Microsoft 365 Security Guides
The Microsoft 365 security cluster for Canadian small businesses — start with the checklist, then go deeper into phishing defence and Conditional Access as you tighten the tenant.
Microsoft 365 Security Checklist
The complete 19-control Microsoft 365 hardening checklist for Canadian small businesses — MFA, Conditional Access, legacy auth, phishing defense, endpoints, backup, and incident response.
Read guidePhishing & Email Threat Defense
How to configure Microsoft Defender anti-phishing, Safe Links, and impersonation protection — plus a small-team awareness cadence that actually sticks.
Read guideConditional Access Policies for Small Business
How to design, test, and enforce Conditional Access in a Microsoft 365 Business Premium tenant — named locations, device compliance, sign-in risk, and the break-glass exclusions that keep you from locking yourself out.
Read guideRolling Out MFA Without Breaking Things
How to stage a Microsoft 365 MFA deployment across a real small business — shared mailboxes, service accounts, BYOD exceptions, break-glass accounts, and user communication.
In progressMicrosoft 365 Backup: What You Actually Need
Why OneDrive sync and the Recycle Bin are not enough, how to evaluate third-party backup, and what a verified restore looks like in practice.
In progressNeed help deciding which Microsoft 365 control to fix first? Start with the checklist, then request a free security assessment if you want help turning the guidance into a rollout plan.