Foundations Identity

Did you know that 70% of cybercrime victims are small and medium businesses? Similar to protecting your physical assets, cybersecurity measures are like putting a gate around your property (email protection), placing a smart lock at your front door (identity protection), and placing a geotag on your valuables (data protection).

This engagement will focus on your identity and access security, one of the foundations of cybersecurity in any organization. Cyber criminals often seek ways to legitimately login to your systems which is much easier than going to the trouble of hacking in. Once they’ve gained entry, they can lurk undetected for months slowly siphoning off your confidential data. By preventing unauthorized login attempts, you can fend off most cybercrime identity attacks.

ProServeIT can help you evaluate if your identity security framework is using industry best practices and streamlined security controls. This engagement will evaluate the identity security risks within your Microsoft tenant and apply the appropriate security controls to mitigate against the most common identity-based vulnerabilities and attacks.

We will conduct an audit of your Microsoft tenant against baseline security standards and fortify your identity security by implementing identity and access management controls such as the following:

• Disable Security Defaults in Microsoft Entra ID.
• Disable the legacy 'Per-user Multifactor Authentication' and migrate the MFA configuration to Conditional Access.
• Create a Conditional Access Policy to enable Multifactor Authentication for all users, for users in administrative roles, and for guest access.
• Configure the Microsoft Authenticator application to protect against MFA fatigue.
• Configure a Conditional Access policy for Geo-Location based access and ensure that risky countries are explicitly blocked from accessing your Microsoft tenant.
• Configure Self-Service Password Reset.
• Configure a custom banned passwords list and integrate the banned password list with the local Active Directory where needed.
• Ensure that only administrators are allowed to consent to third-party applications within Entra ID.
• Create Conditional Access policies to block legacy authentication (IMAP, POP, Authenticated SMTP). If Authenticated SMTP is needed, configure trusted named locations to restrict permitted access.
• Configure the option to remain signed in so that it becomes hidden.
• Restrict non-admin users from creating tenants tied to your domains.

Upon completion, you will have improved identity and access security within your Microsoft tenant and gained protection again the most common identity-based cyber-attacks.

Price may vary depending on the complexity and scope of your engagement.