15 minutes a day to the secure score of your dreams! | Quisitive
Solutions
Integration & Consulting
Help you move, operate, innnovate and thrive within the Microsoft clouds.
Application Development
Data & Analytics
Artificial Intelligence (AI)
Business Applications
Security
Digital Workplace
Infrastructure
Product Development
Technology
Explore the full list of technologies that our expert consultants can support.
Azure
Microsoft Teams
Microsoft 365
Power Platform
Dynamics 365
Power BI
Microsoft Copilot
Power Apps
Azure OpenAI
Sharepoint
Microsoft Fabric
Microsoft Sentinel
Azure Synapse
Windows
SQL Server
ERP Technologies
System Center
Microsoft Viva
Azure Virtual Desktop
Business Needs
Departmental solutions to ensure cloud and technology enablement across every area of your business.
Sales & Marketing
Operations
Human Resources
Finance & Accounting
Customer Service
Localization Services
Help you translate software so you can capture new business worldwide.
Language Engineering & NLP
Translations & Localization
Licensing
Experts in Microsoft cloud licensing and optimizing costs for your business.
Products
EmPerform
Provide people managers with flexible employee performance management software.
Velocity Insights
Monitor, analyze, and prioritize .NET, JavaScript or Node JS errors – all on one dashboard.
AgeChecker.net
Ensure local and federal compliance with our age verification tool for retail.
PowerGov
Engage citizens with a community development app for city maintenance and management.
MazikCare
Embrace patient-centered, collaborative care with our suite of real-time health solutions.
Care Path
Care Provider Link
Care Supply
Payer Matrix
Data Fusion
AMS
Deliver on your cloud strategy with a team that continuously monitors, improves, and optimizes your Azure environment.
ShopFloor
Empower production managers with cutting-edge manufacturing process management.
Spyglass
Take a proactive, continuous approach to optimizing your security environment and strategy.
Managed Services
Azure Management Services
Deliver on your cloud strategy with a team that continuously monitors, improves, and optimizes your Azure environment.
App Dev Program
Ongoing enhancements, app security, DevOps and reporting for apps running in Azure.
Data & AI Program
Operational support for running, monitoring and managing services for the Azure Data Platform.
Dynamics Program
Ensure the health of your Dynamics environments, optimize usage and encourage user adoption.
Digital Workplace Program
Optimize Microsoft 365 security, usage and user adoption with our digital workplace experts.
Security Program
Take a proactive, continuous approach to optimizing your security environment and strategy.
Power Platform Program
Get an extension of your team that ensures the health of your Power Platform.
Industries
Manufacturing
Education
Public Sector
Financial Services
Healthcare
Energy
Retail
Software
Resources
Blogs
Case Studies
Library
Newsletters
Events
News
Learning Channels
About
Investors
Leadership
Microsoft
Our Approach
Our Partners
Our Story
Awards & Recognition
Careers
Support
Contact us
Solutions
Back
Solutions
Integration & Consulting
Application Development
Data & Analytics
Artificial Intelligence (AI)
Business Applications
Security
Digital Workplace
Infrastructure
Product Development
Technology
Azure OpenAI
Microsoft Copilot
Microsoft Fabric
Azure
Azure Synapse
Azure Virtual Desktop
System Center
SQL Server
Microsoft Sentinel
Microsoft 365
Sharepoint
Microsoft Teams
Microsoft Viva
Windows
Power Platform
Power BI
Power Apps
Dynamics 365
ERP Technologies
Business Needs
Sales & Marketing
Operations
Human Resources
Finance & Accounting
Customer Service
Localization Services
Language Engineering & NLP
Translations & Localization
Licensing
Products
Back
Products
EmPerform
AgeChecker.net
MazikCare
Care Path
Care Provider Link
Care Supply
Payer Matrix
Data Fusion
ShopFloor
Velocity Insights
PowerGov
AMS
Spyglass
Managed Services
Back
Managed Services
Azure Management Services
Data & AI Program
Digital Workplace Program
Power Platform Program
App Dev Program
Dynamics Program
Security Program
Industries
Back
Industries
Manufacturing
Healthcare
Education
Energy
Public Sector
Retail
Financial Services
Software
Resources
Back
Resources
Blogs
Events
Case Studies
News
Library
Learning Channels
Newsletters
Investors
Back
Investors
Financial Reports & Results
Investor News
Earning calls
Contact
Contact us
About
Back
About
Our Story
Investors
Microsoft
Leadership
Our Partners
Awards & Recognition
Our Approach
Careers
Support
Search
Back
Terms of use
Privacy policy
15 minutes a day to the secure score of your dreams!
January 3, 2022
Cameron Fuller
Based on my experiences, the best approach to improving a secure score is to work on it for 15 minutes every workday. I hope to update this blog post with a 100 score – eventually.

