Analytics in Action - Power BI & Fabric Governance and Security

Featured Service

Tenant settings are your first line of defence

Tenant settings define the perimeter of your Power BI environment. They control who can access what, which features are enabled, and how data flows in and out of your tenant. They're the fence around the property.

Most organisations configured these settings when they first rolled out Power BI and haven't revisited them. Microsoft has added 40 new settings in the last 24 months, and adds more every month. Your security perimeter has almost certainly drifted without anyone realising.

With agentic tools now capable of interacting with Power BI environments programmatically, the settings that were designed for a world of human users are increasingly no longer fit for purpose.

Tenant settings are critical but rarely urgent. Nobody's dashboard breaks because a setting is loosely configured. So they stay at the bottom of the list while the risk quietly compounds.

What a review typically finds

Preview features enabled that transfer data outside the organisation's Azure region, creating unintended data sovereignty exposure

External sharing enabled where it shouldn't be, exposing content beyond the organisation

Sensitive features enabled tenant-wide instead of scoped to appropriate security groups

New settings left at defaults that don't align with the organisation's security posture

Export and download permissions broader than intended

Inconsistencies between stated security policies and actual tenant configuration

Our Approach

Contextual alignment, not a generic checklist

There are no universally correct tenant settings. The right configuration depends on your organisation's specific security policies, regulatory requirements, data sovereignty obligations, and how your teams actually use the platform day to day.

We bring experience across government, financial services, utilities, and technology organisations to every review. That cross-industry perspective means we know which defaults actually cause problems at scale, which changes need careful stakeholder management, and which recommendations are critical versus nice-to-have. We prioritise the changes that reduce the most risk with the least disruption to your people.

What We Do

Beyond the perimeter

Governance and Security Reviews

Comprehensive assessment of your Power BI and Fabric environment against security and governance best practices, with prioritised remediation recommendations.

Testing and Release

Build structured release processes that catch performance and quality issues before they reach production.

Capacity Optimisation

Identify performance bottlenecks, eliminate unnecessary spend, and right-size your Fabric capacity for how your organisation actually uses it.

Monitoring and Alerting

Ongoing visibility into tenant health, usage patterns, and potential issues before they become problems your users notice.

Report Migration

Move from legacy reporting platforms to Power BI with a structured approach that preserves business logic and minimises disruption.

Fabric Roadmaps

Strategic planning for Fabric adoption and expansion, aligned with your organisation's data strategy and operational readiness.

Built from experience, not theory

Analytics in Action was founded because we kept seeing the same problem. Organisations with growing Power BI deployments were struggling to manage them effectively. Costs escalated, performance degraded, and governance gaps widened as the platform expanded.

Dr Steve Fox leads the consultancy with over twenty years of analytics experience across enterprise and government, including building analytics and machine learning capability at Microsoft UK and managing analytics at ANZ National Bank. That depth of experience across industries and scales is what we bring to every engagement.

More about us → Steve on LinkedIn →

Governance and security for Power BI and Fabric environments