Office 365, a group of subscriptions created by Microsoft that provide productivity software and related services, is used by thousands of businesses across the nation. There is a wide array of security-enhancing features that can be implemented when using Office 365 products; however, the majority of them must be manually activated by the user. Here, the data security experts at Atlantic Data Forensics detail some of the security features available through Office 365.
Multi-Factor Authentication (MFA)
Multi-factor authentication allows for enhanced security by requiring the user to use a code—sent to them via phone call, text message or app notification—as well as their password to access their Office 365 account. This two-phase authentication system ensures a user is still protected even if their password becomes compromised: The Office 365 system will not accept only a password when MFA is activated. Instead, the system will require both components of authentication. Should the device that receives the second-layer code for authentication become compromised, contact the Office 365 support team.
Office 365 Cloud App Security
With Cloud App Security through Office 365, your business can quickly track anomalous activity, ensuring risks are effectively managed. Set up alerts based on the needs of your business so that admins may review unusual or risky user activity, such as multiple failed sign-in attempts, sign-ins from unknown or dangerous IP addresses or data downloads that are unusually large. Businesses that have purchased an Office 365 Enterprise E5 plan will be able to implement Office 365 Cloud App Security immediately—for those with different enterprise plans, Cloud App Security can be purchased as an add-on.
Mailbox Audit Logging
While some audit logging is automatically activated upon your purchase of an Office 365 subscription, mailbox audit logging must be manually activated by the user. Mailbox audit logging can be activated through the Exchange Online PowerShell—you can learn more about this feature here.
Mailbox audit logging allows you to search the audit log in the Office 365 Security & Compliance center to determine who has logged into user’s mailboxes, sent or deleted messages and more. This feature can be particularly valuable for companies who suspect an internal threat.
Secure Mail Flow and Data Loss Prevention (DLP)
Emails can be a hotspot for malware, viruses and malicious URLs. Mitigate these risks by activating the rich feature set in Exchange Online Protection, which will allow you to gain greater assurance about the identity of a sender and protect against spam, malware and phishing attempts.
The data loss prevention (DLP) feature allows admins to identify sensitive data and implement policies that help to mitigate the risk of this data being shared in inappropriate ways, whether accidentally or intentionally. For convenience and ease of use, DLP works across all Office 365 components, including Exchange Online, SharePoint Online and OneDrive.
Office 365 Secure Score and Atlantic Data Forensics’ Pledge to Their Clients
Ready to enhance the security of your company’s data, but unsure of the current state of your security implementation? Office 365 provides a “secure score” that allows users to see which features they have activated, and how they may further enhance their security through the use of additional features. For any business with concerns about data breaches, malware, phishing scams and more, the security features provided by Office 365 are an invaluable resource and tool to mitigate the risks of working digitally.
The data security experts at Atlantic Data Forensics are committed to providing useful tips and advice for ensuring data security to businesses across the country. If your business wishes to learn more about how to protect company data, or has reason to believe that company data may have been compromised, contact us immediately to schedule a consultation.