Facing a massive cross-functional deployment of Microsoft 365 (M365), the security team at Blackstone, the world’s largest alternative asset manager, needed to ensure thorough M365 posture management and controls without interfering with the existing migration timeline.
After an initial scan using Microsoft’s native tools, the team realized that hundreds of settings were hidden below the surface, unobserved by the original scan. With Vectra Protect, a Microsoft-certified tool, they reviewed hundreds of combinations of M365 settings. The posture assessment also helped the team confirm and further harden existing settings and conditional access (CA) policies that the team was uncertain about during deployment.
While the security team uncovered many configurations that created weaknesses across their four services—Azure AD, Exchange, Teams, and SharePoint—Vectra Protect also supported several ancillary initiatives.
“It was eye opening to hear that the problem was an order of magnitude larger than we thought it was. Vectra’s solution and expertise has helped us uncover and review hundreds of settings that we never would have known about.”
“Through one simple integration, completed in just a single day, we were able to add over 50 new threat detections against our Microsoft 365 environment.”
Vectra Cloud Detection and Response (CDR) for M365 is the most advanced AI-driven attack defense for malicious threats to your Microsoft 365 apps and data.
Request a 30-minute demo to see how the Vectra AI empowers SOC analysts to find and stop active cyberattacks in minutes.
The Vectra blog covers a wide range of cybersecurity topics, including exploits, vulnerabilities, malware, insider attacks, threat actors, artificial intelligence, and more.