Diagnostic

Detection & Recovery Evidence Pack

Proof of what you can detect, what you can recover, and where response capability breaks under pressure.

"We cannot prove we can detect, respond, recover, or demonstrate control maturity."

$4,450
Get the Recovery Evidence Pack →

What you walk away with

A permanent evidence asset you keep

The deliverable is a defensible record your leadership can act on, and it scopes the remediation that follows.

  • Detection coverage map
  • Ransomware blast-radius map
  • Restore proof pack
  • Security-operations gap map
  • Remediation priority register

How the diagnostic works

01Read-only inspection

A senior engineer inspects your live environment. Read-only access. Nothing changes and nothing breaks.

02Findings, scored and priced

You see what is actually risky, what it is costing you, and a fixed quote to fix what matters. Ranked in plain language.

03Your plan, either way

The remediation plan is yours to keep. Fix it with us at the quoted price, or hand the plan to your own team or another vendor.

This is for you if

  • You have a real decision or risk on the line: an audit, a renewal, a migration, a board question, or an AI rollout.
  • You want a senior engineer to produce the evidence, not a junior running a checklist.
  • You would rather pay a fixed scope and own a permanent artifact than rent open-ended hours.

It is not for you if

  • You want the cheapest possible scan with no intention of acting on it.
  • You are looking for open-ended staff augmentation with no defined finish line.

After the diagnostic

Remediation is scoped from the evidence

Never sold as open-ended hours. The diagnostic tells us exactly which of these you need, and what it should cost.

Stabilize

Close the urgent gaps the evidence surfaced, on a fixed scope, before they become an incident.

Control

Stand up the controls and operating model the environment was missing, in staged, measurable releases.

Operate

Senior technical ownership on retainer once the foundation is in place. Judgment and outputs, not break-fix hours.

Request a scoping session → How remediation works

Other diagnostics

See all →

Microsoft Estate Risk Ledger

A fixed-scope diagnostic of Microsoft 365, Azure, identity, licensing, infrastructure, and documentation risk.

Identity & Insurance Evidence Pack

Evidence of whether your Microsoft identity controls can withstand insurance, audit, or incident scrutiny.

Copilot & Shadow AI Exposure Report

Overshared data, Copilot readiness gaps, and unmanaged AI usage, mapped before AI amplifies the mess.

Migration & Cutover Plan

A controlled plan for mailbox, tenant, SharePoint, Teams, Slack, Azure, and legacy moves where downtime is expensive.

Endpoint & Workspace Control Baseline

The management, security, cost, and access model for Intune, Windows 365, Azure Virtual Desktop, and modern work.

Executive Risk & Spend Telemetry

Microsoft spend, risk, licensing waste, and operational bottlenecks turned into board-ready telemetry. Built in Power BI.

Collaboration & Workflow Operating Model

SharePoint, Teams, metadata, permissions, and Microsoft 365 workflows rebuilt into a cleaner operating model.

Request a scoping session