Security starts with a foundation.
Foundation is the baseline layer of Amuneth. It is how we design and implement a secure-by-default Microsoft 365 environment that is stable, maintainable, and resilient — without turning daily work into a constant security obstacle course.
A secure environment is like a stable house: without a solid foundation, everything built on top becomes fragile. You can have monitoring, alerts and response procedures — but if identity is weak, email trust is broken, devices are unmanaged, or Defender is not properly configured, you are essentially operating on shifting ground. Foundation ensures the basics are right, so everything else becomes effective, measurable and sustainable.
For organisations with roughly 10 to 300 employees, the challenge is rarely “lack of intent”. It is lack of time, lack of specialist capacity, and the reality that Microsoft 365 security is not one switch — it is a system of interdependent controls. Foundation brings those controls together in a cohesive baseline, aligned to real-world risk and day-to-day usability.
Built for maximum security — without hurting users
Foundation is not about “adding security steps everywhere”. It is about designing controls that are strong, consistent and hard to bypass, while keeping the user experience predictable. Security that constantly breaks workarounds or frustrates teams creates shadow IT and exceptions. Foundation prevents that by using Microsoft’s capabilities the way they were intended: policy-driven, measurable and enforceable.
Strong identity
Most Microsoft 365 incidents start with identity. Foundation begins there: secure authentication, conditional access and least privilege.
- MFA baseline and modern authentication
- Conditional Access policies aligned to risk
- Privileged access hygiene and role clarity
Trusted email
Email is still the number one entry point. Foundation builds email trust and hardens inbound and outbound flows.
- SPF, DKIM and DMARC implemented correctly
- Anti-phishing and impersonation protections
- Mail flow hygiene to reduce abuse and spoofing
Managed devices
A secure tenant requires secure endpoints. Foundation uses device posture to make access conditional and enforceable.
- Windows Autopilot onboarding
- Intune configuration baselines and compliance
- Controlled access based on device health
Defender, onboarding, and operational readiness
Foundation is designed so that Watch can operate effectively. Monitoring and response only work if telemetry is consistent, devices are onboarded, and security controls are properly configured. We ensure the environment is not only “secure by design”, but also “operable in real life”.
Microsoft Defender onboarding
We onboard endpoints properly and tune Defender so that signals become meaningful rather than noisy.
- Microsoft Defender for Endpoint onboarding (MDE)
- Baseline policies and threat protection settings
- Alert tuning to reduce noise and increase clarity
Operational baselines
Foundation is built for long-term operation, not one-time implementation. Controls are structured, documented and maintainable.
- Standardised baselines with organisation-specific tuning
- Documentation that supports governance and audits
- Stable configuration to prevent drift and “exceptions everywhere”
Watch is most effective when your environment is consistent: identity controls in place, devices onboarded, and telemetry reliable. Foundation is what turns Microsoft 365 security from “a collection of settings” into an operational system.
What you gain with Foundation
Foundation gives you a Microsoft 365 environment that is secure by default, understandable for stakeholders, and ready for ongoing operation. It reduces risk, prevents silent drift, and creates the stable base required for continuous monitoring, reporting and compliance.
Lower risk
Fewer weak points in identity, email and device posture — and fewer “unknown gaps”.
Less friction
Controls that are strong and consistent, without forcing users into constant workarounds.
Ready to operate
Telemetry, policies and baselines that allow Watch to monitor and respond with clarity.