No matter what vertical your organisation operates in, security will (and should be) always be at the top of any IT project list. Each organisation will have varying levels of security setup, and although prevention is always a better solution, many organisations will have security shake-ups when risks occur.
Microsoft announced the new compliance Center which is available for customers using Microsoft 365.
The Center includes a dashboard to help manage & monitor security across your organisation. You can also access to your ‘Microsoft Secure Score’, new device threat reports, new identity threat reports, and your Cloud App Security reports.
The above image shows the dashboard users can expect from the Microsoft 365 Security Center. (The way the dashboard is composed depends on the user’s role and permissions within security IT). This means the dashboard can be suitably customised for particular users: only display what you require people to see. This function in itself allows better security within your organisation.
With a simple dashboard to glance at, your security team will be able to closely monitor activities within your organisation and react (and prevent) future risks where needed.
Here’s what Microsoft says is included in the Security Center:
- Home – Get at-a-glance view of the overall security health of your organisation.
- Alerts – Have greater visibility into all the alerts across your Microsoft 356 environment, including alerts from Microsoft Cloud App Security, Office 365 ATP, Azure AD, and Microsoft Defender ATP. Available to E3 and E5 customers.
- Reports – Get the detail and information you need to better protect your users, devices, apps, and more.
- Secure score – Improve your overall security posture with Microsoft Secure Score. This page provides an all up summary of the different security features and capabilities you’ve enabled and includes recommendations for areas to improve.
- Hunting – Proactively search for malware, suspicious files, and activities in your Microsoft 365 organisation.
- Classification – Help protect data loss by adding labels to classify documents, email messages, documents, sites, and more. When a label is applied (automatically or by the user), the content or site is protected based on the settings you choose. For example, you can create labels that encrypt files, add content marking, and control user access to specific sites.
- Policies – Set up policies to manage devices, protect against threats, and receive alerts about various activities in your org.
- Permissions – Manage who in your organisation has access to Microsoft 365 security Center to view content and perform tasks. You can also assign Microsoft 365 permissions in the Azure AD Portal.
What’s the difference between Office 365 and Microsoft 365?
Office 365 is a cloud-based services platform that offering common Microsoft apps such as Word, Excel, PowerPoint, and OneDrive, Power BI and more. You can Access office 365 either online or on-premises via a subscription plan – lots of hybrid environments adopt this.
Microsoft 365 is a bundled platform that includes the Office 365 suite, Windows 10 Pro and Enterprise Mobility+Security.
Licenses, roles and permissions for Microsoft 365
To get the new Microsoft 365 security Center and Microsoft 365 compliance Center, your organisation must have a subscription to Microsoft 365 E3 or E5, or a Volume Licensing equivalent (which consists of Office 365 E3 or E5, Enterprise Mobility + Security E3 or E5, and Windows 10 Enterprise E3/E5).
Roles and permissions
Users must be assigned the Global Administrator, Compliance Administrator, Compliance Data Administrator, Security Administrator, Security Operator, or Security Reader role in Azure Active Directory to access the new Microsoft 365 security Center or Microsoft 365 compliance Center.