Exchange Online configuration
Review of mail flow rules, shared mailboxes, retention policies, and anti-spam settings to ensure your email platform is optimised and secure.
Assessment · Modern workplace baseline
Modern workplace baseline audit for Microsoft 365
Mycelium 365 reviews how your Microsoft 365 tenant is actually configured — benchmarked against the CIS Microsoft 365 Foundations Benchmark — and shows you exactly what should be tightened, simplified, or optimised.
Fix the foundations before adding more on top. The result is a clear remediation plan you can act on, share, and build from.
What we audit
A thorough review of your Microsoft 365 tenant across the six areas that most affect security, productivity, and licensing value.
Security baseline review
Conditional Access policies, MFA enforcement, sign-in risk policies, and admin role assignments — checked against Microsoft and CIS best practice.
Identity and access management
Microsoft Entra configuration, guest access policies, group management, and licence assignment — ensuring your identity layer is clean and governed.
Intune and device management
Device compliance policies, app protection settings, and enrolment configuration — ensuring your endpoints are properly managed and protected.
SharePoint and OneDrive
Sharing policies, storage quotas, site architecture, and data governance — making sure your collaboration platform is not a security liability.
Teams and collaboration
Team creation policies, guest access settings, meeting configurations, and app permissions — ensuring Teams is structured, not chaotic.
What you receive
A clear remediation plan, not a sales pitch
The audit is designed to give you something useful you can act on — even if you choose not to proceed with uplift work.
- Identify misconfigurations costing you money and security
- Benchmark against CIS Microsoft 365 Foundations v6.0
- Prioritised remediation plan with clear next steps
- Licence utilisation and optimisation opportunities
- Australian data sovereignty considerations
- A comprehensive written report you can share with stakeholders
- A walkthrough call with your team
- Recommended uplift pathway across Microsoft 365
Who this is for
The modern workplace audit suits Microsoft 365 customers that want an honest baseline before the next investment, change, or AI initiative.
Microsoft 365 customers
You already run Microsoft 365 and want an honest, vendor-neutral view of how well your tenant is actually configured.
Teams reviewing their MSP or IT model
You are reviewing your current MSP or co-managed model and want an independent baseline of your modern workplace posture.
Organisations preparing for change
You are planning migrations, AI adoption, or a security uplift and want to fix the foundations before adding more on top.
Boards and leadership teams
You need a plain-English view of risk, configuration gaps, and licensing — without wading through technical reports.
How the audit works
A short, read-only engagement designed to give you clarity quickly — without disrupting your tenant or your team.
01
Discovery call
A short conversation to confirm your tenant, key business priorities, current pain points, and what you want from the audit.
02
Tenant review
We benchmark your Microsoft 365 tenant against CIS Microsoft 365 Foundations v6.0 across identity, email, administration, data governance, and collaboration.
03
Findings and roadmap
You receive a written report, prioritised remediation plan, and a clear view of quick wins, licensing optimisation, and longer-term uplift.
04
Walkthrough
We walk through the report with your team, answer questions, and agree on next steps — uplift, advisory, or a managed engagement.
Business outcomes
The outcomes we focus on when a modern workplace audit is delivered well.
Clarity on configuration
You know which Microsoft 365 settings are aligned to best practice and which need attention, across identity, email, and collaboration.
Evidence you can share
A written report you can use with the board, insurer, auditor, or as a baseline for ongoing managed service work.
More value from existing investment
Microsoft 365 licences, Entra, Intune, and Defender are configured to support the controls and features you already pay for.
Safer collaboration
Teams, SharePoint, OneDrive, and guest access are configured so collaboration helps the business without creating unmanaged risk.
Related services
The modern workplace audit sits alongside our advisory, Microsoft 365, and cyber security services.
Advisory servicesTechnology roadmapGovernance and compliance readinessEssential Eight baseline assessmentAI readiness assessmentMicrosoft 365 servicesMicrosoft Entra and identityMicrosoft IntuneMicrosoft Defender
Last Updated:
