Office 365 enables communication, collaboration, and productivity, but also creates challenges for organizations in securing the broad ecosystem of applications, users, devices, and locations. Different native security controls are available depending on Office 365 subscriptions purchased, but knowing what will work for your environment and when to consider implementing more in-depth controls to protect your data from internal and external threats can be challenging. Many organizations are facing the following:

SECURING DATA IN OFFICE 365

The challenge…

How Cloudrise can help…Cloudrise helps organizations get the most out of their investment by assessing, configuring, and managing Office 365 data security controls. We enable and optimize every aspect of native Office 365 platform features, recommending ways to optimize data security controls, automate processes, and generate outputs that are actionable and consumable by the business.

Where greater depth is needed to support data protection or threat detection use cases, we help organizations understand what additional controls to consider, such as Microsoft license changes, or external Data Loss Prevention (DLP), Cloud Access Security Broker (CASB), Secure Web Gateways (SWG), and threat detection controls.

• Lack of visibility into usage of corporate Office 365 environment, and use of other sanctioned cloud applications and unsanctioned cloud app activity

• Lack of visibility and security controls for web traffic• No data loss prevention or other policy enforcement of cloud

application use and web traffic• Lack of relevant and continuous reporting on cloud and web usage,

policy enforcement, and other risk-based metrics to leadership

sales@cloudrise.com www.cloudrise.comUS +1 800 917 7619UK +44 203 239 5858

sales@cloudrise.com www.cloudrise.com

Cloudrise works with organizations to address a variety of use cases

Detect data exfiltration to an unmanaged cloud application or personal Office 365 account

Turn siloed views of events into consolidated risk-based reporting for business stakeholders

Protect sensitive data and regulated data from being stored in the cloud

Enforce granular DLP policies across all Office 365 applications

Detect cloud-based threats

Discover all managed or unmanaged applications being used. Identify corporate vs. personal instances of any cloud applications to help prevent sensitive data from being exfiltrated.

Reduce the risk of accidentally sharing sensitive data and violating corporate policy while collaborating. Enable DLP rules to ensure that employees do not accidentally share or expose sensitive data, including traffic going to the web or going from cloud to cloud. Rules can also prevent uploading of regulated, high-value data to the cloud with the ability to detect data already there and auto-remediate.

Rather than just allowing or denying users access to applications, consider granular policies using attributes and sensitive data to apply across Office 365 applications. Enable deep contextual controls for managed and unmanaged applications so employees can maximize productivity without introducing risk.

Consider adding external security platform controls for the following:

o Detect insider threats by looking for anomalous behavior such as unusual large data uploads, login frequency into a cloud services account, and changes in user behavior

o Detect compromised accounts such as suspicious geo login-access, brute force attacks, and unusual login patterns

o Identify privileged user threats such as sudden user privilege escalations, dormant accounts, and unusual system access

o Block known malware, discover unknown files, and identify command and control behavior representative of data exfiltration

o Obtain an audit trail of activity for forensic investigations

Granular access policies can be enforced such as:o Allow/deny access to specific applications

within Office 365 based on attributeso Allow/deny specific user actions within each

Office 365 applicationo Force step-up authenticationo Block download of data to personal devices

DLP policies for Office 365 can consider the following attributes:o Device type (managed/unmanaged)o Activity (download/upload)o Usero IP address rangeo Geographic location

Combine data protection policy reports with data from applications such as HR, payroll,medical records, and CRM systems to get a more complete picture of risky user activity byspecific high-risk individuals, by groups such as terminated employees, and by data typessuch as PII, SSNs, or customer lists.

US +1 800 917 7619UK +44 203 239 5858

US +1 800 917 7619UK +44 203 239 5858

sales@cloudrise.com www.cloudrise.com

Services for Office 365

Cloudrise manages organizations’ data protection controls with a focus on

getting as much out of each data protection technology platform.

Platform Management services include ongoing program management, health monitoring, policy management, and unified reporting across data security,

business process, and analytics/ visualization tools.

We work with organizations to evaluate data security programs for Office 365 environments based on

best practices and industry standards. Additionally, we conduct point-in-time

visibility scanning for data exposure, data use, and data-at-rest to

understand and report on the existing risk posture.

Our services drive design, implementation, and optimization for new or existing Office

365 controls. We remediate gaps, implement technology, identify

opportunities, develop processes for automation, create runbooks, and deliver

high-value reporting to the business.

ASSESSMENTS TECHNOLOGY ENABLEMENT

MANAGED DATA PROTECTION

1

2

3

Our services are designed to help organizations securely benefit from the collaboration and productivityenabled by Office 365, while minimizing risk to your data. We help organizations understand currentlicense features and configurations, identify optimization opportunities through configuration ofexisting or new Microsoft services, and make recommendations for external vendor solutions to furtherreduce risk.