Office 365 Distilled EP 39: Security vs Usability – The balance

After a weekend of manual labor, that Marijn talks about uncomfortably long, the boys talk about about whisky and of course, technology! Technology, Office 365, enables people to do their stuff faster, easier. The end user is the main goal. So how can we make sure they can’t work that easy and simplicity? How can we add complexity on that collaboration work and secure our IP ? By adding security! So let’s see if technology can ruin collaboration or help it flourish!

In this episode, Steve talks about different security measures you can take, while Marijn only wants the end user to do their work.

Secure Score

The Secure Score (find yours here) is probably the first place where you need to go to when you think about security. This place in your admin center allows you to define how far you want to go with security. It allows you to track how your score evolves over time. It gives you a reference, but also actionable items to make your environment more secure.

You start with your security governance: you take the standards within your organization and make actionable items to manage it effectively.

You could even set your security crew up to get a bonus when your secure store is above a certain level.

Multifactor Authentication

This small action makes such a big difference. It is a combination of something you know, something you are and something you have. The question is, how many of these combinations are enough?

Your password, unique key from the app, an encrypted certificate on your device, Intune device recognition, a proxy server with CASB, … How many levels are enough for your security team? Every level you add, the end user gets a worse experience.

Conditional access is another form of authentication where you can set up rules where people can go in under certain circumstances.

BYOK (Bring your own key)

Everything is secured by a key, you can take the one from Microsoft or you can be ultrasecure and generate your own key, send it off to Microsoft and they will encrypt your data with it.

Password Encrypted documents

This has been around for so long. And should it? With all the amazing security offerings that are in place, why would you still want to set this up on the document? This is as bad as people emailing themselves to get documents at home to work on.

Pike Creek, Rum barrel finish

This 10 year old bourbon from Canada is finished in a rum barrel. This gives it a very sweet taste and nose. The brownish color reminds of a sherry whisky but the nose is too sweet for that. It has a very wide, smooth taste with a depth that eases down your tongue. You get the bourbon taste, but it doesn’t jump out. Even the aftertaste is in slow motion.

Pike Creek, Rum barrel finish

About: Marijn

Marijn Somers (MVP) has over 14 years experience in the SharePoint world, starting out with SP2007. Over the years the focus has grown to Office 365, with a focus on collaboration and document management. He is a business consultant at Balestra and Principal Content Provider for "Mijn 365 Coach" that offers dutch employee video training. His main work tracks are around user adoption, training and coaching and governance. He is also not afraid to dig deeper in the technicalities with PowerShell, adaptive cards or custom formatting in lists and libraries. You can listen to him on the biweekly "Office 365 Distilled" podcast.

%d bloggers like this: