A Practical CMMC Log Review SOP for Entra ID and Defender
A monthly review fails when it becomes a memory test. For CMMC Level 2, I want a repeatable routine that shows what I checked, what I found, and what I…
Purview Content Explorer for CMMC Level 2 CUI Discovery
You can’t protect CUI that you haven’t found. When I review Microsoft 365 for CMMC Level 2, the first gap is often simple, data sits in places nobody expected. Mailboxes,…
Implementing and Governing the CMMC Level 2 Admin Consent Workflow in Microsoft Entra ID
One bad app consent can undo months of hardening. In a Level 2 tenant, CMMC admin consent is less about convenience and more about change control. If you support defense…
CMMC GCC High Migration Plan for Microsoft 365 in 2026
The hard part of a CMMC GCC High migration isn’t buying licenses. It’s drawing the right boundary for CUI, then moving identity, devices, mail, files, and evidence without breaking daily…
SharePoint Permission Audit Checklist for CMMC Level 2
One broken permission can expose an entire CUI library. When I review Microsoft 365 tenants for defense contractors, permissions are often where quiet risk hides. If you manage a CUI…
CMMC Level 2 Browser Hardening Baseline for Edge and Chrome
A locked endpoint with an open browser isn’t locked at all. When I build a browser hardening baseline for CMMC Level 2, I treat Edge and Chrome as managed system…
Purview CUI Labeling for CMMC Level 2 That Holds Up
A mislabeled CUI file can weaken your compliance story fast. When I build Purview CUI labeling for CMMC Level 2, I treat auto-labeling as a force multiplier, not a magic…
CMMC Level 2 Restore Testing Plan for Microsoft 365
A backup no one has restored is a promise, not proof. For teams handling CUI in Microsoft 365, that gap can hurt during an assessment and during a bad day…
CMMC Level 2 Shared Mailbox Security Checklist for Microsoft 365
Shared mailboxes look harmless until CUI lands in one. Then a convenience feature turns into an access-control problem. As of March 2026, I handle CMMC shared mailbox security in Microsoft…
CMMC Level 2 Guest Access Policy for Teams and SharePoint
One guest account can break a clean compliance boundary. When I write a CMMC guest access policy, I start with a blunt rule: if a Team or SharePoint site may…