[et_pb_section fb_built=”1″ _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_row _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”4_4″ _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”]<\/p>\n
If you’ve noticed your Microsoft Secure Score percentage decreasing recently, don’t be alarmed. Your security hasn’t weakened.\u00a0 In fact, Microsoft is making significant enhancements that will ultimately make your organisation more secure. Here’s what you need to know.<\/p>\n
Throughout 2025, Microsoft has been rolling out a substantial wave of new security recommendations across their security platform. These additions are dramatically increasing the total possible Secure Score points available, which has a direct mathematical impact on your score percentage, even when your actual security controls remain unchanged or improved.<\/p>\n
Think of it this way: if you previously scored 800 out of 1,000 possible points (80%), and Microsoft adds 500 new recommended security controls, your total possible score jumps to 1,500 points. Your 800 points of implemented security now represents approximately 53%\u2014despite no reduction in your actual protection.<\/p>\n
This is exactly what’s happening across Microsoft 365 environments globally.<\/p>\n
Microsoft has introduced dozens of new security recommendations in recent months, including:<\/p>\n
New recommendations to block common attack techniques, including:<\/p>\n
Comprehensive identity security enhancements covering:<\/p>\n
While seeing your percentage drop can be concerning, these changes represent a significant positive development for several reasons:<\/p>\n
Microsoft is identifying security gaps that weren’t previously measured. These new recommendations address real-world attack vectors that threat actors actively exploit.<\/p>\n
The expanded recommendations align with frameworks including NIST CSF, ISO 27001, CIS Controls, and Australia’s Essential Eight. Organisations implementing these controls demonstrate security maturity.<\/p>\n
Many new recommendations specifically target techniques used in recent high-profile security incidents, including ransomware attacks and identity compromise.<\/p>\n
The enhanced Secure Score provides more granular insight into your security posture, helping identify areas for improvement that were previously invisible.<\/p>\n
As your trusted IT partner, Kinetics is actively managing this transition for all KARE Foundation subscribers:<\/p>\n
Our security team is systematically reviewing each new recommendation as it rolls out, assessing:<\/p>\n
We’re not simply chasing a percentage\u2014we’re implementing security controls that provide genuine protection for your organisation. This means:<\/p>\n
These new security controls will be evaluated and, where appropriate, added to the KARE Foundation service to provide even stronger protection against evolving cyber threats.<\/p>\n
Your Microsoft Secure Score is one indicator of security health, but it’s not the complete picture. Here’s what matters most:<\/p>\n
\u2705 Implementation of Microsoft’s recommended security controls<\/strong> \u274c Absolute protection against all threats<\/strong> A comprehensive security program includes elements that Secure Score doesn’t measure: employee security awareness, incident response capabilities, backup and recovery procedures, third-party risk management, and security governance.<\/p>\n The cyber threat environment continues to evolve rapidly. Recent trends include:<\/p>\n Microsoft’s expanded Secure Score recommendations directly address many of these emerging threats, particularly around identity security and endpoint protection.<\/p>\n These changes are being rolled out right now.\u00a0 Your Kinetics team is handling the technical evaluation and implementation. We’ll reach out if we identify high-priority controls that require business decisions or changes to your environment.<\/p>\n If you’d like to discuss your specific Secure Score or security posture, contact your Kinetics account manager or our security team.<\/p>\n The recent expansion of Microsoft Secure Score recommendations is ultimately positive for your organisation’s security. While you may see temporary percentage decreases, Kinetics is working behind the scenes to evaluate and implement these enhanced security controls, ensuring your organisation benefits from Microsoft’s latest security innovations.<\/p>\n Your security is much more than a simple percentage.<\/strong>\u00a0 It’s a comprehensive program of people, processes, and technology working together to protect your business. With Kinetics managing your Microsoft 365 security through KARE Foundation, you have a dedicated team focused on that protection every day.<\/p>\n
\u2705 Relative security posture compared to similar organisations<\/strong>
\u2705 Progress tracking over time<\/strong><\/p>\nWhat Your Score Doesn’t Indicate<\/h3>\n
\u274c Guarantee against security incidents<\/strong>
\u274c Complete security maturity assessment<\/strong><\/p>\nLooking Ahead: The Security Landscape in 2025<\/h2>\n
\n
What You Should Do<\/h2>\n
For All Clients<\/h3>\n
\n
For KARE Foundation Subscribers<\/h3>\n
Questions or Concerns?<\/h3>\n
The Bottom Line<\/h2>\n