This document summarizes common approaches to securing SharePoint deployments and identifies common blind spots. It discusses securing the infrastructure and using SharePoint's security features, as well as deploying add-on security products. However, it notes that custom software and data security are often overlooked areas that require additional focus. A comprehensive security strategy is needed to secure SharePoint deployments and address evolving risks.