Hexas IT Solutions* is a Managed Services Provider based in Munich, Germany & is a trusted partner for System Administration, server deployment/Integration & IP Telephony. They use the most up-to-date monitoring tools to continuously monitor their clients’ business processes, ensuring the quickest response times when repairing any issues or processing tickets for the stabilization and continuation of their customer’s IT systems.
Overview
As part of their own Digital Cloud Transformation Journey, Hexas IT were using Microsoft 365 Suite for email, collaboration & Office apps. They also have an on-premises Active Directory server with synchronized identities to Azure AD. Hexas IT Solutions* engaged with Infrassist Technologies Pvt Ltd. to provide professional services for Security Assessment & Remediation of
Microsoft 365 Tenant as per CIS Benchmark guidelines.
Solution
The Center for Internet Security is a nonprofit entity whose mission is to ‘identify, develop, validate, promote, and sustain best practice solutions for cyberdefense. They have published benchmarks for Microsoft products and services including the Microsoft Azure and Microsoft 365 Foundations Benchmarks. These are intended for customers who plan to develop, deploy, assess, or secure solutions that incorporate Microsoft 365 services along with providing perspective guidance for establishing a secure baseline configuration for M365 tenant.
- A Global Reader access was provisioned for detailed audit of Microsoft 365 tenant configurations as per CIS Benchmarks
- Every Single CIS Control for Microsoft 365 platform was validated for their compliance & prepared detailed compliance checklist
- Also, listed down all non-compliant & partially compliant controls along with their severity level plus recommendations for implementation
- In-depth assessment of Current Microsoft 365 Secure Score & key improvement actions for upbringing it to maximum for ensuring compliance
- A comprehensive Audit report along with recommendations is submitted to customer as deliverable
- A detailed walkthrough of Audit report & implementation of all key controls to enhance security posture of Microsoft 365 tenant and at the same time maximizing user productivity for increased operational efficiency
Technologies Used
Accomplishment
Post-audit, we configured a Baseline Security Configuration for M365 Tenant, which led to an improved Secure Score. We also devised a clear plan for an advanced set of M365 Security & Compliance features implementation. Hexas IT Solutions* saw maximum ROI for their customer’s M365 Cloud Services Subscriptions.
