Tags: , ,

Robust security and compliance for Microsoft 365

Author: Tim Jalland
Solution Manager, VOSS Solutions

Tuesday August 05, 2025

There’s an interesting article on UC Today, around the recent work at Microsoft to restrict elevated permissions, as used by applications, in the M365 ecosystem. It finds that many breaches are through access to login credentials tied to elevated or global administrator rights.

It asks the question – do you know how many people on your Microsoft 365 service are configured at this level, and if so, do they really need that level of access. As Microsoft points out: IT leaders must actively adapt their environments by auditing permissions, updating authentication methods, and continuously monitoring access.

I’ve extracted the key points made by Kevin Kieller from enableUC, in his recent eBook The IT Pro’s Ultimate Microsoft 365 Management Checklist that are relevant here.

  • Do you regularly review and optimize your automation workflows to ensure they remain efficient and effective? Are you confident in your ability to protect sensitive data within your Microsoft 365 tenant from both internal and external threats?
  • Do you have robust security controls in place, such as multi-factor authentication (MFA), conditional access policies, and data loss prevention (DLP) rules, to prevent unauthorized access and configuration changes?
  • Are you meeting all relevant compliance requirements for data privacy and security (e.g., GDPR, HIPAA, SOC 2) applicable to your industry and region?
  • Can you easily audit user activity, track changes made within your environment, and generate reports for compliance purposes?
  • Do you have a comprehensive strategy for managing and responding to security incidents within your Microsoft 365 environment?
  • Are you regularly reviewing and updating your security policies and configurations to address evolving threats and best practices?

At VOSS we can help answer these questions and have made security an integral part of lifecycle service management within our VOSS for Microsoft solutionsYou can read more detail here, or for more information on VOSS, please do get in touch. 

Read more about Microsoft 365 management, in the eBook from Kevin Kieller: 

EnableUC Microsoft 365 management checklist - VOSS

More articles of interest from VOSS

AI Automation bulk change business analytics chatbot Cisco co-pilot Collaboration Compliance management Cost Analytics Cost optimization Cost saving data analytics digital dexterity Digital workplace management digital workplace maturity Gartner governance government Insights license management Licensing Microsoft Microsoft 365 Microsoft Teams Microsoft Teams Phone monitoring Multi-vendor Multi-vendor UC NetFlow predictive analytics Productivity RBAC Security management Self Healing UC analytics UC migration UC monitoring UC trends User experience VOSS Automate VOSS Discover VOSS Insights VOSS Migrate Wingman