Reinertsen Technologies
Reinertsen Technologies
Real estate & title IT, secured
Back to blog
Microsoft 365 January 2026 7 min read

7 Microsoft 365 Security Settings Every Title Company Should Enable

Mike Reinertsen, Reinertsen Technologies

Most title companies we audit have at least 3 of these 7 settings misconfigured or turned off entirely. Each one is a potential entry point for attackers.

1. Multi-Factor Authentication (MFA)

This is non-negotiable. MFA blocks 99.9% of account compromise attacks. Enable it for every user — especially anyone who handles wire transfers, has admin access, or works with sensitive client data. Use Microsoft Authenticator or Google Authenticator, not SMS.

2. Conditional Access Policies

Conditional Access lets you control how and where users can sign in. Block sign-ins from countries where you don't do business. Require compliant devices. Force MFA for risky sign-ins. These policies are available with Business Premium licenses.

3. Email Encryption for Sensitive Messages

Wire instructions, Social Security numbers, and closing documents should never travel in plain text email. Microsoft 365 includes built-in encryption — configure it so sensitive emails are automatically protected.

4. Anti-Phishing Policies

Microsoft Defender for Office 365 includes anti-phishing policies that detect impersonation attempts. Configure it to protect your executives, closers, and escrow officers — the people most likely to be impersonated in wire fraud attacks.

5. Audit Logging

Enable unified audit logging so you have a record of every sign-in, file access, and admin action. If a breach occurs, audit logs are essential for understanding what happened and meeting compliance requirements.

6. Data Loss Prevention (DLP)

DLP policies can detect and block emails containing sensitive information like Social Security numbers or bank account details from being sent to external recipients. This prevents accidental data leaks and adds another layer of protection.

7. Shared Link Policies in SharePoint/OneDrive

The default sharing setting in SharePoint and OneDrive is often "Anyone with the link" — meaning your closing documents could be accessible to anyone on the internet. Change the default to "Specific people" and audit existing shared links regularly.

Get your Microsoft 365 security audit

We'll review all 7 settings and fix what's misconfigured — usually in a single session.

Book a free consultation