Purview Insider Risk Setup for CMMC Level 2
A single employee can move Controlled Unclassified Information faster than most teams can detect it. That is why a solid Purview insider risk setup matters for any contractor or subcontractor…
CMMC Level 2 Safe Links and Safe Attachments Baseline
A single email click can undo months of compliance work. When I review Microsoft 365 tenants for CMMC Level 2, I often find email protection half-set, poorly scoped, or hard…
CMMC Level 2 Workload Identity Security in Entra ID
Most CMMC identity work still centers on people, yet many real exposures start with an app, script, or pipeline. When I review Entra ID for Level 2 readiness, I often…
A Practical CMMC Secure Score Roadmap for Microsoft 365
Secure Score can pull a team into point chasing when what it needs is proof. I’ve seen Microsoft 365 admins raise the number, feel better for a week, and still…
Entra ID Cross-Tenant Access for CMMC Level 2
External collaboration is often the quietest hole in a CMMC boundary. A tenant-to-tenant trust that looks harmless can let weak identity assumptions cross into your environment. When I review Microsoft…
CMMC Level 2 Session Lock and Idle Timeout in Intune
An unlocked screen is one of the easiest audit failures to spot. If I’m mapping a CMMC session lock policy in Intune, I need more than a vague timeout setting.…
How I Set Up Intune Endpoint Privilege Management for CMMC Level 2
A laptop with standing local admin rights can undo months of CMMC prep in one bad install. When I deploy Intune endpoint privilege management for a Level 2 environment, I…
CMMC Level 2 Intune: Using Shared PC Mode the Right Way
A shared workstation can help your team, or it can wreck your audit trail. In a CMMC Level 2 Intune deployment, that difference usually comes down to identity, cleanup, and…
CMMC Level 2 DNS Filtering Checklist for Endpoints and Phones
One missed DNS setting can hand a phishing site a straight path to a managed device. For CMMC DNS filtering, I treat it as a practical control that lowers exposure…
A Practical CMMC Tabletop Template for Microsoft 365 Incidents
A generic tabletop won’t help me in a CMMC assessment or during a real Microsoft 365 incident. It also won’t help when an Entra ID admin starts approving MFA prompts…