AS Cooling is an established provider of air conditioning, refrigeration, and climate management solutions across the UK. Their services include installation, planned maintenance, and responsive support for a wide range of commercial and domestic clients. As a growing organisation with increasing operational demands, AS Cooling relies on strong digital systems to manage customer information, internal communication, scheduling, and compliance. Maintaining a secure and reliable IT environment is essential to their ability to deliver consistent and high quality service to their customers.
AS Cooling required a modernised and well structured approach to security across Microsoft 365. They identified a need to raise their Secure Score and implement policies that strengthened identity protection, controlled access, and safeguarded data. While their systems functioned effectively, the organisation wanted to take proactive steps to ensure that device access, authentication, and email security followed industry leading best practice. The proposed solution was focused on improving Secure Score through a combination of Conditional Access controls and enhanced Microsoft security policies. By implementing these improvements, AS Cooling aimed to achieve a higher level of resilience, reduce the risk of unauthorised access, and strengthen protection across users, data, and applications.
To support AS Cooling in improving their security posture, we implemented a structured programme of enhancements across their Microsoft 365 environment. Conditional Access was configured and fully enforced, ensuring users accessed company data through approved conditions and security checks. This provided a strong foundation for identity protection across the organisation.
We enabled the Microsoft Defender Standard Policy to increase baseline protection for users and devices. Email security was significantly strengthened through updates to Anti Phish, Anti Malware, and Anti Spam policies, ensuring that users benefited from higher levels of threat detection and filtering. A Quarantine Policy was created, and global quarantine settings were updated to give the organisation clearer oversight and safer handling of potential threats.
User consent settings were reviewed and updated to prevent unwanted application permissions. We also implemented Data Sensitive Labels to support structured data governance, helping the organisation control access to important information. Company Branding was configured to ensure consistency and strengthen user confidence during Microsoft sign in processes.
To further protect the environment, we disabled the ability for users to install Outlook add ins without approval, and we disabled external calendar sharing. For staff using personal mobile devices, BYOD App Protection policies were introduced, ensuring business data remained protected with no impact on personal information.
The improvements delivered a substantial increase in security, visibility, and control for AS Cooling. With Conditional Access in place, the organisation gained stronger protection against unauthorised access, while still maintaining a smooth user experience. Users now benefit from enhanced email filtering, reducing phishing attempts, unwanted spam, and malicious content before it reaches inboxes.
The introduction of Data Sensitive Labels helped AS Cooling apply consistent data handling processes and strengthened compliance with information governance requirements. BYOD App Protection provided confidence that business data remains secure on personal devices without interfering with staff privacy.
The improved Secure Score reflects a highly secure Microsoft 365 environment, offering reassurance that modern cyber security standards are now embedded across the organisation. Together, these changes created a safer, more resilient platform that supports day to day operations and reduces risk across all levels of the business.
- Conditional Access fully enforced
- Strengthened phishing, malware, and spam protection
- Enhanced data governance through sensitivity labels
- Safer mobile working with BYOD App Protection
- Improved identity protection and reduced access risk
- Consistent company branded sign in experience
- Reduced exposure to malicious applications and add ins
- Controlled and secure handling of quarantined emails
