In today’s hybrid world, your clients’ teams log in from anywhere, at any hour and from any device. SaaS applications like Microsoft 365 and Google Workspace allow businesses to work from anywhere, but with that flexibility comes unseen risks.
During our “Microsoft 365 & Google Workspace User Health Check” webinar, hosted earlier this year, we explored what it truly means to maintain “user health” in a SaaS-driven world. And it’s not about physical wellness. It’s about end users’ digital profile — security posture, access hygiene and operational efficiency of every user account you manage.
As an MSP, your clients count on you to keep their environments safe, compliant and performing at their best. This webinar uncovered why user health is mission-critical, the tools you need to protect your clients’ cloud ecosystems and actionable best practices to strengthen user protection across Microsoft 365 and Google Workspace.
Why MSPs must care about user health and security
User health represents the overall well-being of your clients’ cloud environments. Understanding these health or secure scores can help you gain a competitive edge. MSPs who can measure, monitor and improve user health (secure scores) stand out as trusted advisors in a crowded market.
Protecting your clients in a cloud era must extend beyond laptops, firewalls, routers and switches. The reality is hackers have evolved. They’re no longer focused on endpoints — they’re targeting user identities. Compromising a user account is faster, cheaper and far more effective than breaking through traditional defenses. Your users are the new perimeter. The real battleground is the user profile — every identity that connects to Microsoft 365 or Google Workspace.
What keeps MSPs up at night isn’t always the big, obvious attacks — it’s the small, overlooked settings in Microsoft 365 and Google Workspace that can open the door to risk. Options like “always stay logged in,” “remember this device” or “set link to never expire” may seem convenient, but they create serious vulnerabilities.
As an MSP, your challenge — and your opportunity — is to ensure these environments are securely configured, continuously monitored and proactively managed. By taking control of user health and identity protection, you help your clients stay safer and one step ahead of cybercriminals.
What MSPs need to protect clients effectively
The cyberthreat landscape has evolved and so have the attackers. For MSPs, the biggest risks facing clients today are phishing, token theft and business email compromise (BEC). These identity-based attacks exploit the weakest link in the cybersecurity chain: human behavior and unsecured access.
According to the Phishing Activity Trends Report, in Q2 2025, over 1.13 million phishing attacks were observed, a 13% increase from Q1. Another research found that BEC attack volume surged by nearly 40% in June 2025, while credential phishing accounted for over 40% of all cash-out methods.
To effectively protect clients, MSPs need a layered, proactive approach that spans prevention, response and recovery.
Protect the user license and policy management: MSPs need advanced tools to enforce consistent, automated policies across Microsoft 365 and Google Workspace to reduce misconfigurations and improve secure scores.
Prevent attacks before they start: With phishing and token theft on the rise, MSPs need tools that deliver continuous threat monitoring, intelligent anomaly detection and instant alerts.
Respond fast: When attacks occur, response speed is everything. Automation helps MSPs isolate compromised accounts, revoke risky sessions and contain damage faster.
Recover with confidence: Resilience means being ready to restore normal operations quickly and securely. MSPs need reliable SaaS backup and recovery solutions that preserve business continuity and minimize downtime.
By investing in the right combination of prevention, response and recovery capabilities, MSPs can deliver the assurance their clients expect.
The major problem MSPs face today
There’s no single tool that can solve the challenge of constantly evolving identity-based attacks. However, the real problem isn’t the lack of tools — it’s the lack of integration.
MSPs need a holistic defense strategy that’s built on an ecosystem of integrated solutions that protect users, data and access from every angle.
Most MSPs juggle half a dozen different security products from multiple vendors. Each solution tackles a specific issue, but together they create complexity, inefficiency and blind spots.
Think about it this way: imagine if you had to buy Excel, PowerPoint, Word and SharePoint separately from four different companies.
That’s exactly what happens in security today. Disparate tools mean disjointed protection. When one vendor gets acquired, changes direction or stops supporting a feature, MSPs are left with broken integrations, point solutions that don’t communicate and growing operational headaches. This results in higher costs, vendor fatigue and heavier workloads for IT teams.
With Kaseya 365 User, MSPs get all the essential security components they need in one powerful platform.
Five key components to secure your clients’ end users
Securing your clients’ users requires a layered strategy that combines prevention, response and recovery. Here are the five core components every MSP needs to strengthen end-user security.
Email security: Stop phishing, malware and BEC attacks before they reach users’ inboxes with advanced threat detection.
Security awareness training: Empower users to identify and stop attacks in their tracks. Ongoing education builds a stronger security culture, reduces human error and minimizes the chances of security incidents.
Dark web monitoring: Detect clients’ compromised credentials before they’re exploited. Continuous scanning of the dark web helps MSPs act fast to prevent breaches.
Cloud detection and response: Gain complete visibility across your clients’ Microsoft 365 and Google Workspace environments. Identify suspicious activity, get instant alerts, automate response and neutralize threats in real time.
Backup and recovery: When all else fails, fast recovery matters most. Secure, reliable backups ensure your clients can get back up and running quickly after a security event.
Best practices to strengthen user protection in M365 and Google Workspace
To better protect your clients’ SaaS environments, you must combine the right technology with disciplined best practices. Here are a few proven steps to consider to minimize risk, close security gaps and keep user accounts protected.
Enable and enforce MFA: Multifactor authentication remains the simplest and most effective way to block unauthorized access. Make it mandatory across all user accounts and applications.
Use conditional access rules: For Microsoft 365, apply conditional access policies to limit logins by device, location or risk level.
Train end users regularly: Continuous awareness training helps to reinforce security best practices and turn users into a formidable first line of defense.
Monitor SaaS applications: Watch out for unusual activity across Microsoft 365 and Google Workspace, such as suspicious logins, privilege escalation or mass file sharing.
Track file-sharing behavior: Monitor shared links and document access to prevent data exfiltration and identify insider threats early.
Monitor OAuth logins: Closely track OAuth-based logins to detect suspicious access and prevent data breaches before they happen.
Remove unnecessary guest accounts: Regularly audit and delete inactive or unnecessary guest user accounts to minimize the attack surface and prevent unauthorized access.
Watch the webinar recording to discover how Kaseya 365 User strengthens your clients’ security posture while boosting your MSP’s profitability.Request a demo to see Kase
