The right people see the right documents. Nothing more.
Uncontrolled SharePoint permissions are a data breach waiting to happen. IP Four audits and rebuilds your permission framework so sensitive documents are protected, external sharing is controlled, and every access event is audited.
Permissions configured to protect your data.
From granular permission frameworks to IRM protection and conditional access, we configure every layer of SharePoint security so your documents are protected without blocking legitimate access.
Granular Permission Framework
Permissions configured at site, library, folder, and document level. SharePoint groups aligned to your organisational structure. Permission inheritance managed to prevent accidental over-sharing.
External Sharing Controls
External sharing policies configured at tenant and site level. Guest access audited and time-limited. Anonymous link sharing controlled. External users see only what they are explicitly granted access to.
Information Rights Management
IRM applied to sensitive document libraries. Documents protected even after download. Printing, copying, and forwarding restricted based on sensitivity classification. Protection travels with the document.
Access Audit and Reporting
Unified audit log configured for SharePoint access events. Reports generated on who accessed what and when. Anomalous access patterns flagged. Audit data retained for compliance requirements.
Conditional Access Integration
SharePoint access policies integrated with Azure AD Conditional Access. Unmanaged devices restricted to browser-only access. Location-based access controls applied for sensitive sites.
Privileged Access Management
Site collection administrator access reviewed and minimised. Break-glass accounts documented. Admin access time-limited where required. Privileged access changes logged and alerted.
From permissions audit to secure access framework.
Permissions Audit
We review your current SharePoint permissions, identify over-sharing, broken inheritance, and excessive admin access. Risk areas documented and prioritised.
Permission Framework Design
Permission model designed based on your organisational structure and data classification requirements. SharePoint groups mapped to business roles. External sharing policy agreed.
Configuration and Remediation
Permission framework applied across all sites and libraries. Over-sharing remediated. External sharing policies configured. IRM applied to sensitive libraries. Conditional access policies enabled.
Audit Configuration
Unified audit log enabled and configured. Access reports scheduled. Anomaly detection rules created. Compliance reporting templates built for your regulatory requirements.
Admin Training
IT administrators trained on managing permissions correctly. Common mistakes and their consequences explained. Escalation process for permission requests documented.
Ongoing Access Reviews
Quarterly access reviews scheduled. External guest access reviewed and expired where no longer needed. Permission changes logged and reported. Annual full permissions audit included.
Access control delivered for UK organisations.
Law Firm, London
A law firm had SharePoint permissions configured by staff over several years with no governance. Sensitive client documents were accessible to staff who had no business need to see them.
Full permissions audit completed. 340 permission anomalies identified and remediated. IRM applied to client document libraries. Quarterly access reviews implemented. SRA compliance requirements met.
Financial Services, Edinburgh
A financial services firm needed to share documents with external clients and auditors without exposing internal data. External sharing had been disabled entirely, causing workflow delays.
External sharing configured with time-limited guest access and domain restrictions. Dedicated external collaboration sites created. Internal sites protected. FCA audit trail requirements met.
Healthcare Provider, Bristol
A private healthcare group needed to meet CQC requirements for document access controls. Staff were accessing patient-related documents they had no clinical need to view.
Role-based permission framework deployed aligned to clinical roles. IRM applied to patient-related document libraries. Access audit reports configured for monthly CQC compliance review. No further access control findings at next inspection.
Ready to secure your SharePoint permissions?
Book a free permissions audit. We will review your current SharePoint access controls, identify over-sharing and security gaps, and give you a clear remediation plan.