Strengthening identity management and M365 security posture after an incident
Snapshot
Highly integrated software platforms like Microsoft 365 (M365) give cybercriminals a broad attack surface to exploit. For business owners racing to stay competitive in their own area of expertise, it can be tough to keep up with the evolution of cybercrime targeting M365. And that’s when incidents can occur.
An employment agency recently had a wake-up call and realized they needed expert help with their security posture. The agency worked with Kalles Group to bolster its M365 email security and identity management, ultimately reaping the benefits of greater confidence and a better security/usability balance.
Challenge
Security incident aftermath: Time to shore up those defenses — especially for Microsoft 365!
Reeling from a security incident in which a team member’s accounts were compromised via an email hack, the client sought Kalles Group’s expert assistance in moving forward with some key cybersecurity objectives. As the partner who contained the incident and swiftly restored user access, Kalles Group was a clear choice for further hardening efforts.
The ubiquity of Microsoft 365 — which the client uses — means that hackers are encouraged to prey on users of this software suite. With attacks from around the world continuing to target client’s systems, the need for M365 hardening as a follow-up action was clear.
Approach
Zeroing in on what matters with an assessment
Kalles Group kicked things off by conducting a security assessment. Assessments are critical for pointing out where an organization is most vulnerable to cyber threats while taking into account the organization’s business objectives and technological footprint.
The assessment pointed to identity management and email communications as the main areas needing attention. These are often the first points of contact for cyber threats, so improving them would make a big difference in the client’s security posture.
Balancing security and usability with risk-based access control
Overly complex identity management protocols can make employees feel like they have to choose between complying with the rules and being productive at their jobs. They could then be tempted to bypass things that frustrate them.
To make it easier for the client’s staff to comply, Kalles Group set up risk-based access control. In simple terms, this means users are only prompted for multi-factor authentication (MFA) when there’s a change in their usual operating environment — like when they’re logging in from a new location or with an unrecognized device. This approach keeps things secure without adding unnecessary steps to everyone’s daily routine.
Keeping phishing and spam out of inboxes with advanced email filters
Email communications are a major vulnerability for businesses, so secure email practices are paramount. Kalles Group found that the client’s email was a bit too easy for hackers to target successfully.
The solution was to introduce advanced email security filters. These filters use machine learning to identify threats and block phishing attempts, malware, and spam before they reach anyone’s inbox. Kalles Group customized them to fit the client’s specific needs.
Collaborating to fine-tune and find the best security/usability balance
Kalles Group didn’t simply set everything up and walk away. The team worked closely with the client team to fine-tune the new systems. This involved:
- Monitoring business impact. Kalles Group kept an eye on how the changes affected day-to-day operations, making sure that employees could perform their job duties smoothly.
- Adjusting settings as needed. The consultants tweaked configurations from time to time to find the right balance between security and usability.
- Training the team. Kalles Group made sure that the agency’s staff understood the new features and could use them effectively.
“Set it and forget it” is antithetical to Kalles Group’s cybersecurity consulting approach. As a true cybersecurity partner, the KG team’s tailored solutions are designed to address immediate concerns while fitting seamlessly into everyday operations. This commitment to working hand-in-hand with clients helps build lasting defenses for an unpredictable future.
Results
Immediate security improvements with an optimal user experience
The employment agency saw results almost immediately. Employees noticed much cleaner inboxes and were able to focus better when their attention wasn’t being diverted by the arrival of spammy messages. In summary, the client enjoyed:
- Less spam. Employees enjoyed inboxes free of unwanted messages, which made it easier to focus on important work.
- Better security. By cutting down on unwanted and potentially harmful emails, the enhanced security filters and access controls have reduced the risk of cyberattacks.
- Smooth user experience. With risk-based MFA prompts, users only need to complete additional security steps when it’s actually necessary.
The client appreciated Kalles Group’s ability to strengthen their security without making things complicated for their team. They now have more confidence in their IT environment’s ability to protect against threats, and employees are comfortable with the level of security requirements.