Cyber Defense – ZeroTrust: Assessment (4-wk)


Reimagine Cyber Defense through the adoption of ZeroTrust on Microsoft Azure

This 4-week assessment is designed to help customers understand their current posture against ZeroTrust adoption for Azure Cloud and Microsoft Modern Workplace.


  • Identity Security: - Review Azure AD-based SSO, MFA, Access management, the principle of least privilege, use of dynamic access, and just in time access policies
  • Device Security: - Review approach to Microsoft Mobile Device Management & Mobile Application Management to assess how visibility to device health is monitored, access from vulnerable devices is restricted, security policies are enforced on mobile devices
  • Applications security: - Protect the application with MCAS and through the lifecycle of the application
  • Infrastructure security: - Review use of Azure security center to harden the cloud infra
  • Network security: - Review of multi-level segmentation using Azure Networking – macro and micro-segmentation
  • Data security: - Review data security – discovery, classification across Office 365, Azure cloud, 3rd party repositories, and other apps, data encryption, access control & monitoring
  • Security incident monitoring and response: - Review of threat detection using Azure Sentinel or 3rd party solutions


  • Discovery
  • Assessment
  • Reporting


  • Report highlighting the current state
  • Contextualized recommendations