{"id":38761,"date":"2020-12-17T21:00:56","date_gmt":"2020-12-17T21:00:56","guid":{"rendered":"https:\/\/www.microsoft.com\/security\/blog\/?p=92407"},"modified":"2020-12-17T21:00:56","modified_gmt":"2020-12-17T21:00:56","slug":"a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/","title":{"rendered":"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture"},"content":{"rendered":"<p>In the last post, we discussed Office 365 and how enabling certain features without understanding all the components can lead to a false sense of security. We demonstrated how implementing a break glass account, multi-factor authentication (MFA), and the removal of legacy authentication can help secure your users and point your organization\u2019s security posture in the right direction. While implementing those controls is an excellent start to hardening your environment, it is just the beginning. <a href=\"https:\/\/www.microsoft.com\/security\/blog\/2020\/08\/11\/microsoft-office-365-do-you-have-a-false-sense-of-cloud-security\/\" target=\"_blank\" rel=\"noopener noreferrer\">Read that blog here<\/a>.<\/p>\n<p>Security is critical, and any way that we can expedite threat prevention is highly welcomed. What if there was a way to get into a more secure state quickly.&nbsp; How much time would this give you back to focus your attention on other tasks like actual customers (user base, clients)?<\/p>\n<p>Do you wish there was a quick approach for security configurations in Azure Active Directory (Azure AD) and Office 365? I know I do, and thankfully we have some options here, and they are Secure Score and security defaults. Many of our customers are not aware that these features exist, or if they are aware, they fail to take advantage of using them.<\/p>\n<p><em>\u201cThis blog post will&nbsp;provide an overview of&nbsp;Microsoft&nbsp;Secure Score and security defaults\u2014two features that are easy to utilize and can significantly improve your security in Azure AD and Office 365 configurations.\u201d&nbsp;<\/em><\/p>\n<h2>What is Microsoft Secure Score? I am glad you asked<\/h2>\n<p>Microsoft Secure Score is a measurement developed to help organizations understand where they are now and the steps needed to improve their security posture. Microsoft Secure Score summarizes the different security features and capabilities currently enabled and provides you with the ability to compare your Score with other companies like yours and identify recommendations for areas of improvement.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-92408 size-full\" src=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-1.png\" alt=\"Microsoft Secure Score screen image\" width=\"1123\" height=\"544\" srcset=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-1.png 1123w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-1-300x145.png 300w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-1-1024x496.png 1024w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-1-768x372.png 768w\" sizes=\"auto, (max-width: 1123px) 100vw, 1123px\"><\/p>\n<p><em>Figure 1: Microsoft Secure Score screen image<\/em><\/p>\n<h2>How does Secure Score help organizations?<\/h2>\n<p>Secure Score provides recommendations for protecting your organization from threats. Secure Score will:<\/p>\n<ul>\n<li>Objectively measure your identity security posture.<\/li>\n<li>Plan for security improvements.<\/li>\n<li>Review the success of your improvements.<\/li>\n<li>The Score can also reflect third-party solutions that have been implemented and have addressed recommended actions.<\/li>\n<li>The Secure Score reflects new services, thus keeping you up to date with new features and security settings that should be reviewed and if action on your part.<\/li>\n<\/ul>\n<h2>How is the Score determined?<\/h2>\n<p><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/security-center\/secure-score-security-controls\" target=\"_blank\" rel=\"noopener noreferrer\">Secure Score&nbsp;<\/a>compares your organization\u2019s configuration against anonymous data from other organizations with similar features to your organization, such as company size.&nbsp;Each improvement action is worth ten points or less, and most are scored in a binary fashion. If you implement the improvement action, like&nbsp;require&nbsp;MFA&nbsp;for Global&nbsp;Administrators or&nbsp;create a new policy or turn on a specific setting, you get 100 percent of the points. For other improvement actions, points are given as a percentage of the total configuration.<\/p>\n<p>For example, an improvement action states you get ten points by protecting all your users with multi-factor authentication. You only have 50 of 100 total users protected, so that you would get a partial score of five points.<\/p>\n<p>Additionally, your score will drop if routine security tasks&nbsp;are not&nbsp;completed regularly or when security configurations are changed. It will provide&nbsp;directions to the security team&nbsp;about&nbsp;what has changed and the security implications of those changes.<\/p>\n<h2>What are&nbsp;security defaults?