
Five Questions That Expose an Ad-Hoc Security Practice
Most MSPs run a security checklist without a framework behind it. These five maturity questions show the gap, and a NIST CSF 2.0 self-assessment mapped to Microsoft 365 controls closes it.
Topic

Most MSPs run a security checklist without a framework behind it. These five maturity questions show the gap, and a NIST CSF 2.0 self-assessment mapped to Microsoft 365 controls closes it.

The NIST CSF 2.0 draft expands the framework to every organization. Here is what changed and a full enablement guide mapping Microsoft 365 security controls, licensing, and scripts to the framework.

The new Outlook will replace Windows Mail and Calendar by end of 2024, Intune picks up driver update management and MAM for Edge on Windows, and Teams ships seven quality-of-life features.

Microsoft Teams holds chats, meetings, and files for the whole company. These eight CIS-mapped settings control who gets in, what apps run, and where data can leak.

CISA's SCuBA project gives you a checklist. A real hardening program needs CIS mapping, licensing notes, setup steps, user-impact warnings, and scripts for every control across all six M365 workloads.

A device lifecycle walkthrough of 16 Intune security controls: enrollment restrictions, compliance enforcement, encryption, patching, app protection, and offboarding, with licensing and setup steps.

Desired state configuration turns M365 baselines from physical checklists into monitored, enforceable standards. We review Microsoft 365 DSC and take an honest look at Simeon Cloud's friendlier take.

CISA's SCuBA project pairs a free M365 security baseline with ScubaGear, a PowerShell tool that grades your tenant against it. Setup steps, licensing gotchas, and a CIS Controls mapping.

As of November 2022, Intune can schedule macOS updates, defer releases, and enforce minimum OS versions. Here is how to configure update policies, deferrals, and compliance for your Macs.

February 2022 for MSPs: internet VBA macros get blocked by default, Teams previews shared channels on B2B direct connect, coterminosity heads to the NCE sandbox, and AAD Connect versions retire.

March 2021's Microsoft 365 changes that matter to MSPs: attendee camera controls in Teams, granular EOP quarantine release, new least-privilege admin roles, and self-service purchase expansion.

Microsoft retires baseline policies and enforces Security Defaults on February 29, 2020. Here are two ways to require MFA without breaking your copiers, ticketing systems, and PowerShell.