Microsoft’s SharePoint enterprise content management platform is everywhere. An estimated 80 percent of the Fortune 500 use it in one form or another. Yet, in our experience, only about one-third of companies have a SharePoint security plan in place. A secure SharePoint environment is certainly possible and not too difficult to achieve. The best way to manage SharePoint security is by establishing some good governance up front and understanding how the business intends to use the environment.
Once an organization has conducted an assessment and identified risks, it should develop security policies and controls and then train employees rigorously to ensure that the rules will be adhered to, and enforced, over time. In this article, we provide recommendations for improving SharePoint security.