12Jan2021
01Dec2020
Why aren’t you charging your customers to take care of Microsoft 365?
This is a simple question. The way I see it, there are many opportunities to provide Managed Services for SMB customers with regard to their Microsoft 365 subscriptions. Yet to this day, hardly anyone is doing it. Why? I suspect some folks have difficulty connecting all the dots and putting...
08Sep2020
A Tale of Two Incidents
I have two stories to share today. Both are from individuals who contacted me about recent Cybersecurity incidents that their MSP had suffered. Both incidents were very different, and yet they share some common threads and lessons that I think we would be wise to heed. And this is all...
21Jul2020
My opinion on Microsoft Threat Protection for the SMB
Since I released my guide on Microsoft 365 E5 Security and Microsoft Threat Protection, I have been getting a lot of questions and comments about my stance on the use of these products for SMB customers. I left it too neutral, I guess, in the original publication. So, let me...
09May2020
Building your Security Practice with Microsoft Threat Protection and Azure Sentinel
I have some exciting news today. I have a new publication available covering Microsoft 365 E5 Security and Microsoft Threat Protection, with a bonus section at the end featuring Azure Sentinel (which is a separate product, not included with Microsoft 365). The document is available here if you want to...
06Apr2020
Inventory and Control of Apps within and beyond the perimeter with Microsoft 365
Managing devices is a topic I have probably burnt my readers out on by this point, so it's time we move into the next stage: wrangling all those crazy third-party applications hiding out in your environment! To build up a foundation of good security, we must identify our apps and...
09Mar2020
New Updates to the Office 365 Security Checklist and Guide, including Free eBook
With more years comes more wisdom (and more reader feedback helps)! As such, it was time to polish up the guide that kicked off this whole journey. This is a big update, and in a much more consumable format, I think. I am even renaming it to "The NEW Office...
17Dec2019
The many ways to prevent data leakage in Microsoft 365
Office 365 Data Loss Prevention (DLP), Windows Information Protection (aka Endpoint DLP), Conditional Access App Enforced Restrictions, Conditional Access App Control with Microsoft Cloud App security, Sensitivity labels, Retention labels--are you thoroughly confused yet? All of the above can help you to prevent the leakage of sensitive data under certain...
27Aug2019
Protecting extra-sensitive accounts and data sets in Microsoft 365, Part 2: Apps and Data
Last time we looked at some additional identity-based protections that are possible via additional subscriptions like Enterprise Mobility + Security E5 (which contains Azure AD Premium P2). In this post, we'll work within the same framework, but shift our focus from identity, towards protections which can be applied to apps and...
13Aug2019