Drakos Systems reviews the security settings on your Microsoft 365 tenant and checks for common weaknesses that attackers use to access email accounts, send from your address or intercept messages. Practical findings, clear recommendations and follow-up support if needed.
Request a Microsoft 365 security review
Drakos Systems reviews Microsoft 365 tenants for Northern Ireland businesses. Tell us how many users you have and we will explain what the review covers and what it costs.
A Microsoft 365 security review checks the security settings of your tenant. It looks at whether MFA is enabled, whether admin accounts are properly secured, whether mailbox forwarding rules are set up correctly, whether suspicious sign-ins have occurred, and whether email authentication records are in place. The aim is to find the gaps that could allow an attacker to access or misuse your email accounts.
Microsoft 365 accounts are one of the most targeted systems for small and medium businesses. Attackers look for accounts where MFA is not enabled, where admin passwords are weak or shared, and where mailbox rules have been quietly set up to forward messages to external addresses. Many businesses set up Microsoft 365 quickly and then never return to check the security settings.
The consequences of a compromised Microsoft 365 account can include access to all emails, ability to send from your address, access to SharePoint and OneDrive files, and in some cases the ability to reset other account passwords. A review helps identify these risks before they are exploited.
Microsoft 365 security settings checked
Whether MFA is enabled for all users and all admin accounts. Whether security defaults or conditional access policies are in place. Whether any accounts are exempt from MFA requirements.
Whether global admin accounts are used for day-to-day email. Whether there are too many global admins. Whether admin accounts have strong authentication and are separate from regular user accounts.
Whether any mailboxes have forwarding rules set to external addresses. Whether inbox rules are hiding or deleting incoming messages. This is a common sign of a compromised account.
Whether any accounts show sign-ins from unusual locations, unfamiliar devices or suspicious IP addresses. Whether failed sign-in attempts indicate a brute-force or credential-stuffing attack in progress.
Whether SPF, DKIM and DMARC are correctly configured for the domain. These records help prevent attackers from sending emails that appear to come from your address.
Whether Microsoft Defender for Office 365 anti-spam and anti-phishing policies are configured. Whether safe links and safe attachments features are available on the current licence.
Whether legacy authentication protocols that bypass MFA are still enabled. Attackers actively look for tenants where legacy auth is available because it can be used to bypass modern security controls.
Whether the current Microsoft 365 licence includes the security features the business needs. Whether upgrades to Business Premium or Defender add-ons would provide meaningful additional protection.
After the review, Drakos Systems provides a plain English summary of what was found, what the risk level is for each finding, and what to do next. Issues are ranked by priority so the most important changes can be made first without disrupting normal business operations.
Where fixes are straightforward, such as enabling MFA or removing a suspicious forwarding rule, these can often be resolved in the same session. More involved changes, such as implementing conditional access policies or deploying Defender for Office 365, are discussed and planned separately.
A Microsoft 365 security review works best alongside:
Tell us how many Microsoft 365 users you have and we will explain what the review involves and what it costs.
A Microsoft 365 security review checks the security settings of your tenant. It looks at whether MFA is enabled, whether admin accounts are properly secured, whether mailbox forwarding rules are set up correctly, whether suspicious sign-ins have occurred, and whether email authentication records are in place.
Microsoft 365 accounts are a common target for attackers. Weak default settings, shared admin passwords, missing MFA and misconfigured mailbox rules can all create risk. Many small businesses set up Microsoft 365 quickly and never revisit the security settings. A review identifies the gaps before they are exploited.
MFA status across user and admin accounts, global admin account usage, mailbox forwarding and redirect rules, suspicious sign-in events, SPF, DKIM and DMARC records, email filtering settings, legacy authentication status and licensing.
For a small business with 5 to 30 users, a review typically takes a few hours remotely. The time depends on the number of users and mailboxes involved and how much follow-up configuration is needed.
Yes. A Microsoft 365 security review can be included as part of managed IT support from Drakos Systems, or carried out as a one-off check. Ongoing monitoring and security configuration can be added to a support package.
Based in Belfast. Working across Northern Ireland. Direct contact. No lead marketplace. No anonymous subcontractor chain.