Protecting Your Organisation’s Identity Online — Email & Identity Security
Post-webinar summary covering why email remains the primary attack vector, modern password best practice, MFA deployment, and securing Microsoft 365 environments.
What's inside
- Attackers don’t break in — they log on
- Identity is the new security perimeter
- MFA prevents the vast majority of automated account takeover attacks
- Modern password practice: long, unique, password manager — not frequent rotation
- Microsoft 365 needs Conditional Access policies, not just MFA
This is the follow-up summary for our March 2026 webinar on email and identity security. The deck covers the modern threat model — credential stuffing, MFA fatigue, OAuth consent grants, hidden inbox rules — and the practical controls UK SMEs should have in place to defend against them.
It is suitable for technically-aware business leaders and IT managers, and assumes a working knowledge of Microsoft 365.