As more and more businesses move to the cloud, it’s essential to ensure our services are more resilient to attack by decreasing the amount of time needed to prevent, detect, contain, and respond to real and potential cybersecurity threats, thereby increasing the security of services for customers. Effective operational security spans many domains—including physical security, staffing controls, asset management, and others—which are documented in numerous standards and frameworks. OSA outlines security engineering practices that organizations should adopt and is a framework used to improve core aspects of operational security of online services. 
There are a number of practices Microsoft uses that can help keep your online service more secure. Explore the Microsoft OSA practices >