Request a Microsoft 365 security review

Drakos Systems reviews Microsoft 365 tenants for Northern Ireland businesses. Tell us how many users you have and we will explain what the review covers and what it costs.

Call 028 90 184 600 Email Drakos Systems

What is a Microsoft 365 security review?

A Microsoft 365 security review checks the security settings of your tenant. It looks at whether MFA is enabled, whether admin accounts are properly secured, whether mailbox forwarding rules are set up correctly, whether suspicious sign-ins have occurred, and whether email authentication records are in place. The aim is to find the gaps that could allow an attacker to access or misuse your email accounts.

Why Microsoft 365 Security Settings Matter

Microsoft 365 accounts are one of the most targeted systems for small and medium businesses. Attackers look for accounts where MFA is not enabled, where admin passwords are weak or shared, and where mailbox rules have been quietly set up to forward messages to external addresses. Many businesses set up Microsoft 365 quickly and then never return to check the security settings.

The consequences of a compromised Microsoft 365 account can include access to all emails, ability to send from your address, access to SharePoint and OneDrive files, and in some cases the ability to reset other account passwords. A review helps identify these risks before they are exploited.

Microsoft 365 security settings checked

Users MFA Admins Mailbox rules Sign-ins Licences
Synced

What Drakos Systems Checks

Multi-Factor Authentication

Whether MFA is enabled for all users and all admin accounts. Whether security defaults or conditional access policies are in place. Whether any accounts are exempt from MFA requirements.

Admin Account Security

Whether global admin accounts are used for day-to-day email. Whether there are too many global admins. Whether admin accounts have strong authentication and are separate from regular user accounts.

Mailbox Rules and Forwarding

Whether any mailboxes have forwarding rules set to external addresses. Whether inbox rules are hiding or deleting incoming messages. This is a common sign of a compromised account.

Sign-In Activity

Whether any accounts show sign-ins from unusual locations, unfamiliar devices or suspicious IP addresses. Whether failed sign-in attempts indicate a brute-force or credential-stuffing attack in progress.

Email Authentication Records

Whether SPF, DKIM and DMARC are correctly configured for the domain. These records help prevent attackers from sending emails that appear to come from your address.

Spam and Phishing Filters

Whether Microsoft Defender for Office 365 anti-spam and anti-phishing policies are configured. Whether safe links and safe attachments features are available on the current licence.

Legacy Authentication

Whether legacy authentication protocols that bypass MFA are still enabled. Attackers actively look for tenants where legacy auth is available because it can be used to bypass modern security controls.

Licensing and Feature Access

Whether the current Microsoft 365 licence includes the security features the business needs. Whether upgrades to Business Premium or Defender add-ons would provide meaningful additional protection.

What Happens After the Review

After the review, Drakos Systems provides a plain English summary of what was found, what the risk level is for each finding, and what to do next. Issues are ranked by priority so the most important changes can be made first without disrupting normal business operations.

Where fixes are straightforward, such as enabling MFA or removing a suspicious forwarding rule, these can often be resolved in the same session. More involved changes, such as implementing conditional access policies or deploying Defender for Office 365, are discussed and planned separately.

How It Connects to Wider Cyber Security

A Microsoft 365 security review works best alongside:

What Happens Next

  1. Call or email Drakos Systems to arrange a Microsoft 365 security review.
  2. We ask about your tenant size, current licences and any specific concerns.
  3. We carry out the review remotely using secure read-only access where possible.
  4. We provide a plain English summary of findings and recommended actions.
  5. We fix urgent issues in the same session where possible and plan further changes with you.

Request a Microsoft 365 Security Review

Tell us how many Microsoft 365 users you have and we will explain what the review involves and what it costs.

Call 028 90 184 600 Email Drakos Systems

Frequently Asked Questions

What is a Microsoft 365 security review?

A Microsoft 365 security review checks the security settings of your tenant. It looks at whether MFA is enabled, whether admin accounts are properly secured, whether mailbox forwarding rules are set up correctly, whether suspicious sign-ins have occurred, and whether email authentication records are in place.

Why do small businesses need a Microsoft 365 security review?

Microsoft 365 accounts are a common target for attackers. Weak default settings, shared admin passwords, missing MFA and misconfigured mailbox rules can all create risk. Many small businesses set up Microsoft 365 quickly and never revisit the security settings. A review identifies the gaps before they are exploited.

What does Drakos Systems check in a Microsoft 365 review?

MFA status across user and admin accounts, global admin account usage, mailbox forwarding and redirect rules, suspicious sign-in events, SPF, DKIM and DMARC records, email filtering settings, legacy authentication status and licensing.

How long does a Microsoft 365 security review take?

For a small business with 5 to 30 users, a review typically takes a few hours remotely. The time depends on the number of users and mailboxes involved and how much follow-up configuration is needed.

Can this be included with managed IT support?

Yes. A Microsoft 365 security review can be included as part of managed IT support from Drakos Systems, or carried out as a one-off check. Ongoing monitoring and security configuration can be added to a support package.

Related Pages

Based in Belfast. Working across Northern Ireland. Direct contact. No lead marketplace. No anonymous subcontractor chain.

Call 028 90 184 600 Email Drakos