Independent Microsoft 365 review

IT Security & Microsoft 365 Advisory

For sole traders and small NZ businesses, typically 1–10 users.

Independent Microsoft 365 security reviews designed to provide structured visibility and proportionate improvement — without enterprise complexity.

Who this is designed for

This service is built specifically for sole traders, professional services firms, consultants, and small teams that rely on Microsoft 365 but have never had a structured, independent review of their configuration.

Larger environments often require managed services or enterprise governance structures. This engagement is intentionally scoped for smaller teams that benefit from structured review without that overhead.

A few practical questions

These are common starting points for a structured review.

Would you know if a user successfully logged in from overseas?
Are you confident Multi-Factor Authentication is enforced consistently across all accounts?
Could someone send email that appears to originate from your domain?
Do you know your current Microsoft Secure Score — and what influences it?
Review the Assessment Scope

Why periodic review matters

Microsoft 365 environments rarely remain static. New features are introduced, recommended configurations evolve, and incremental changes accumulate over time.

In small organisations, configuration often reflects initial setup decisions rather than deliberate ongoing review. Without structured reassessment, maturity can stagnate even as the platform continues to evolve.

The purpose of this assessment is to establish a clear baseline, identify configuration gaps, and prioritise proportionate improvements — not to fix everything at once, but to move deliberately in the right direction.

What I provide

A structured, read-only assessment of your Microsoft 365 environment, supported by clear reporting and practical next steps.

Review areas

  • Identity and access configuration
  • MFA and Conditional Access posture
  • Email authentication (SPF, DKIM, DMARC)
  • Secure Score analysis
  • Collaboration and sharing configuration
  • Licensing alignment observations

What you receive

  • A clear executive summary
  • A detailed findings report
  • 3–5 prioritised recommendations
  • A walkthrough discussion

No alarmism. No lock-in. No unnecessary tooling.

Independent perspective

Many IT providers prioritise operational continuity and day-to-day support. Configuration maturity initiatives often benefit from focused, structured review outside normal operational demands.

An independent assessment creates that space — without changing providers or disrupting existing support relationships.

About

I’m Blair Mahuika, a Christchurch-based systems engineer with experience supporting Microsoft environments ranging from small teams through to organisations with over 1,000 users.

Across internal IT and managed services roles, I’ve worked with Active Directory, Microsoft 365, endpoint management, server infrastructure, and network environments — supporting both operational stability and structured security improvement initiatives.

One consistent observation: security outcomes improve when configuration is reviewed deliberately and periodically.

We’ve Seen Things IT exists to bring that same structured approach to small New Zealand businesses — without enterprise overhead.

I continue to work within complex Microsoft environments in my primary role, ensuring the advice provided remains aligned with current platform capabilities and best practices.

When was your Microsoft 365 configuration last reviewed?

Microsoft 365 security features and configuration options evolve over time. New controls are introduced, defaults change, and previously optional settings may become best practice.

If your Microsoft 365 environment has not been reviewed deliberately within the past 12 months, it is reasonable to assume some settings may no longer reflect current platform capabilities or recommended configuration.

A structured review provides clarity and prioritised improvement — without unnecessary complexity.