Plain-English Microsoft 365 Security Reviews — Remote, Nationwide
I help businesses without a dedicated security team identify common Microsoft 365, email, identity, and phishing risks — then provide a plain-English report with prioritized recommendations. Based in Houston, working with clients nationwide — remote reviews, no on-site visit required.
Most Businesses Don't Know What's Missing
Microsoft 365 gives you a lot of powerful tools out of the box — but the default settings aren't always the safest ones. Many businesses are using it every day without knowing whether key protections are turned on.
MFA and Sign-In Risk
Multi-factor authentication is one of the most effective protections against account takeover — but it's not always enabled for every account, or configured in the most secure way.
Email Security Gaps
Email authentication records like SPF, DKIM, and DMARC help prevent phishing and spoofing. Many businesses don't have them set up correctly — or at all.
Admin Accounts and Permissions
Overly permissive admin accounts are a common target. If an admin account is compromised, the damage can go far beyond one person's inbox.
Hidden Mailbox Rules
After an account compromise, attackers sometimes set up forwarding rules or inbox filters to quietly intercept mail. These are easy to miss if you're not looking for them.
Microsoft 365 Security Snapshot
A structured review of your Microsoft 365 environment focused on the areas most likely to be exploited. You'll receive a clear, written report — not a spreadsheet of jargon.
Check which accounts have multi-factor authentication enabled, review Conditional Access policies, and identify accounts with risky sign-in history.
Review which accounts hold admin or privileged roles, identify accounts that should have reduced permissions, and flag accounts where best practices aren't being followed.
Identify any forwarding rules or auto-redirect filters — especially ones that may indicate a previous or current compromise.
Review SPF, DKIM, and DMARC records along with Microsoft Defender for Office 365 anti-phishing and anti-spoofing settings.
Check Microsoft Secure Score, Defender configuration, and compare your environment against common security baseline recommendations.
A written summary of what was reviewed, what was found, and what it means for your business — written for owners and managers, not IT teams.
Findings are ranked by impact so you know what to address first. No long lists of things that don't apply to your situation.
Straightforward Packages
All packages include a written findings report. Choose the depth that fits your situation.
Security Snapshot Assessment
A focused Microsoft 365 security assessment with a written findings report and prioritized recommendations.
- MFA coverage check
- Admin role overview
- Email authentication check (SPF, DKIM, DMARC)
- Basic mailbox rule review
- Written findings report with prioritized recommendations
Business Security Assessment
A comprehensive assessment of your Microsoft 365 environment with a detailed report, risk ratings, and a debrief call.
- Everything in Security Snapshot Assessment
- Sign-in risk and Conditional Access review
- Defender and security baseline review
- Suspicious inbox rule and forwarding review
- Detailed findings report with risk ratings
- Prioritized recommendations with context
- Debrief call to walk through findings
Security Remediation
Assessment plus hands-on remediation of approved findings. Scoped, documented, and nothing changes without your sign-off.
- Everything in Business Security Assessment
- Hands-on remediation of approved findings
- Configuration assistance in your environment
- Documentation of changes made
- Final validation check
Ongoing Security Monitoring
Continuous monitoring of your Microsoft 365 environment so risks don't go unnoticed between assessments.
- Continuous Microsoft 365 security monitoring
- Alerts for new risks and misconfigurations
- Monthly summary report
- Periodic configuration check-ins
- Priority access for questions
Designed for small and medium-sized businesses using Microsoft 365 Business Premium, E3, or E5. Pricing may vary for larger or more complex environments.
Why Work With Me
I'm Oshé, a hands-on cybersecurity administrator — not a large firm, not a sales team. When you work with me, you're working with someone who actually does this work.
Based in Houston, working with businesses nationwide — remote-first, with on-site available locally in the Houston area.
My background covers Microsoft 365, identity and access management, email security, phishing defense, endpoint security, vulnerability management, and incident response. I work with the same tools that enterprise security teams use, applied in a way that makes sense for smaller organizations.
My goal is to give you an honest, clear picture of where you stand — and practical steps you can actually take. No scare tactics, no upselling things you don't need.
- Hands-on Microsoft 365 and Entra ID (Azure AD) experience
- Email security, phishing defense, and incident response experience
- Plain-English communication for business owners and non-technical staff
- Practical recommendations — not a long list of things that don't apply to you
- Endpoint security and vulnerability management background
A Simple, Transparent Process
From the initial conversation to your final report, here's what to expect.
Schedule a Quick Call
We'll spend about 20 minutes on the phone going over your environment, what you're concerned about, and what package makes sense for your situation.
Complete a Secure Intake
You'll fill out a short intake form with basic information about your Microsoft 365 setup. Any access needed will be discussed and agreed upon before we begin.
Assess Your Environment
I'll review your Microsoft 365 configuration according to the scope of your package. This typically takes 1–2 business days once access is in place.
Receive Your Findings Report
You'll receive a written report covering what was reviewed, what was found, and what to prioritize. Written for business owners, not IT teams.
Optional: Security Remediation
If you want help addressing specific findings, we can discuss remediation support. All work is scoped and approved before anything is changed in your environment.
Common Questions
It depends on the depth of the assessment. Some parts of the assessment can be completed with read-only or delegated access. If elevated access is needed, we'll discuss it before the engagement begins. Any access granted should be temporary, scoped to what's needed for the assessment, and revoked once the work is complete. You'll always know what access was requested and why.
Most assessments are completed within 3–5 business days from the time access is in place and the intake is complete. Turnaround may vary depending on the complexity of your environment and current schedule. You'll get an estimated completion date before we begin.
No. This is a configuration and security posture assessment — not a penetration test. I'm looking at how your Microsoft 365 environment is set up and comparing it against known best practices and common risk areas. No exploitation or active attack simulation is involved. If you need a formal penetration test, I can point you toward appropriate resources.
Yes. If you'd like help addressing specific findings, Security Remediation is available as an add-on or through the Security Remediation package. All remediation work is scoped, approved by you, and documented. Nothing is changed in your environment without your explicit sign-off.
Yes, the Security Snapshot is designed specifically for organizations using Microsoft 365 (formerly Office 365). If you use Google Workspace or another platform and want to talk about your security options, reach out — I'm happy to have a conversation and point you in the right direction.
Request a Security Snapshot
Fill out the form and I'll follow up within 1–2 business days to schedule a brief call. No commitment required.
- Response within 1–2 business days
- No sales pressure
- All work scoped and approved before it begins
- Prefer email? intake@amazincyber.com
Request Received
Thanks — your request has been received. I'll follow up soon.