This presentation outlines a 10 wave methodology for securing a rogue SharePoint environment. It begins with backing up the server, removing old vendor access, resetting all user passwords, disabling unused accounts, updating service accounts, reviewing firewall rules and network traffic, changing email settings, addressing hardcoded values in workflows, applying security trimming, conducting quick security sweeps, and adding analytics tracking. The goal is to systematically document the environment, remove all old access, update accounts and permissions, and put monitoring in place to harden security. Regular communication with end users is also emphasized.