MicroAge ManageWise Microsoft 365 Assessment & Services

ManageWise Silver Package MicroAge is providing ManageWise Services for Microsoft 365 ("ManageWise") for The Client. ManageWise includes One (1) Prescheduled Assessment of the Microsoft 365 environment. In addition, ManageWise includes additional services hours which are pre-scheduled and project coordinated to provide remediation services based on assessment findings, additional support, and troubleshooting of the Microsoft 365 environment. Onboarding Client Introduction to provide initial point of contact with the Project Coordinator. The Project Coordinator will be responsible for Scheduling of assessments, client check-ins, meetings and working sessions. Ensuring Client Access and Client Pre-Requisites are ready and available prior to scheduling of Discovery and Planning. Client Kick-Off Call to review the preliminary project plan, project pre-requisites, client availability and resource availability. Discovery and Planning Discovery and Collaboration with the Client will be performed on the client environment for the purposes of completing the in-scope services provided in this statement of work. Microsoft licensing agreements. MicroAge engineers engage with designated client personnel to perform an assessment and review. MicroAge will review the client’s Microsoft environment against standard methodology and best practices. All work is to be performed remotely. Assessment of the 365 Tenant

Microsoft 365 Admin portal Azure AD Connect Version and health status Configuration customization and best practice Entra ID Configuration review for best practices Conditional Access Policies Lifecycle management of 365 Group expiration Assessment of external and guest access best practices Endpoint Manager Intune/Autopilot configurations and Packages for best practice Review Intune Reports for the state of Managed devices Device Compliance (and noncompliant) status & Configuration (Settings) Feature updates (Update Rings) Application Management Co-managed workloads Defender Security Admin Review Secure Score review for best practice Microsoft 365 Activity Logs (audit log) Review Alerts and Incidents Defender for Microsoft 365 configuration Purview Admin Review Review the following current policies for regulatory compliance across the Microsoft 365 Service Retention Data Loss Prevention Azure Information Protection Microsoft Teams Review Teams Usage and utilization, sprawl, archive review with governance 3rd party application restrictions and utilization Setting and policies review Security Group review for Teams creation and Governance with best practice recommendations Microsoft Teams Teams Usage and utilization, sprawl, archive review with governance 3rd party application restrictions and utilization OneDrive and SharePoint Online Review and assessment of sharing permissions with registered and non-registered guests Security Group review and assessment for Site creation and Governance with best practice recommendations

Security and Compliance Analysis: The assessment will review the organization's settings for security and compliance measures within Microsoft 365. This involves reviewing existing policies, permissions, access controls, data loss prevention settings, and compliance settings to identify vulnerabilities and recommend enhancements.

Identity and Access Management (IAM) Review: Evaluation of the organization's identity and access management practices within Microsoft 365. It may involve reviewing user provisioning and deprovisioning processes, authentication methods, single sign-on (SSO) configurations, and password policies.

The result of this Microsoft 365 assessment will provide an Executive Summary for tasks to remediate the assessment findings as well as offer recommendations to deploy other Microsoft 365 Services.

In-Scope Services for 40 hours: Administration of Microsoft 365 Admin Center Microsoft 365 Exchange Online Microsoft Purview Compliance Microsoft Defender Security Microsoft Entra ID Microsoft Endpoint Manager Microsoft Teams SharePoint Online Consulting and Engineering Services for Microsoft Licensing Entra ID Microsoft Exchange Online Microsoft OneDrive Microsoft Endpoint Manager Entra ID Multi-Factor Authentication Entra ID Single Sign-on for third party apps Entra ID Self Service Password Reset Office 365 Data Loss Prevention Information Rights Protection Advanced Threat Protection Microsoft Teams Voice Microsoft Teams