4-Week Zero Trust Implementation for Identity

Infused Innovations Inc.

Work towards a password-less environment by integrating third-party services with Azure SSO, enabling biometric authentication on known devices, and setting up MFA with Conditional Access.

Infused Innovations will perform the following tasks as part of this accelerator:

Identity & Access Management

  • Deploy or validate Azure AD Connect for a single Active Directory Domain
  • Enable modern authentication for a single Office 365 tenant
  • License and provision users in a single Office 365 tenant
  • Configure AAD P1 and EM+S licensed users for Self Service Password Reset
  • Configure sync of all supported modern workstations in a single AD Domain
  • Enable seamless SSO via Group Policy or Intune
  • Create a custom banned password list
  • Configure Company Branding
  • Create Azure AD groups to use for targeting policy configurations
  • Create a Cybersecurity Microsoft Teams site for dynamic Power BI reports

Conditional Access and MFA

  • Provide a one-hour workshop to review suggested baseline configurations
  • Enforce MFA for current global admins
  • Configure automated risk-based policies for Azure AD P2 users
  • Create a break glass policy
  • Provide a two-week pilot

Office 365 ATP

  • Configure Anti-Phishing Policies
  • Configure Anti-Spoofing Policies
  • Configure Safe Links baseline
  • Configure Safe Attachments baseline
  • Configure Malware detection baseline

Configure Email Authentication Protocols

  • Configure SPF Flattening if required
  • Configure DKIM records
  • Configure DMARC records with Valimail for DMARC monitoring

For more information visit Infused Threat Protection