Microsoft 365 Cybersecurity Implementation Plan: A Comprehensive Guide, Assignments of Computer Security

Download Microsoft 365 Cybersecurity Implementation Plan: A Comprehensive Guide and more Assignments Computer Security in PDF only on Docsity!

IMPLEMENTATION

PLAN

Student Name

S E C 5 7 2 – Network

Security

Professor Shahed

Mustafa

RUBRIC

• (^) Include problem statement from previous deliverable
  • Include recommended solution slide from previous deliverable
• (^) Implementation flow diagram
• Cost-benefit analysis Solution validation Solution Evaluation and continuous improvement Decommission Legal, ethical and cultural considerations

RECOMMENDED SOLUTIONS 4

• Microsoft implemented various tools to prevent its products from different malwares Exchange Online Protection is a tool mainly designed for Microsoft emails servers - - - (^) Layered defenses : Use of multiple engines that include heuristic detection to provide protection during early stages of malware infection Real Time Threat Responses for malwares that are known to the EOP, providing another extra layer of protection Anti-Malware Definition Deployment: Coordinates with partners to receive malware definitions and patches, sometimes before they even go public
• (^) Microsoft Defender - (^) An advanced tool of email filtering, providing extra protection besides EOP. Both theses services are included into Microsoft Office 365, that includes, other than Outlook (e-mail

FLOW DIAGRAM FOR IMPLEMENTATION 5 Microsoft Security Development Lifecycle detailed in this Diagram

SOLUTION VALIDATION

• (^) The cybersecurity services that are included in the Microsoft Office 365 suite, and they will be active and working as soon as the suite is implemented and installed in the business, computers or other devices. But it is extremely important to first define if Office 365 is compatible with the business and its needs, as it is a specific set of office tools that are included here. 7

EVALUATION AND CONTINUOUS IMPROVEMENT

• Since the user’s experience in this case will be affected, because he will be asked to use specific softwares and solutions, his input will be of much value to ensure that he is able to perform his tasks in a good manner A continuous monitoring of the different activities happening, like consulting logs and reports, as well as communicating with the provider (Microsoft) to make sure that the tool is efficient, and the threats are managed properly A continuous training of the employees' good practices, how to deal with junk/spam emails and how to detect potential scams and different

LEGAL, ETHICAL AND CULTURAL CONSIDERATIONS 10

• Ensure that the solution is implemented in accordance with the laws and regulations Avoid installation of hacked versions of the software, as it may leads to major security breaches Provide relevant reports and monitoring to Microsoft, to provide the best response possible, and to document any unpredicted event that may happen, even if it does not lead to harm Training of employees on the correct use of the solutions, Provide necessary education on Cybersecurity, and its relation to the good functioning of the business and the security of its data, warn on the importance of reporting, and guidance on the good practices and acts in case of any unpredicted event.

REFERENCES

Davit Asatryan, October 16, 2019. 6 Dangerous Microsoft Office 3 6 5 Security Concerns for Business. Retrieved from: https://spin.ai/blog/top-6-office-3 6 5 -security-concerns-for-busin ess/ Microsoft, April 24, 2024, Malware and Ransomware protection i n Microsoft 365. Retrieved from: https://learn.microsoft.com/en-us/compliance/assurance/assura nce-malware-and-ransomware- protection Adrienne Capaldo, Forrester, 2 0 1 8 (Consulted on June 6, 2024) The Total Economic I m p a c t ™ Of Microsoft Offi ce 3 6 5 Threat Intelligence https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE FA3a 1 1