What is an Identity Secure Score?

Identity Secure Score provides organizations with increased visibility and control over their security posture by discovering opportunities that will help to improve security across your organization. These opportunities are surfaced as recommendations, which are coupled with the guidance and the workflows necessary to help security administrators implement each recommendation. The more improvements you make, the more your identity security posture improves—increasing your identity secure score! 

To see your tenants Identity Secure Score, just head over to the Azure portal, sign in with a global admin, security admin, or security reader account, and then navigate to Identity Secure Score in the Azure AD section. Along with this score you’ll instantly be able to see how your tenant compares to others in your same industry and size.

Improve your Identity Secure Score

So how do you improve your Identity Secure Score? Our top recommendations to is to protect your privileged accounts with Multi-Factor Authentication (MFA).  Users with highly privileged access should be treated with special care and require higher level of authentication all the time.

Jump in and walk through how you can use Identity Secure Score to make this change:

1. Within Identity Secure Score, select the Require MFA for Azure AD privileged roles
2. Read through the Description, What am I about to change? and How it will affect my users? sections.
   These sections explain why the action is recommended, the steps needed to take action and improve your security posture, and the impact it will have to your users or company.
3. Lastly, click Get Started, which directs you to the location where the instructed changes are needed.

Once you’ve implemented the guidance in the improvement action, it may take up to 48 hour for the awarded points show up in your tenants Identity Secure Score. While you’re waiting for your Identity Secure Score to increase, look all the other recommendations on how you can improve your security posture. The good news is that any Identity Secure Score improvement action satisfied here also shows up in your overall Microsoft Secure Score.

If you are all about API’s and want to integrate Identity Secure Score improvement actions into another product or service, such as your security information and event management (SIEM) or integrate into a custom dashboard, head over to the Microsoft Security Graph API documentation and learn how you can get full access to your secure score data.  

Your identity security journey doesn’t stop here. Remember to check your Identity Secure Score for guidance on how you can continually grow your identity security posture.