As you may know, the Office 365 Secure Score is an indication of how secure your current Office 365 environment is compared to the possible level of security that you can achieve with native features. If your score isn’t as high as you’d like it to be, there are a few things you can do to increase your Office 365 security, which in turn raises your Secure Score. Though having a perfect Secure Score doesn’t mean your organization can’t be breached, you can mitigate the risk of security breaches considerably by implementing the following steps:
Enable Exchange Online auditing for all users.
Disable mail forwarding to external email addresses.
Review audit data, and report on malware detection and mailbox access by non-owners.
Enable multi-factor authentication for Azure AD privileged roles and users.
Configure non-global administrative roles.
Although these steps can be implemented using Office 365’s native tool, it isn’t a comprehensive security solution. Using the Office 365 Security and Compliance Center to ensure comprehensive security for your Office 365 setup is limited due to the following drawbacks:
- Logs are only stored for 90 days
- Audit logs are hard to download and search through
- Administrator roles aren’t customizable
- There’s a lack of multi-tenant functions