The Scenario
A SA professional services firm has been using SharePoint for five years. Every team site was created without governance. There are sites shared with "Everyone except external users", broken inheritance everywhere, files with anyone-with-the-link sharing, and ex-employees still listed in some site groups. The CIO wants a controlled cleanup.
The Brief
Produce an audit and cleanup plan for the SharePoint estate. Cover discovery, classification, remediation, and the ongoing governance to keep the tenant clean.
Deliverables
- A discovery plan describing the queries and reports to run (PowerShell, Microsoft 365 admin centre, Purview) to surface the highest-risk findings
- A classification framework grouping sites into Tier A (sensitive, must be locked down), Tier B (internal collaboration), and Tier C (open / lifecycle ended)
- A remediation playbook covering: broken inheritance fixes, anyone-with-the-link revocation, orphaned site reassignment, and stale site retirement
- An ongoing governance section listing the controls (sensitivity labels, sharing policies, periodic reviews) and the KPIs the CIO sees monthly
Submission Guidance
Mass-revoking sharing links breaks workflows. The cleanup must balance hygiene with not paralysing the business. Sequence Tier A (security urgency) before Tier C (lifecycle), and communicate before each remediation wave.
Submit Your Work
Your submission is graded against the rubric on the right. If you pass, you get a public Badge URL you can share on LinkedIn. There is no draft save, so work offline first and paste your finished response here.