Microsoft 365 is such a complete subscription that its full potential is often unknown. This happens in many companies, not just small ones, that are subscribed to Microsoft 365 services. They are ignoring some key features or even contracting these services with a third party as they have indicated since Windows Center.
Microsoft 365, a service that is not finished being exploited
According to a new survey by ensono, which collected responses from 251 UK IT managers from a number of companies. Many companies are overlooking data loss prevention (DLP), conditional access controls (CAC), and multi-factor authentication (MFA). Among those surveyed were IT decision makers from companies with more than 10,000 employees. But there were also small businesses with 1-10 employees (as well as sizes in between). Even if 83% of respondents see Microsoft 365 as very valuable, Ensono also reported:
- 38% do not use multi-factor authentication (MFA)
- Only 43% have conditional access controls (CAC)
- 46% do not have data loss prevention (DLP) or data classification configured
“Of respondents who reported a breach related to Microsoft 365, 42% were linked to files shared with external parties and 37% were due to impersonation of a compromised account”, the report reads, highlighting some potential consequences of not using MS365’s built-in security offerings.
Simon Ratcliffe, a principal consultant for Ensono, pointed out that some companies are generating unnecessary expenses by use third-party solutions for features that are already included in your Microsoft 365 subscriptions. As we have already anticipated, it is true that Microsoft 365 is a huge subscription, but sometimes You have to do your homework before buying something new. It is clear that no one is exempt from making mistakes and perhaps Microsoft should make an effort and report on the available features.