Threat Protection Assessment & Zero Trust Architecture

Emerging applications (such as AI), evolving regulations, new markets, remote access, and security breaches are all driving Security Leaders to manage new vulnerabilities faster. BDO delivers insights into workplace vulnerabilities and offers a roadmap grounded in Zero Trust principles for rapid improvement and rebuilding.

BDO’s Threat Protection Assessment & Zero Trust Architecture incudes:

• Operations Effectiveness. Address gaps in your security telemetry, and how to make the data you have more useful
• Zero Trust Architecture. A workplace security service architecture. Learn where you can simplify and consolidate your tools to eliminate inefficiencies, close critical security gaps with cloud-native solutions and strengthen your defenses by unifying on Microsoft’s first-party stack. Service architecture details include:
  • Network Controls. Enhance secure hybrid access through traffic segmentation, filtering and adaptive access
  • Identity and Access. Ensure user-friendly, least privileged, just-in-time access with "no standing administrative access" using Multi-factor Authentication, Conditional Access & other Zero Trust services
  • Endpoint Management. Risk-based, adaptive access controls for nominal, hybrid and remote scenarios
  • Collaboration Data Protection. Control planes to enhance protection of your unstructured data across locations
• Identity and Device Threat Protections. BDO will build a vulnerability and issues report and then help you identify priorities for remediations based on your current initiatives.

Our typical assessments run from 3-7 weeks. BDO will deliver: 

1. Customized Zero Trust Architecture and Roadmap. Starting with Microsoft’s Zero Trust model, BDO will work with you to build your customized version, identify where to start and how to sequence the major milestones for adoption over time.
2. Threat Protection Assessment Report. BDO will curate and present the identity and device assessment findings to align with your risk profile, regulatory needs and future business plans.
3. Engagement Framework. Using Microsoft’s Zero Trust Assessment Tool, BDO will:
   1. Provide a simple, clear request for discovery information, making it easy and efficient to get started
   2. Review your posture using Microsoft’s structured framework
   3. Provide a high-level "walking deck" for executive decision support
   4. Support you with business case inputs as you build consensus internally on next steps

Pricing will vary based on the scope of the engagement.

BDO's service supports an extensive list of 3rd party products, and at a minimum:

• Microsoft Defender XDR, including
  • Unified Security Operations platform
  • Defender for Endpoint
  • Defender for Office
  • Defender Threat Intelligence
• Microsoft Entra Permissions Management

Clients will typically need:

• Trial or licensed elements of Microsoft Entra Permissions Manager & Defender XDR

BDO brings the right blend of tools, automation, processes and value. With the strength of BDO's broader capabilities, we can enhance your efforts with extended services such as:

• Advanced Identity scenarios, e.g., Active Directory, External Identities, Global Secure Access, ID Governance, Identity Detection & Response (ITDR)
• Advanced Endpoint Management scenarios, e.g., Microsoft Intune, PKI, IoT, vulnerability management, external attack surface management
• Advanced Data Security scenarios, e.g., data discovery, governance and rights management using Microsoft Purview
• License procurement with improved support & optimization through Microsoft’s Cloud Solution Provider (CSP) program
• Risk Management based on regulatory and industry frameworks
• Azure, Microsoft 365 and Purview Managed Services
• CISO workshop for Zero Trust, and other training

Why choose BDO?
Drawing on over 60 years of advisory and forensics experience, BDO is uniquely capable of fusing business and security needs. As a prominent business and Microsoft Partner, BDO gives you peace of mind knowing that you’re working with a partner who offers complete, tailored solutions and end-to-end support including CSP and managed services.

Click the “Contact me” button to learn more.