SharePoint Defense in Depth

A community site for SharePoint security and compliance issues

About this community

SharePoint Defense in Depth is an open community site and resource for those interested in security, defense in depth, compliance, and SharePoint. This community site provides a place to pose questions to experts, and to learn how best to tackle your SharePoint security challenges.

For access to resources including a SharePoint Content Scanner, and SharePoint Risk Assessment, please create a login. Note that to limit spam and non-useful content on this site, we require either a valid corporate e-mail domain, or a legitimate LinkedIn profile for registrants before approving access.

Our simple goal is to provide the SharePoint community with tools and resources that enable you to more effectively secure your SharePoint environments. We encourage you to engage, and post your own tips, tricks, and resource to help make SharePoint sites more secure. If you have ideas as to how we can make the SharePoint Defense in Depth site a better community resource, please contact us on: info@sharepointdefenseindepth.com.

Blog Posts

Collaboration security in the Office Web Apps environments.

Posted by Site Admin on February 14, 2014 at 3:35pm 0 Comments

Let’s face it. Collaboration is the backbone for most any process intended to move projects through stakeholder channels, final drafts and completions.



For collaboration security, it's not surprising that certain team members will often be assigned different levels of tasks requiring access throughout SharePoint’s document management modules. But, not everyone is expected to have the same privileges, for example, to add or edit content.



As such, Office Web Apps used in…

Continue

Cloud security and SharePoint 2013 big concern among SMBs; hybrid solutions becoming common choice.

Posted by Site Admin on January 25, 2014 at 1:01am 0 Comments

In general, with all the concerns about cloud security, the full migration of critical files, folders and documents to the cloud is far from becoming an overwhelming choice by the C-level suite.



Instead of an all-or-nothing choice, a large number of SMBs using SharePoint continue to opt for a hybrid solution, or a combination of public and private hosting solutions.



A recent online survey conducted by …

Continue

Cloud security and SharePoint 2013 big concern among SMBs; hybrid solutions becoming common choice.

Posted by Site Admin on December 18, 2013 at 7:00am 0 Comments

In general, with all the concerns about cloud security, the full migration of critical files, folders and documents to the cloud is far from becoming an overwhelming choice by the C-level suite.



Instead of an all-or-nothing choice, a large number of SMBs using SharePoint continue to opt for a hybrid solution, or a combination of public and private hosting solutions.



A recent online survey conducted by Redmond Magazine indicated that of the 300 respondents 46.3 percent…

Continue

Personally Identifiable Information should go carefully into Libraries, MySite or SkyDrive; taxonomy, classification, security needed.

Posted by Site Admin on December 17, 2013 at 7:00am 0 Comments



It’s no surprise that with the blender approach to funneling data throughout the enterprise and organization the concern about Personally Identifiable Information (PII) is high in the minds of C-level folks and SharePoint administrators.



After all, when you consider the go-to sources available today, such as Libraries, lists, Dropbox folders, Amazon EC2 storage, SkyDrive and file shares, to name a few,…

Continue

Events

Videos

Forum

Take the CipherPoint's Annual State of Collaboration Security Survey

Started by Mike Fleck in General security topics Jul 14. 0 Replies

Each year, CipherPoint conducts a survey to understand businesses’ top security concerns relating to file…Continue

Government Agencies Deploying SharePoint Despite the Lack of FIPS 140-2 Level Validation

Started by K Nahbrha in Industry compliance. Last reply by Mike Fleck Dec 6, 2013. 1 Reply

How are government agencies deploying SharePoint 2010 despite the fact that SharePoint does not support FIPS 140-2 level validation as required by NIST?The operating system that hosts SharePoint must…Continue

Tags: DISA, Cryptography, NIST, 2010, SharePoint

Securing SharePoint

Started by Site Admin in General security topics Aug 16, 2013. 0 Replies

A reader posted this response to a blog we posted on the Snowden breach, and the SharePoint connection. What do you think...can SharePoint be securely deployed?JimOur blog is here:…Continue

Is anyone using RMS and SharePoint 2013?

Started by Mike Fleck in General security topics. Last reply by Kirk Hasty Jul 22, 2013. 1 Reply

One of our members just posted the above question in his status. Is anyone here using Windows Rights Management (or third party RMS provider) with *any* version of SharePoint? If so, please post your…Continue

Tags: 2013, sharepoint, management, rights

Latest Activity

Profile IconSlavek Kamionka and Stefan Estaquier joined SharePoint Defense in Depth
20 hours ago
Kai-Fan Hsieh is now a member of SharePoint Defense in Depth
Sep 18
Profile IconBernie Carolan and Chris Metsala joined SharePoint Defense in Depth
Sep 15
Profile IconHieu Dinh and Michiel Slingerland joined SharePoint Defense in Depth
Sep 9
Profile IconBruce young, John Johnson, Alan and 1 more joined SharePoint Defense in Depth
Sep 6
Joshua Park is now a member of SharePoint Defense in Depth
Sep 2
Alexander Zaika is now a member of SharePoint Defense in Depth
Aug 6
Kevin Brooks is now a member of SharePoint Defense in Depth
Jul 31
Theodore Hudson is now a member of SharePoint Defense in Depth
Jul 17
Profile IconEileen Lewis, adjete wilson and THEA SPRIGGS joined SharePoint Defense in Depth
Jul 14
Mike Fleck liked Mike Fleck's discussion Take the CipherPoint's Annual State of Collaboration Security Survey
Jul 14
Mike Fleck posted a discussion

Take the CipherPoint's Annual State of Collaboration Security Survey

Each year, CipherPoint conducts a survey to understand businesses’ top security concerns relating to file sharing and collaboration platforms like SharePoint and Office 365. The 2014 survey is underway and I encourage you to complete the survey. CipherPoint keeps responses completely confidential. They analyze the data and publish a free report so we can all understand how security in our area is evolving…See More
Jul 14
Profile IconEd Grossman and Guerin Moorman joined SharePoint Defense in Depth
Jul 8
Profile IconMarcus Chavira and JF joined SharePoint Defense in Depth
Jun 16
Ben Harris is now a member of SharePoint Defense in Depth
May 7
Profile IconColin Tong and Gerard Warrens joined SharePoint Defense in Depth
Apr 24

Photos

Loading…
  • Add Photos
  • View All

Sponsored by CipherPoint

 
 
 

© 2014   Created by Jim.   Powered by

Badges  |  Report an Issue  |  Terms of Service