Utilization activities after rolling out Office 365 Cloud App Security

Office 365 Advanced Security Management is now Office 365 Cloud App Security.

Evaluation    >

Planning    >

Deployment    >

Utilization   

Start evaluating

Start planning

Start deploying

You are here!

Next step

Note: Office 365 Cloud App Security is available in Office 365 Enterprise E5. If your organization is using another Office 365 Enterprise subscription, Office 365 Cloud App Security can be purchased as an add-on. (As a global administrator, in the Office 365 admin center, choose Billing > Add subscriptions.) For more information, see Office 365 Platform Service Description: Office 365 Security & Compliance Center and Buy or edit an add-on for Office 365 for business.

After you have set up and configured Office 365 Cloud App Security, you'll want to perform certain utilization tasks as an Office 365 global administrator or security administrator for your organization. By performing these tasks, you'll help ensure that Office 365 Cloud App Security is configured correctly, your policies are up to date, and your organization realizes value from Office 365. Use this article as a guide to help you plan for these tasks.

Note: You must be a global administrator or security administrator to perform the tasks described in this article. To learn more, see Permissions in the Office 365 Security & Compliance Center.

In this article

Activities after the initial configuration and rollout of Office 365 Cloud App Security

After Office 365 Cloud App Security is configured and rolled out, as a global administrator or security administrators, you have several things to consider:

  • What tasks need to be added to the IT department calendar?

  • How can you make sure Office 365 Cloud App Security is configured to use the right set of policies over time?

  • What kinds of summary information should you send up the IT management chain?

The following table briefly summarizes the ongoing tasks you'll want to perform and periodic tasks you should consider adding to your IT department's calendar.

Ongoing tasks

Periodic tasks

  • Monitor the email accounts to which you are sending alert messages

  • Monitor industry cybersecurity news feeds for the latest information about new cyber attacks

  • Act on security alerts to identify and address security incidents and risks

  • Summarize each security incident and resolution in a central log

  • Perform monthly or quarterly reviews of Office 365 Cloud App Security alerts to spot anomalies and analyze trends

  • Perform monthly or quarterly reviews of your existing Office 365 Cloud App Security policies to include enhancements in Office 365 Cloud App Security and address new cyberattacks and trends in cybersecurity

Depending on your organization's size and interest in monitoring and maintaining a security stature, you can compile a monthly summary for your IT management chain that includes:

  • The different types of security incidents identified with Office 365 Cloud App Security

  • Summary information from your central log of the security incidents, such as number of incidents detected

  • Alert trends and how they were addressed

  • The latest cybersecurity trends

  • Recommendations for Office 365 Cloud App Security policy changes and their impact on end users

Activities after time has passed since rolling out Office 365 Cloud App Security

If a protracted amount of time has passed since you initially configured or maintained your Office 365 Cloud App Security policies, take the following steps to get back to a configuration that reflects your organization's security goals and the current capabilities of Office 365 Cloud App Security:

  1. Determine the date of the last configuration change for Office 365 Cloud App Security.

  2. Understand your current Office 365 Cloud App Security configuration and adjust those policies as needed. For example, make sure you know where alerts are being sent via email.

  3. See what's new in Office 365 Cloud App Security for product changes since you last configured Office 365 Cloud App Security.

  4. Perform an analysis of Office 365 Cloud App Security alerts and logs to spot anomalies and analyze trends.

  5. Check industry cybersecurity trends to become aware of the latest security threats.

  6. Perform an analysis of the changes that need to be made to the current set of Office 365 Cloud App Security policies. Incorporate Office 365 Cloud App Security feature changes, current anomalies, and cybersecurity trends. Recommend changes to existing policies or the creation of new policies.

  7. Make a plan for implementing the policy changes. Communicate (socialize) the consequences of the proposed changes with your end users as needed.

  8. Implement the Office 365 Cloud App Security policy changes.

  9. Monitor end user feedback and Office 365 Cloud App Security alerts and adjust policies over time.

Next steps

Expand your Office skills
Explore training
Get new features first
Join Office Insiders

Was this information helpful?

Thank you for your feedback!

Thank you for your feedback! It sounds like it might be helpful to connect you to one of our Office support agents.

×