A recently published study evaluated 1.6 million Microsoft 365 users across three continents, finding that 90% of organizations had gaps in essential security protections. Managing Microsoft 365 (M365) is complicated. How can IT teams avoid management headaches, stay 100% compliant, and truly take control of their M365 instance?
To find out, CoreView experts reviewed the most common problems to understand what companies are doing well and reveal gaps in IT management strategies.
Research from the study reveals that many common security procedures are not being followed 100% of the time. This leaves gaping holes in most organizations’ security defenses. While most companies have strong documented security policies, the research uncovered that most aren’t being implemented consistently due to difficulties in reporting and limited IT resources:
- 90% of companies had gaps across all four key areas studied – multi-factor authentication (MFA), email security, password policies, and failed logins
- 87% of companies have MFA disabled for some or all their admins (which are the most critical accounts to protect, due to their higher access levels)
- Only 17% of companies had strong password requirements that were being consistently followed.
