Security Assessments
Enterprise security audits on your terms.
One-time assessments or ongoing monitoring. Every engagement includes executive-ready reports and remediation guidance.
Most Popular
One-Time Assessment
Comprehensive point-in-time security audit with executive reporting and remediation roadmap.
$10,000one-time
- Full tenant assessment
- Executive summary report
- IT operations report
- Compliance workbook (SOC 2, ISO, NIST)
- 30-day findings support
Monthly Assessment
Recurring security assessments with monthly executive reporting and trend analysis.
$2,000/month
- Monthly assessments
- Trend analysis & benchmarking
- Compliance workbook updates
- Priority email support
- Remediation tracking
Enterprise Program
Multi-tenant programs for MSPs and enterprise organizations.
Contact Us
- Unlimited tenants
- Custom reporting cadence
- White-label options
- Dedicated success manager
- API access
Compare plan capabilities
| Feature | One-Time | Monthly | Enterprise |
|---|---|---|---|
| Assessment frequency | One-time | Monthly | Custom |
| Executive report | Included | Included | Included |
| IT Operations report | Included | Included | Included |
| Compliance workbook | Included | Updated monthly | Custom frameworks |
| Tenant coverage | Single | Single | Unlimited |
| Support | 30-day email | Priority email | Dedicated manager |
Need a tailored rollout?
We support MSP programs, multi-tenant rollouts, and custom SLAs.
FAQ
Frequently Asked Questions
What is included in a security assessment?
Our security assessments include a comprehensive review of your Microsoft 365 and Azure environment, including identity security (MFA coverage, privileged accounts), device compliance, email security, data protection policies, and configuration best practices. You receive an executive summary report, detailed IT operations report, and compliance workbook mapping to SOC 2, ISO 27001, NIST, and CIS frameworks.
How long does a security assessment take?
Initial data collection takes approximately 30 minutes once you grant OAuth consent. Our platform analyzes your environment and generates reports within 24 hours. The one-time assessment includes 30 days of support for questions about findings and remediation guidance.
Do you require admin access to our tenant?
No. We use read-only OAuth permissions through Microsoft Graph API. We never have write access to your environment, and you can revoke access at any time through your Azure AD portal.
What compliance frameworks do you map to?
Our compliance workbook maps findings to SOC 2 Type II, ISO 27001, NIST Cybersecurity Framework (CSF), CIS Controls v8, and CMMC. We provide control-by-control evidence with timestamps suitable for auditor review.
Can I get a one-time assessment without a subscription?
Yes! Our most popular option is the $10,000 one-time assessment. You receive all three deliverables (executive report, IT ops report, compliance workbook) with 30 days of support. No recurring commitment required.
More questions? Contact info@polarisconsulting.net