<\/h2>\n<p>Security defaults, a one-click method for enabling basic\u202fidentity\u202fsecurity in an organization, are pre-configured\u202fsecurity\u202fsettings that help defend organizations against frequent identity-related attacks, such as password spray, replay, and phishing. Some of the critical features of Security Defaults include:<\/p>\n<ul>\n<li>Requiring all users to register for Azure AD Multi-Factor Authentication (MFA) using the Microsoft Authenticator app.<\/li>\n<li>Requiring administrators to perform multi-factor&nbsp;authentication.<\/li>\n<li>Blocking legacy authentication&nbsp;protocols.<\/li>\n<li>Requiring users to perform multi-factor authentication when necessary.<\/li>\n<li>Protecting privileged activities like access to the Azure portal.<\/li>\n<\/ul>\n<h2>When should you use&nbsp;security defaults?<\/h2>\n<p>It would be best if you used&nbsp;security defaults&nbsp;in the following cases:<\/p>\n<ul>\n<li>If you want to&nbsp;increase&nbsp;the&nbsp;overall security&nbsp;posture&nbsp;and&nbsp;don\u2019t&nbsp;know how or where to start,&nbsp;security defaults&nbsp;are for you.<\/li>\n<li>If you&nbsp;are using&nbsp;the free tier of Azure Active Directory licensing,&nbsp;security defaults&nbsp;are for you.<\/li>\n<\/ul>\n<h2>How is the Score determined?<\/h2>\n<p>Microsoft Secure Score has recently added improvement actions to support <a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/fundamentals\/concept-fundamentals-security-defaults\" target=\"_blank\" rel=\"noopener noreferrer\">security defaults<\/a> in Azure Active Directory, making it easier to help protect your organization with pre-configured security settings for frequent attack vectors.<\/p>\n<p>When you turn on security defaults, you will be awarded full points for the following improvement actions:<\/p>\n<ul>\n<li>Ensure all users can complete multi-factor authentication for secure access (nine points).<\/li>\n<li>Require MFA for administrative roles (ten points).<\/li>\n<li>Enable policy to block legacy authentication (seven points).<\/li>\n<\/ul>\n<h2>Get Started with&nbsp;Microsoft&nbsp;Secure&nbsp;Score and security defaults<\/h2>\n<p>Microsoft organizes Secure Score improvement actions into groups to help you focus on what you need to address for your organization:<\/p>\n<ul>\n<li>Identity (Azure AD accounts and roles).<\/li>\n<li>Data (Microsoft Information Protection).<\/li>\n<li>Device (Microsoft Defender ATP, known as&nbsp;<a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/security\/threat-protection\/microsoft-defender-atp\/configuration-score\" target=\"_blank\" rel=\"noopener noreferrer\">Configuration score<\/a>).<\/li>\n<li>Application (email and cloud apps, including Office 365 and Microsoft Cloud App Security).<\/li>\n<li>Infrastructure (no improvement actions for now).<\/li>\n<\/ul>\n<h2>Secure Score<\/h2>\n<ul>\n<li>Start by logging into your <a href=\"https:\/\/security.microsoft.com\/securescore\" target=\"_blank\" rel=\"noopener noreferrer\">Secure Score<\/a>.<\/li>\n<li>View your scores and where you need to improve.<\/li>\n<li>Export all recommendations for your organization and turn this into an attack plan.<\/li>\n<li>Prioritize the recommendations you will implement over the next 30, 60, 90, and 180 days.<\/li>\n<li>Pick the tasks that are priorities for your organization and work these into your change control processes.<\/li>\n<\/ul>\n<h2>Security defaults<\/h2>\n<ul>\n<li>Start by logging in to your \u202f<a href=\"https:\/\/portal.azure.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Azure portal<\/a>\u202fas a security administrator, Conditional Access administrator, or global administrator.<\/li>\n<li>Browse to\u202f<strong>Azure Active Directory<\/strong>, and then\u202f<strong>Properties<\/strong>.<\/li>\n<li>Select&nbsp;<strong>Manage security defaults<\/strong>.<\/li>\n<li>Set the&nbsp;<strong>Enable security defaults, <\/strong>then toggle to&nbsp;<strong>Yes<\/strong>.<\/li>\n<li>Select&nbsp;<strong>Save<\/strong>.<\/li>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-92409 size-full\" src=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-2.png\" alt=\"Enabling security defaults\" width=\"1476\" height=\"800\" srcset=\"https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-2.png 1476w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-2-300x163.png 300w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-2-1024x555.png 1024w, https:\/\/www.microsoft.com\/security\/blog\/wp-content\/uploads\/2020\/12\/secure-2-768x416.png 768w\" sizes=\"auto, (max-width: 1476px) 100vw, 1476px\"><\/p>\n<p><em>Figure 2:&nbsp; Enabling security defaults<\/em><\/p>\n<p>There are many security enhancements that keep coming to Microsoft\u2019s Cloud stack, so be sure you check your secure Score weekly. As the days go by and new security settings appear, your secure Score will reflect these changes. It is critical to check back often to ensure you are addressing any further recommendations.<\/p>\n<h2>Bumps in the road<\/h2>\n<p>Microsoft Secure Score and security defaults are straight forward ways to evaluate and improve your Azure AD and Office 365 configurations\u2019 security. Security defaults help implement industry recommended practices, while Microsoft Secure Score creates a hands-on interface that simplifies the ongoing process of security assessment and improvement.