Section

Overview

Executive security posture and operational risk overview.

Tenant Not connected
Privileged Access
n/a
Run scan for Entra permissions
Critical Vulns
0
No vulnerabilities loaded
Urgent Findings
0
No threat context loaded
Device Compliance
0%
No devices loaded
CA Policies Active
0
No CA policies loaded
Vulnerabilities
Risk Matrix
Privileged Access Exposure
Standing and PIM-based Entra role exposure from the latest permissions scan.
Privileged links
n/a
Run scan
Connect a tenant and run a live scan to populate privileged access posture.
Standards Readiness Snapshot
Cross-framework compliance highlights with focus areas needing additional hardening.
Device Distribution
Total Devices
0
Across all device types
Vulnerability Risk Overview
At-a-glance risk posture for immediate situational awareness. Use the explorer below to drill down.
Urgent Findings
Highest urgency findings and exploit context driving current risk.
Threat Label Guide
Threat activeCVE is marked as actively exploited in current data.
Wormable-LikelyPropagation indicators plus delivery or high-impact signals suggest spread potential.
Ransomware-LikelyPost-compromise privilege abuse combined with spread or high-impact indicators.
Initial-Access-LikelyDelivery and execution indicators suggest likely initial-access paths.
These labels are prioritisation heuristics from CVE metadata and exploit context, not definitive threat intelligence.
Severity Distribution
Impacted Devices
Devices with the broadest vulnerability overlap in the current feed. Click one to filter the explorer.
Top Impacted Devices
Risk Software
Software clusters contributing the most current vulnerability exposure. Click one to filter the explorer.
Top Risk Software
Vulnerability Explorer
MITRE ATT&CK Coverage + Heatmap
Tactic Coverage
Indicative coverage estimate by ATT&CK tactic. Values represent a posture-weighted heuristic derived from active Conditional Access policies and Defender signal quality — not a formally measured detection coverage score.
Heatmap
Hotspot matrix for rapid detection of lower-coverage tactics.
Cyber Essentials Technical Controls
Estimated control readiness
0%
Evidence-weighted readiness across the five Cyber Essentials technical control themes.
Framework reference: Cyber Essentials Requirements for IT Infrastructure v3.3 (from 27 April 2026) · Last checked: 29 Apr 2026
Scoring basis: Estimated from managed endpoint telemetry. For guidance only; not a formal certification outcome.
NIST CSF 2.0 Technical Signal Snapshot
Estimated function coverage
0%
Function-level proxy signals from endpoint, identity, and exposure telemetry.
Framework reference: NIST CSF 2.0 · Last checked: 29 Apr 2026
Scoring basis: Estimated from control and exposure telemetry. For guidance only; not a formal audit or certification result.
NIS2 Technical Signal Snapshot
Estimated technical signal alignment
0%
Framework reference: NIS2 Directive (EU) 2022/2555 · Last checked: 29 Apr 2026
Scoring basis: Estimated alignment from mapped technical signals. For guidance only; this is not a legal determination of compliance.
Scope: Covers selected Article 21 technical signals only. Governance approval, supply-chain assurance, business continuity, cryptography, training, effectiveness assessment, legal duties, and notification obligations require separate evidence.
Device Inventory NO LIVE DATA
Device Name Type OS Health Platform Ver. Engine Ver. Security Intel Ver. Missing OS Patches Vulns CA Policies
Conditional Access Policies
Compliance scale: 0% Low (Red) -> 100% High (Green)
Policy Gap Intelligence
Priority policy gaps based on state, coverage, and missing controls that increase attack-path exposure.
Policy Overlap & Duplication
Detects exact duplicates, high overlap, and conflicting controls to reduce policy sprawl and simplify CA design.
Priority Gap Queue
Conditional Access Journey Map
End-to-end policy journey from identity to enforcement, with misconfiguration hotspots, best-practice validation, and ATT&CK mapping.
Policy Remediation Design Path
Clear phased remediation path to remove critical gaps, reduce duplication, and harden policy enforcement.
Defender for Endpoint Policy Posture
Policy-level visibility across assignment coverage, configuration compliance, detection outcomes, communication freshness, and control gaps.
Endpoint Compliance & Communication
OS cohort posture based on policy compliance reporting, last communication, and unresolved policy gaps.
MDE Policy Inventory Explorer
Showing 0 policies
Entra Identity Posture
Privileged Roles In Use
Live role summaries will appear here after a tenant scan.
Service Principal Hotspots
Identity Risk Register
Filter by account type, stale inactivity, MFA signal, and over-permissive access to triage risky identities quickly.
Live only
No identity data loaded yet.
Identity Type Last sign-in Permissions MFA Tags
Permissions Map
Live privilege chain map from identities to groups, roles, and delegated permissions. Use this to explain lateral movement and privilege escalation routes.
No attack paths calculated yet.
100%
Microsoft Secure Score Recommendation Gaps
Control-level recommendations pulled from Microsoft Graph Security secureScores and secureScoreControlProfiles, grouped by workload to show where secure-score gaps remain.
Recommendation Breakdown by Workload
Defender Stack Compliance
Defender Health
Latest Platform Version
n/a
Coverage
0.0%
Compliance & Gap Reports
Generate criteria-based compliance and gap reports across Cyber Essentials, NIST, NIS2, Secure Score, Entra identities, MDE posture, Conditional Access, endpoints, and vulnerabilities.
Click domains to include or remove them from the report. Selected domains are highlighted in orange.
Risk Landscape
Priority Actions
Report Preview