Validation (Proof)
Cyber Essentials Plus readiness service
Find the Microsoft 365, MFA, endpoint, patching, Defender and evidence gaps before your assessment date.
Microsoft 365 security consultant for UK SMEs
I review and fix Microsoft 365 security drift across Entra ID, Intune, Defender, Exchange and SharePoint, then leave the control map, change log and next checks with your IT owner.
Services
Microsoft 365 security work, with a defined route
Pick the route that matches the control gap: assessment readiness, tenant clean-up, endpoint management, identity policy or Defender operations.
Foundation (Core)
Microsoft 365 security clean-up
Fix tenant drift: risky access, unmanaged sharing, weak policies, Defender gaps and controls nobody owns.
Endpoints (Where)
Intune and Autopilot
Make device control practical: Autopilot, compliance policies, baselines, enrolment and exception handling.
Identity (Who)
Entra ID and Conditional Access
Tighten MFA, SSO, privileged access, legacy authentication, device trust and access exceptions.
Protection (What)
Defender endpoint clean-up
Turn underused Defender licensing into clear coverage, alert ownership and a working remediation process.
- MFA enforced on every admin account?
- Conditional Access blocking legacy auth?
- Defender baselines applied to all endpoints?
FAQ
The questions teams ask before the first call
Use this quick checklist to prepare for our first call. Click any question for a straight answer.
Pre-call readiness checklist
1. Tenant access
Know who owns admin roles, break-glass access and approval decisions.
2. Licences
List Microsoft 365 plans, Defender coverage and Intune availability.
3. Current controls
Note MFA, Conditional Access, device compliance and sharing rules.
4. Evidence
Bring recent screenshots, policy exports, exceptions or audit notes.
5. Priority risk
Pick the first problem to fix: identity, devices, mail, data or assessment evidence.
No. I work alongside your IT team or MSP on Microsoft 365 security, identity, endpoint and Cyber Essentials Plus readiness, then hand back clean documentation.
Most clean-ups run 2 to 3 weeks once access and context are ready. The work covers intake, tenant drift, identity, Defender, Intune and handover.
I review Microsoft 365, Intune, Defender, MFA, patching and endpoint evidence against Cyber Essentials Plus controls, then fix gaps and prepare assessor evidence.
No. Engagements are scoped before work starts and paid per engagement.
I work with UK SMEs and IT teams remotely. Typical client size is 20 to 500 staff using Microsoft 365 Business Premium or E3/E5.
I do. Magrathean UK is run by Gyorgy Bolyki — a Microsoft 365 security and identity specialist. You work directly with me, not a junior or an account manager.
Talk to Gyorgy
Send the tenant size, licensing, control worry and deadline
I will reply with the likely route, blockers and what I need before a call.