Microsoft Secure Score is a free tool available in every Microsoft 365 tenant that measures how well your security controls are configured relative to Microsoft's recommendations. Hamilton365 reviews Secure Score as part of every M365 health check, the recommended actions list is one of the most useful views of a tenant's security posture.
Secure Score measures configuration against recommended security practices for your licence type. Each recommended action has a point value, completing actions increases the score. It does not measure all security factors, only the M365 configuration layer.
For a Business Premium tenant: above 50% of maximum indicates reasonable baseline. Above 70% suggests well-managed posture. Below 30% means fundamental controls are missing. The top recommended actions are more useful than the absolute score.
Enable MFA for all users, consistently the highest-impact action. Block legacy authentication protocols, they bypass MFA entirely. Ensure all Global Admins have MFA. Enable DKIM for your domain. Use dedicated admin accounts for privileged roles. Reduce Global Admin count to 4 or fewer.
Whether users can identify phishing emails. Whether backups are working. Whether there is a tested incident response plan. Secure Score is a useful benchmark and starting point, one tool among several in a comprehensive security review.
M365 Security Review & Improvement