SharePoint Oversharing Audit
Audits sharing links and flags sites where external or broad access exceeds policy. Produces a risk-ranked table with remediation guidance.
E8: Restrict Administrative Privileges
EDUC4TE · Australian Governance Pack
12 EDUC4TE-authored SharePoint AI Skills mapped to Australian compliance contexts. ISM-mapped evidence trails, Purview labelling, oversharing remediation, site lifecycle controls — every skill ships with the Australian governance defaults built in.
New to the format? Learn what a skill is →
Audits sharing links and flags sites where external or broad access exceeds policy. Produces a risk-ranked table with remediation guidance.
E8: Restrict Administrative Privileges
Reviews unlabelled documents in SharePoint libraries and produces a gap report. Flags sensitive content types missing Purview sensitivity labels.
E8: Regular Backups
Compiles SharePoint permission reports, access logs, and governance records into a structured evidence folder ready for an Essential Eight ML2 assessment.
E8: Restrict Administrative Privileges · Regular Backups
Structures SharePoint documentation into the ISM-mapped evidence folders required for a 2026 IRAP QA Framework assessment. Timestamps and labels each item.
E8: Restrict Administrative Privileges · Patch Applications
Audits Entra Agent IDs across the tenant and flags agents with excess privilege, missing owners, or stale credentials. Aligned to Microsoft Entra Agent ID GA guidance.
E8: Restrict Administrative Privileges
Reviews Copilot Studio agents and connectors against DLP policy and flags gaps where sensitive data could leak. Aligned to DLP for Copilot Studio public preview.
E8: Application Control
Assesses tenant readiness for Microsoft 365 Copilot and Agent 365 rollout. Surfaces licensing, governance, and sharing prerequisites with a remediation checklist.
E8: User Application Hardening
Turns Purview DSPM for AI findings into a sequenced remediation plan with owners, target dates, and Essential Eight control mapping.
E8: Restrict Administrative Privileges
Drafts a Conditional Access policy for autonomous agents covering sign-in risk, device compliance, and session controls. Aligned to Microsoft Entra CA for agents preview.
E8: User Application Hardening
Records automated decision-making events with the transparency fields required by the Privacy and Other Legislation Amendment Act 2024. Produces an OAIC-ready log.
Drafts a SOCI Act incident response brief covering critical-asset impact, reporting timelines, and Home Affairs notification fields. Aligned to the November 2025 SOCI amendments.
E8: Regular Backups
Establishes a Zero Trust maturity baseline across identity, device, network, and data pillars. Maps current state to the Microsoft Zero Trust maturity model.
E8: Multi-factor Authentication