Top Tips for Secure Collaboration With
Microsoft 365 and Microsoft Teams
Release Date: 16/12/2020
Author: Grace Maher
It is vital now especially with the sudden rise in remote working to be able to easily share information with the right people, while preventing oversharing or incorrect access. This also extends into ensuring the right people are the only ones with access to sensitive information. Occasionally, there will always be requirements to share sensitive information outside of the organisation, depending on the project.
Today we will focus on the two main areas that are required for securing your Microsoft 365 collaboration and file sharing:
1. Ensuring Microsoft Teams has the right level of protection for each project
2. Configuring external sharing with the correct security settings
Often, if there is not an easy way of file-share in place, users will often share files via emailing documents which can be very time consuming and also heightens the risk of incorrect access being granted to third parties outside the organisation.
Sharing within Microsoft 365 to external organisations can be managed by applying the appropriate controls regarding sharing for the sensitivity of the data:
- Allowing sharing to anyone
- Allowing sharing within the organisation
- Allowing specific people within the organisation to share
- Allowing specific people inside and outside the organisation.
By fine tuning these controls we can ensure that the correct types of information have the correct sharing permissions to ensure that the data cannot be shared beyond where it is meant to be seen.
Within Teams, there are tiers that can be applied to data, to prevent file sharing, encryption, guest sharing, and if managed or unmanaged devices can access the data. Configuring these tiers involves:
- Configuring settings in teams for both private channels and guest access
- Configuring settings in a teams associated SharePoint site for sharing, access requests and sharing links
- For sensitive and highly sensitive data, configuring sensitivity labels to classify the teams, and control access and guest sharing.
- For highly sensitive data, configuring a sensitivity label to encrypt the documents is also recommended.
Trying to navigate all of these different layers of permissions in Microsoft 365, Sharepoint and Teams can be difficult to understand and implement. However, with Varonis DatAdvantage you can remove the guesswork by utilising their best of breed in-house built permissions mapping software. DatAdvantage allows you to take a data-centric compliance approach and prevent unwanted sharing or unauthorised access, across all of your file and email systems.
DatAdvantage allows you to easily and simply not only ensure your perimeter is secured, but to fine tune your permissions and file sharing, to prevent external users accessing what they shouldn’t, but also internal users as well. Insider Threat is now one of the most common causes of data breaches or data exfiltration, and DatAdvantage is uniquely placed as the only tool on the market to be able to comprehensively show you where your sensitive data lives, who has access, and allow you to edit your permissions and see out of your users who will gain or lose access in real time – before you push changes to production.
If you would like to learn more about how DatAdvantage and Varonis can help you secure your users, and take a data driven approach to compliance, please get in touch with us to have a FREE Data Risk Assessment, and see if you have any Teams with incorrect access.
Get Notified for New Blogs:
We post regularly on the platforms below, notifying our audience when we publish new pieces.
All views expressed on this blog are the author’s own and do not represent the opinions of any entity whatsoever with which the author
has been, is now or will be affiliated, inc. this organisation whose website the blog is hosted on, or any partner of this organisation.