Utilization activities after rolling out Office 365 Cloud App Security

Office 365 Advanced Security Management is now Office 365 Cloud App Security.

Evaluation    >

Planning    >

Deployment    >

Utilization   

Start evaluating

Start planning

Start deploying

You are here!

Next steps

Tip: Office 365 Cloud App Security is available in Office 365 Enterprise E5 or as an add-on for another Office 365 Enterprise subscription. To view or add to your subscription, as a global admin, sign in to Office 365, and then choose Admin > Billing. For more information about plan options, see Compare All Office 365 for Business Plans.

After you have set up and configured Office 365 Cloud App Security, you'll want to perform certain utilization tasks as a global or security administrator for your organization. By performing these tasks, you'll help ensure that Office 365 Cloud App Security is configured correctly, that your policies are up to date, and that your organization realizes value from Office 365. Use this article as a guide to help you plan for these tasks.

In this article

Utilization activities after initial configuration and rollout

This section helps answer the following questions:

  • What tasks do I need to add to the IT department calendar?

  • How can I make sure Office 365 Cloud App Security is configured to use the right set of policies over time?

  • What kinds of summary information should I send up the IT management chain?

The following table summarizes the ongoing tasks you'll want to perform and periodic tasks you should consider adding to your IT department's calendar.

Ongoing tasks

Periodic tasks

  • Monitor email accounts to which you are sending alert messages

  • Monitor industry cybersecurity news feeds for the latest information about new attacks

  • Act on security alerts to identify and address security incidents and risks

  • Summarize security incident and resolution in a central log

  • Perform monthly or quarterly review of Office 365 Cloud App Security alerts to spot anomalies and analyze trends

  • Perform monthly or quarterly review of your existing Office 365 Cloud App Security policies to include enhancements in Office 365 Cloud App Security and address new cyberattacks and trends in cybersecurity

Depending on your organization's size and interest in monitoring and maintaining a security stature, you can compile a monthly summary for your IT management chain that includes:

  • The different types of security incidents identified with Office 365 Cloud App Security

  • Summary information from your central log of the security incidents, such as number of incidents detected

  • Alert trends and how they were addressed

  • The latest cybersecurity trends

  • Recommendations for Office 365 Cloud App Security policy changes and their impact on end users

Utilization activities after protracted time

If a protracted amount of time has passed since you initially configured or maintained your Office 365 Cloud App Security policies, take the following steps to get back to a configuration that reflects your organization's security goals and the current capabilities of Office 365 Cloud App Security:

  1. Determine the date of the last configuration change for Office 365 Cloud App Security.

  2. Understand your current Office 365 Cloud App Security configuration and adjust those policies as needed. For example, make sure you know where alerts are being sent via email.

  3. Check the release notes for Office 365 Cloud App Security for product changes since you last configured Office 365 Cloud App Security.

  4. Perform an analysis of Office 365 Cloud App Security alerts and logs to spot anomalies and analyze trends.

  5. Check industry cybersecurity trends to become aware of the latest security threats.

  6. Perform an analysis of the changes that need to be made to the current set of Office 365 Cloud App Security policies. Incorporate Office 365 Cloud App Security feature changes, current anomalies, and cybersecurity trends. Recommend changes to existing policies or the creation of new policies.

  7. Make a plan for implementing the policy changes. Communicate (socialize) the consequences of the proposed changes with your end users as needed.

  8. Implement the Office 365 Cloud App Security policy changes.

  9. Monitor end user feedback and Office 365 Cloud App Security alerts and adjust policies over time.

Next steps

Connect with an expert
Contact us
Expand your skills
Explore training

Was this information helpful?

Thank you for your feedback!

Thank you for your feedback! It sounds like it might be helpful to connect you to one of our Office support agents.

×