I know that sounds like a bad infomercial for getting six-pack abs, but it’s not. This is a story about the lessons I have learned attempting to increase my Microsoft Defender for Cloud Secure Score and what works (and what did not). Let’s start with what did not work.

What did not work?

  • Let’s get everyone in a conference room and fix this: My previous attempt to tackle the increase of my secure score for a specific environment through sitting down with the team that was responsible for the environment for an hour or two every month to look at the secure score and see what items we could tackle. Unfortunately, the result had little to no impact because the timeframe was insufficient to get things changed due to change control and waiting up to a day to see when changes had been successful.
  • Hoping it would get better on its own: I will admit part of me just hoped that the issue would go away over time without my having to focus efforts to improve it. But, as it’s been said, hope isn’t a strategy.

What is working?

  • Fifteen minutes a day on weekdays: I scheduled a 15-minute appointment every weekday from 8:00 – 8:15 in the morning. This timeframe let me focus on our secure score and see any results (or lack thereof) from changes made the day prior. Additionally, this blocked my calendar each morning so I could focus on this initiative.
  • Teams communication: Communication via Microsoft Teams was truly a key to this approach. We established a group chat for the various SME’s who have resources in the subscription. This group chat led to discussions on specific, actionable items and opened up communication so that there were no surprises as changes occurred in the environment.
  • Removing dead / non-required resources: Unlike in the walking dead, aggressively hunt dead items in your subscription. Don’t let them hang around any longer. If they aren’t required (IE: dead), put a bullet in their head and get them gone. In all seriousness, why work on securing resources that are not even required any longer. Removing them decreases your costs and simplifies the securing of your environment. In my example (see Figure 2), this resulted in almost a 20 point increase in my environment (from 56 to 74).
  • Fix the easy stuff first: Get a win. Then, after removing the dead stuff, go cherry-picking. Find the easy ones to fix—those with quick fixes – especially the scripted ones. Get those knocked out. It’s very motivating to see your secure score increase over time from 26 to 88 (been there, done that, need to make the t-shirt – see Figure 1).
  • Development then production: Hopefully, you have a development environment and a production environment. If so, start with an item in the development environment first and then make the change in production after it’s successful.
  • Track metrics: I track the date, secure score, points secure, points not secure, unhealthy, healthy, and not applicable numbers as part of my 15 minutes a day. I also keep any notes for that date to remember what may have impacted my secure score (see Figure 2).
  • Track specifics: I also track each required change, including any unique indicators and specifics of remediations taken for that item. This is to promote re-use of the remediations for other environments. Additionally, I track what is negatively impacting our secure score in production environments to map back initiatives to work through in the development environments.
  • Schedule changes: Many required changes will need a change control process. These need to be scheduled in advance and approved. I built in any time for these processes as part of the 15 minutes a day. The result is that many days may not involve fixing anything in the environment, but instead, that time is focused on getting paperwork in place to make the change happen.
  • Automate, Automate, Automate: Any change made somewhere for your secure score is extremely likely to be needed again. Develop automated remediations through Azure Automation (PowerShell) and/or LogicApps for reuse.

Figure 1: Current secure score

Figure 2: Tracking metrics

Related posts
|
Read more
Uncategorized | 21 Sep
Quisitive Named on the Dallas Business Journal’s Ninth Annual Middle Market 50 List
Read more
Uncategorized | 8 Sep
Event Closed: Approachable AI Phillidelphia
Read more
Uncategorized | 6 Sep
Event Closed: Approachable AI Dallas
Read more