In most organisations, despite their best intentions, users are your weakest link. Of the reported Australian data breaches in 2019 35% were human error.
So how do we save our users from themselves?
Multi-factor Authentication. Just turn it on! This is the single biggest step you can take to protect your user’s credentials and if you only do one thing after reading the blog, make it this.
Once MFA is setup, Azure Active Directory Identity Protection is probably next tool to explore by setting up conditional access policies, managing guest users and identifying and remediating risky sign-ins.