What are your recommendations to an organization to secure Azure AD? What are the top priorities that they should follow besides of enabling MFA. Let's discuss this, folks, so we can help each other out!
Ok, I'll start.

1. Configure Conditional Access for your Admins. Would you be happy when your Global Admins would login from a untrusted location? I don't think so, so deny access and only allow Admins accessing from specific location(s)

1/?
2. Make sure that you have some logging in place. Azure Monitor, Log Analytics, etc. If you can use Azure Sentinel, go for it. Turn on the logging and have visibility. There are free data connectors like Azure AD, O365, Identity Protection, etc.
You can follow @DebugPrivilege.
Tip: mention @twtextapp on a Twitter thread with the keyword “unroll” to get a link to it.

Latest Threads Unrolled:
Those who think consciousness raising & movement building are disconnected, or even a distraction from electoral politics have not paid attention to the history of social change.In this thread, we
Read more
The 2020s will be known as the Remote Work decadeA few predictions of what is likely to emerge[ a thread ] Third Space: Office and Working from Home will
Read more
1/29: Have you ever had a concept explained to you that helps frame complex issues you’ve been wrestling with and opens your eyes to new possibilities? A concept that I
Read more
By continuing to use the site, you are consenting to the use of cookies as explained in our Cookie Policy to improve your experience.