Common review areas
- Administrator roles and account protection
- MFA and Conditional Access
- Email authentication and anti-phishing settings
- External sharing and collaboration
- User onboarding and offboarding
- Retention, backup and recovery requirements
Microsoft 365 Security Review
Review identity, email, administration and recovery settings that influence Microsoft 365 security.