Security News > 2021 > April > IT teams need to be coaches, not security guards, and shift to "self-service" for Microsoft 365
ShareGate's first annual State of Microsoft 365: Migration, Modernization and Security report recommends a new approach to security in this time of remote work.
Instead of trying to control all activity, security leaders should give users more freedom to manage Microsoft 365 features combined with clear data governance guidance.
The report includes sections on migration, security and modernization and is based on industry surveys and interviews with Microsoft MVPs. In the security section, the researchers found that IT teams need to make security a team effort in the distributed workplace.
According to the report, end users can decide how best to collaborate and communicate while keeping sensitive information secure, as long as they have guidance and advice from IT. With IT acting as a coach, not a guard, this approach to security is good for both employees and IT professionals as well, according to the report.
Data policies: Address internal, industry and governmental requirements for security and privacy.
Workforce development: Company-wide training and skill development related to security and privacy.
News URL
Related news
- Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware (source)
- Severe Security Flaws Patched in Microsoft Dynamics 365 and Power Apps Web API (source)
- 3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update (source)
- Fleet: Open-source platform for IT and security teams (source)
- Ransomware attackers are “vishing” organizations via Microsoft Teams (source)
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- ‘Sneaky Log’ Microsoft Spoofing Scheme Sidesteps Two-Factor Security (source)
- Microsoft: Outdated Exchange servers fail to auto-mitigate security bugs (source)
- Week in review: 48k Fortinet firewalls open to attack, attackers “vishing” orgs via Microsoft Teams (source)
- Microsoft Teams phishing attack alerts coming to everyone next month (source)