MICROSOFT AZURE MARKETPLACE SERVICE

3-WEEK SECURITY BASELINE ASSESSMENT

Avertium conducts a comprehensive, detailed, technical, and strategic assessment of an organization's fundamental Microsoft Azure and Microsoft 365 infrastructure + security controls, provides remediation recommendations to reduce the risk of unintended security incidents + data exposure, and develops a security roadmap tailored to each organization's requirements and needs.

By accurately assessing and identifying any vulnerabilities or gaps in coverage, organizations can mature their security posture, increase efficiencies and productivity, and extend their overall use of Microsoft Azure and Microsoft 365 suite of products.

 

Avertium Azure Marketplace Service

  400+ 
Certifications
  2 (24/7/365)
Cyber Fusion Centers (CFC)

 

  30+ 
awards

PROJECT GOALS

AVERTIUM WILL CONDUCT AN AZURE AND MICROSOFT 365 SECURITY BASELINE ASSESSMENT WHICH WILL CONSIST OF THE FOLLOWING:

 

- Review of the Microsoft 365 suite of products and supporting services such as Microsoft Teams, Exchange, SharePoint, OneDrive, and Intune.

- Review the customer's fundamental Azure environment to evaluate current security posture as it relates to data and network security, boundary defenses, encryption, operational practices, identity & access management, and other related feature and functions.

Organizations that lack the resources to accurately assess the security of their Microsoft Azure and Microsoft 365 deployments will benefit the most from this in-depth assessment.

benefits

  Develop an accurate and detailed technical and strategic view of the security controls that compromise the hybrid infrastructure.

  Identify any gaps in coverage that may exist.

  Establish a secure baseline deployment for Office365.

  Ensure security controls are in alignment with enterprise policies and usage guidelines.

  Allow organization to securely  leverage Microsoft Services.

outcomes

  Develop use cases.

  Improved security posture.

  Develop capacity planning.

  Establish a roadmap to ensure the CIA of business-critical systems associated with Office365.

phased approach

Avertium conducts the security baseline assessment in a phased approach.

Phase l: Discover

Avertium will perform a comprehensive examination of the hybrid infrastructure and service configurations, including:

  • Identity and Access Management
  • Conditional Access
  • Logging and Analytics
  • Tenant Security Controls
  • Application Security Controls
  • Staff Interviews

Phase ll: Analysis

Avertium will document discovery results and assess those results against multiple security frameworks and industry best practices to identify gaps in coverage and establish remediation recommendations.

Phase lll: Document

Based on the information compiled, Avertium will collaborate with stakeholders to review findings and recommendations in addition to:

  • Create security program roadmap
  • Create detailed remediation plans
  • Develop RACI metrics
  • Establish associated budgets

Phase lV: Integrate

Avertium will work with stakeholders to facilitate the implementation of remediation plans, including:

  • Establish Associated procurement schedules
  • Create remediation timelines
  • Identify maintenance windows
  • Allocate and execute remediations

DELIVERABLES

AVERTIUM WILL DELIVER A COMPREHENSIVE REPORT OF FINDINGS AND REMEDIATION GUIDANCE INCLUDING...  

Avertium Azure Marketplace Service 

   Executive Summary
__________________________________________________________________

   Detailed list of findings by criticality
__________________________________________________________________

    Remediation Recommendations
__________________________________________________________________

   Remediation Implementation Plans

 

Additionally, the results of this engagement will empower the organization to immediately move into remediation of findings to reduce the risk of unintended security incidents and/or data exposure by improving the security posture of the hybrid environment.

 

 

Agenda

Avertium offers end-to-end support at every stage of your baseline assessment journey. 

Security & Threat Protection Specialist Logo (2)

 

Week 1: Days 1-5

Discover: IAM and Condition Access

Week 2: Days 6-10

Discover: Tenant + Application Security Controls, Logging + Analytics, Staff Interviews

Assess: Compile Discovery Results, Gap Analysis

Synthesize: Review Findings + Remediations, Prioritize Remediations, Develop Remediation Plans

Week 3: Days 11-15

Discover: Staff Interviews

Assess: Identify Remediations

Synthesize: Review Findings + Remediations, Prioritize Remediations,  Develop Remediation Plans