Entra Permission Risk Assessment

Microsoft Entra Permissions Management is a cloud infrastructure entitlement management (CIEM) solution that provides comprehensive visibility into permissions assigned to all identities – users and workloads – actions, to discover, remediate and monitor the permissions of users and resources across your multi-cloud infrastructure.

adaQuest will audit entitlement permissions posture across your multi-cloud infrastructure, provide risks assessment associated with Permissions Creep, and define a plan to right-size unused and excessive permissions, enable Just-Enough-Privilege for zero trust security.

Challenges:

• Understands how Permissions can impact the attack surface risk in your cloud infrastructure
• How to get a comprehensive visibility into permissions assigned to all identities
• Understand how to remediate and prevent identities from being compromised

Scope:

1. adaQuest will enable 90-Day trial licenses of permissions management on your Azure tenant.
2. Configure data collection settings for Azure and another cloud of your choice, AWS or GCP.
3. Add 1 Azure Subscription for Microsoft Entra Permission Management with up to 10 resources in that subscription.

With the Entra Permission Risk Assessment, we take a four-phased approach:

1. Your team will experience the power of Microsoft Entra Permission Management setup with a few connectors and Azure subscriptions.
2. Risk Assessment Report of permissions in your environment for excessive and unused permissions
3. Provide a roadmap to increase security posture by right-sizing permissions and enabling on-demand as-needed just-enough-permissions
4. Integrate Entra ML-powered Alerts with Microsoft Teams for collaboration of activities

Timeline and Activities: Week 1:

1. Entra Permissions Management Overview
2. Review your current Cloud infrastructure, discuss the required access prerequisites, and firm up the scope of the engagement
3. Onboard Entra on your Azure Tenant and Configure the Data Collection setting and subscriptions discussed in the scope. Week 2:
4. Discover, Revoke access to high-risk and unused tasks and resize user and machine identities permissions to improve your security posture.
5. Generate Risk Assessment Reports and Insights Week 3:
6. Present the Risk Assessment report along with a roadmap to monitor and automate the permission management of users and resources across your multi-cloud infrastructure.
7. Rework, present, and project Signoff

Additional Information: Microsoft 365 Cloud Security Compliance Advisory Services Identity & Access Management Threat Protection

Service Type: Implementation or Assessment

"Get a comprehensive visibility into permissions assigned to all identities on your organization. TAKE THE NEXT STEP TODAY"

*Prices vary based on the company´s size.