We fall into the SME bracket with approx 200 employees. We use a mix of Business Basic and Business Standard licencing for our 365 provision.<\/p>\n
Advertisement
My concern, since joining the business, is protecting this/us from phishing, scams, ransomware and whatever else bad players want to throw at us.<\/p>\n
Advertisement
We use Sophos protection for our Endpoints, nothing on mobile devices (although they are all Knox Managed).<\/p>\n
I am always of the opinion of not if<\/strong><\/em> it happens, it’s when<\/em><\/strong> it happens, and and such, I am looking into what we can put in place to protect our 365 tenant, emails etc, as soon as possible.<\/p>\n
I’ve used Mimecast and Spam Titan in the past, but interested in what others do to protect their 365 tenants, and of course, cost is a major factor, although try telling the Board to place a value on the data we hold when they reject proposals…<\/p>","upvoteCount":11,"answerCount":9,"datePublished":"2023-12-01T09:14:15.000Z","author":{"@type":"Person","name":"lftechnician","url":"https://community.spiceworks.com/u/lftechnician"},"suggestedAnswer":[{"@type":"Answer","text":"
We fall into the SME bracket with approx 200 employees. We use a mix of Business Basic and Business Standard licencing for our 365 provision.<\/p>\n
My concern, since joining the business, is protecting this/us from phishing, scams, ransomware and whatever else bad players want to throw at us.<\/p>\n
We use Sophos protection for our Endpoints, nothing on mobile devices (although they are all Knox Managed).<\/p>\n
I am always of the opinion of not if<\/strong><\/em> it happens, it’s when<\/em><\/strong> it happens, and and such, I am looking into what we can put in place to protect our 365 tenant, emails etc, as soon as possible.<\/p>\n
I’ve used Mimecast and Spam Titan in the past, but interested in what others do to protect their 365 tenants, and of course, cost is a major factor, although try telling the Board to place a value on the data we hold when they reject proposals…<\/p>","upvoteCount":11,"datePublished":"2023-12-01T09:14:15.000Z","url":"https://community.spiceworks.com/t/phishing-spam-security/963334/1","author":{"@type":"Person","name":"lftechnician","url":"https://community.spiceworks.com/u/lftechnician"}},{"@type":"Answer","text":"
There are many spam filters out there, from free to paid, including Microsoft Defender at the tenancy level.<\/p>\n
You should also consider backups as a way to recover, MS does not do this for you, they do however backup the data for their own DR and keep at least 3 copies of your data in 3 locations along with a 90day recovery window of deleted files.<\/p>\n
You want to list what you need, what you want and what doesn’t matter to you, then have a budget for this. Once you have these lists, get some prices and demos if you can or feedback from users of those specific systems.<\/p>\n
Personally, I use Defender for spam filtering and for my lab, I use Boxafe on Qnap to backup my 365.<\/p>","upvoteCount":1,"datePublished":"2023-12-01T11:29:08.000Z","url":"https://community.spiceworks.com/t/phishing-spam-security/963334/2","author":{"@type":"Person","name":"Rod-IT","url":"https://community.spiceworks.com/u/Rod-IT"}},{"@type":"Answer","text":"
Not sure if you already have a training regime for your users, but teaching your users how to identify what may be phishing can be very helpful in your security posture. We recently implemented a product called Phin, and have been very happy with it so far. It provides quick training videos from a few vendors, and also does automated phishing simulation testing that immediately gives feedback to the users in the form of what they term a “learning moment”.<\/p>\n
Just thought I’d mention since it does help when people know what be on the lookout for.<\/p>\n
