What we foundNo Safe Attachments policy detonates malicious attachments.
Why it mattersGaps here are the front door for phishing, spoofing and malware delivery.
Recommended actionMaintain a Safe Attachments policy scoped to all recipients with action Block.
What we foundNo endpoint-security disk encryption policy enforces BitLocker/FileVault.
Why it mattersUnmanaged or non-compliant devices access corporate data outside your controls.
Recommended actionDeploy a BitLocker (and macOS FileVault) disk encryption policy and require encryption in compliance.
Scope & basis
Read-only, point-in-time assessment against the Glow Cloud M365 Security Framework - a focused set of high-impact Microsoft 365 security controls in the domains shown. It is not an exhaustive review, and not a certification or accredited audit. Control-level evidence is available on request.
Disclaimer
Findings reflect tenant configuration at the scan date and the read-only data available to the assessment. They are provided for information only, do not guarantee security or regulatory compliance, and are not legal advice. Remediation and its implementation remain the client's responsibility.
Prepared by Glow Cloud SolutionsConfidential · 2026-07-13