All Posts

5 Essential Security Measures for Microsoft 365 You Shouldn't Ignore

The Center for Internet Security (CIS) recently released version 6 of the Microsoft 365 Security Benchmark, and with it comes several powerful new controls designed to strengthen cloud security and reduce modern threat risks.

The Center for Internet Security (CIS) recently released version 6 of the Microsoft 365 Security Benchmark on October 31, 2025, bringing new and updated recommendations that strengthen organizational cloud security. Redeemer Cyber is proud to announce that all of our Microsoft 365 Security Assessment and Remediation deliverables are now fully aligned to CIS M365 v6—within just one day of its release.

Automated scanning tools are powerful—but they’re not perfect. Many organizations rely entirely on them to evaluate their Microsoft 365 security posture, only to discover later that “100% compliant” didn’t mean what they thought it did. Here’s the reality: even the best Microsoft 365 cybersecurity scanning tools can only go so far.

Cybersecurity isn’t a one-and-done event — it’s a continuous process. That’s why Redeemer Cyber’s “The Works” Microsoft 365 Assurance Package is built around a simple but powerful principle: Assess. Remediate. Maintain.

In today’s threat landscape, every business is being told they need cybersecurity. Managed Service Providers (MSPs) offer to “take care of IT and security.” Managed Security Service Providers (MSSPs) sell 24×7 monitoring and alerts. Automated tools promise a quick scorecard that tells you how secure—or insecure—you are. So why choose Redeemer Cyber instead? Because none of those approaches are designed to deliver what you actually need: non-invasive, expert-led and thorough

SharePoint and OneDrive are powerful tools for collaboration, but they come with risks if left in their default state. Too often, organizations roll out Microsoft 365 and focus on productivity first—leaving security as an afterthought. Unfortunately, this creates a perfect window of opportunity for attackers.

Over the years, our founder has submitted more than 60 accepted tickets to CIS—ranging from corrections and enhancements to refinements in control impacts and rationale. This dedication earned him recognition as one of just 15 officially credited contributors to the CIS M365 Benchmark, trusted worldwide by businesses, governments, and non-profits.

Cyber Budget When it comes to Microsoft 365 licensing, many organizations hesitate at the price tag of Microsoft 365 E5. But in practice,...

Microsoft 365 is a powerful platform, but it comes with quirks that can surprise even experienced administrators. Over the years, I’ve...

We’ve standardized on the CIS Microsoft 365 Foundations Benchmark—the most trusted, comprehensive, and actionable security benchmark available for Microsoft 365. Here’s why we not only use it—but contribute to it.

Cyber Analyst at work When organizations think of a security assessment, the immediate value that comes to mind is identifying...

Cyber attacker sends Phishing email. Based on a True Story A user received a phishing email and—like many unsuspecting employees—clicked...

Secure Shield Multi-Factor Authentication (MFA) is one of the most effective ways to prevent unauthorized access, and many organizations...