M365 Security Assessment
Microsoft 365 Security Assessment
BSI IT-Grundschutz & GDPR-compliant assessment across 10 security domains. Get an immediate personalised score and actionable recommendations.
Question 1 of 13·ORP.4.A7·DSGVO Art. 32
Critical0 / 100
Is Multi-Factor Authentication enforced for all users via Conditional Access?
Why this matters: Without MFA a single stolen password grants full tenant access. Compromised credentials are the most common M365 attack vector.