TEAMS.TC.5031 - Security End User Reporting Should Be Enabled
Description
This test verifies that security end user reporting is enabled in Microsoft Teams.
Policy Statement
Contoso's company policy requires that users can report security concerns directly from Teams. This is important for maintaining a secure collaboration environment and enabling quick response to potential security threats.
Why This Matters
When enabled, users can report suspicious messages, links, and security concerns directly from the Teams interface, empowering your workforce to participate in organizational security:
- User Empowerment: Staff can report security concerns immediately
- Early Detection: Quickly identify phishing and social engineering attempts
- Security Culture: Promotes security awareness organization-wide
- Rapid Response: Security teams receive timely threat intelligence
- Compliance: Demonstrates proactive security posture
- Incident Response: Creates audit trail of reported threats
Security Benefits
With security reporting enabled:
- Users can flag suspicious messages instantly
- Security teams receive centralized reports
- Phishing campaigns are identified faster
- Users feel empowered to contribute to security
- Organization gains visibility into threat landscape
- Compliance requirements are met
Remediation Steps
- Navigate to Teams Admin Center - Messaging Policies
- Select the Global (Org-wide default) policy
- Under Security section, find Users can report security concerns
- Set this to On
- Click Save