The Microsoft 365 Zero Trust Mind Map

If you're new to the series, I highly recommend reading the first two articles in the Zero Trust series: Part I ─ Introduction & Part II ─ A Layered Approach against cyber threats

For the last few months, I've been deep diving into Zero Trust and I have been working towards making this new and challenging topic easier to grasp and to implement. I'm happy to announce that I have come up with the first version of the Microsoft 365 Zero Trust Mind Map.

The purpose of this map is to give a high-level view of what is available on Microsoft 365 (and Azure) in terms of security controls and how to choose between the different services across 4 majors areas:

• Securing Identities
• Detecting and Responding to Threats
• Protecting your Data
• Protecting your Cloud Workloads

This map focuses on Zero Trust from a Microsoft 365 (Modern Workplace) perspective, however it does cover a few Azure Areas without going into too much detail because it would make this map indigestible and harder to understand.

Microsoft 365 Zero Trust Mind Map

Securing Identities

Detect and Respond to Threats

Protect your Data

Protect your Cloud Workloads

You can find a higher resolution diagram on my GitHub: JadKaraki/M365ZeroTrust

As always, feedbacks are more than welcome. Happy to discuss in the comments!