<\/p>\n<p>Our upcoming blog will explore the necessary built-in Azure tooling and open-source options that an organization can employ during investigative scenarios.<\/p>\n<p>To learn more about Microsoft Security solutions <a href=\"https:\/\/www.microsoft.com\/en-us\/security\/business\/solutions\" target=\"_blank\" rel=\"noopener noreferrer\">visit our&nbsp;website<\/a>.&nbsp; Bookmark the&nbsp;<a href=\"https:\/\/www.microsoft.com\/security\/blog\/\" target=\"_blank\" rel=\"noopener noreferrer\">Security blog<\/a>&nbsp;to keep up with our expert coverage on security matters. Also, follow us at&nbsp;<a href=\"https:\/\/twitter.com\/@MSFTSecurity\" target=\"_blank\" rel=\"noopener noreferrer\">@MSFTSecurity<\/a>&nbsp;for the latest news and updates on cybersecurity.<\/p>\n<p> READ MORE <a href=\"https:\/\/www.microsoft.com\/security\/blog\/2020\/12\/17\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This blog post will explain simple Microsoft security defaults and Secure Score\u2014two features you should take advantage of that are easy to utilize and can significantly improve security in Azure AD and Office 365 configurations.<br \/>\nThe post A &#8220;quick wins&#8221; approach to securing Azure Active Directory and Office 365 and improving your security posture appeared first on Microsoft Security. READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":38762,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[276],"tags":[6426,347,8661,8337,8264,6427,1064,1065],"class_list":["post-38761","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-microsoft-secure","tag-azure-security","tag-cybersecurity","tag-dart","tag-detection-and-response-team-dart","tag-microsoft-detection-and-response-team-dart","tag-office-365-security","tag-security-intelligence","tag-security-response"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2020-12-17T21:00:56+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1123\" \/>\n\t<meta property=\"og:image:height\" content=\"544\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture\",\"datePublished\":\"2020-12-17T21:00:56+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/\"},\"wordCount\":1171,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png\",\"keywords\":[\"Azure Security\",\"Cybersecurity\",\"DART\",\"Detection and Response Team (DART)\",\"Microsoft Detection and Response Team (DART)\",\"Office 365 Security\",\"Security Intelligence\",\"Security Response\"],\"articleSection\":[\"Microsoft Secure\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/\",\"name\":\"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png\",\"datePublished\":\"2020-12-17T21:00:56+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/12\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png\",\"width\":1123,\"height\":544},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Azure Security\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/tag\\\/azure-security\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/","og_locale":"en_US","og_type":"article","og_title":"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2020-12-17T21:00:56+00:00","og_image":[{"width":1123,"height":544,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png","type":"image\/png"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture","datePublished":"2020-12-17T21:00:56+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/"},"wordCount":1171,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png","keywords":["Azure Security","Cybersecurity","DART","Detection and Response Team (DART)","Microsoft Detection and Response Team (DART)","Office 365 Security","Security Intelligence","Security Response"],"articleSection":["Microsoft Secure"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/","url":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/","name":"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png","datePublished":"2020-12-17T21:00:56+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/12\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture.png","width":1123,"height":544},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/a-quick-wins-approach-to-securing-azure-active-directory-and-office-365-and-improving-your-security-posture\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Azure Security","item":"https:\/\/www.threatshub.org\/blog\/tag\/azure-security\/"},{"@type":"ListItem","position":3,"name":"A \u201cquick wins\u201d approach to securing Azure Active Directory and Office 365 and improving your security posture"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/38761","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=38761"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/38761\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/38762"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=38761"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=38761"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=38761"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}