Overview of Secure Score Management

Overview of Secure Score Management

Microsoft Secure Score is a measurement of an organization's security posture, with a higher number indicating more recommended actions taken. The Secure Score report in Nerdio Manager allows you to view secure scores across tenants, drill down into the details, and work with recommendations. This enables you to easily manage the security posture of your accounts.

See this Microsoft article for details about how Secure Score works. Microsoft Secure Score

Enable Secure Score

You must enable Secure Score at the account level to be able to use this feature for the account.

To enable Secure Score:

  1. At the Account level, navigate to SettingsIntegrations.

  2. In the Modern Work tile, next to Secure Score, select Disabled.

  3. When prompted, confirm that you want to enable Secure Score.

    At the account level, Secure Score is now available in the Reports menu. In addition, at the MSP level the account is now included in the Secure Scores list.

View Secure Scores

Once the Secure Score feature has been enabled at the Account level, you may work with the reports.

Note: Optionally, at the MSP level, you can create a Global View for Secure Scores. This is in addition to the navigation shown below. See Overview of Global Views for details about creating a Global View.

To view secure scores:

  1. At the MSP level, navigate to Secure Score. Alternatively, at the Account level, navigate to ReportsSecure Score.

    Note: Not all features are noted below are available at the account level.

  2. Optionally, use the View By icons to change the view from by Category (shown above) to by Status (shown below).

    Notes:

    • The secure scores are described as a percentage of the achieved points, with the total achieved points out of the available points next to it.

    • The Category scores are shown as a percentage of the recommendations completed, as well as a raw number.

    • The Status view shows you the scores broken down by recommendation status, allowing you to see the number of available or completed points for all the available recommendations in each tenant.

      • The following statuses, noted in red, negatively effect the secure score: To Address, Planned, and Risk Accepted.

      • The following statuses, noted in green, positively effect the secure score: Third Party, Alternate Migration, and Total Completed.

  3. Select View details to drill down into the account's details.

    Note: This chart is a historical view of the achieved recommendation points within each category type.

    • Hover over any part of the graph to see its details.

    • Select any Category line to toggle it on or off the graph.

    • In the Breakdown Points By drop-down list, select Category or Status.

  4. In Recommended Actions, you can view the recommended actions that help you improve your score.

    Notes: The recommended actions list has the following information:

    • Score Impact: The percentage the secure score increases by addressing the recommendation.

    • Points Achieved: Total number of points current achieved for the recommendation. Recommendations may have partial points received in certain circumstances. For example, if only a portion of the endpoints are effected by the recommendation the points column reflects that.

    • Status: See above.

    • Regressed: Demonstrates if the points achieved for the recommendation have decreased, which indicates a change has been made to the product that may make the item less secure.

    • Category: Category for the recommendation.(Identity, Data, Device, and Apps)

    • Product: Which Microsoft product the recommendation applies to.

    • Last Synced: The last time the recommendation was synchronized with Microsoft.

    • You may search the recommendations by action name or ID.

    • You may filter the recommendations that are displayed.

    • Select View details to drill down into the recommendation's details.

Recommendation Details

The recommendation details have the following tabs:

  • General - This version of the General tab requires you to select Go to threat and vulnerability management to take action to launch Microsoft Defender, where you can mitigate or accept the threat/vulnerability.

  • General - This version of the General tab allows you to change the Status and type an Action plan directly in Nerdio Manager. This version is available for Exchange Online, for example.

  • Implementation

  • Exposed entities

  • History

Was this article helpful?

0 out of 0 found this helpful
Have more questions? Submit a request

Comments (0 comments)

Article is closed for comments.