Free Readiness Scan

How ready is your Microsoft 365 for ISO 27001?

Find out in under two minutes. We check your M365 security configuration against all 93 Annex A controls and show you your gap.

Read-only We never change anything in your environment
Nothing stored Results exist in your browser only. Close the tab, data is gone.
Under 2 minutes Three API checks. That is it.

Requires admin consent

A Global Administrator or Privileged Role Administrator must sign in and approve the read-only permissions. This is a one-time consent. The scan runs immediately after.

What permissions does this scan need?

The scan requests delegated, read-only access to three Microsoft Graph API scopes:

ScopeWhat it readsWhy
SecurityEvents.Read.AllMicrosoft Secure ScoreMaps to 7 controls covering MFA, malware, vulnerability management
DeviceManagementManagedDevices.Read.AllIntune device inventoryMaps to 8 controls covering device compliance, encryption, endpoint security
AuditLog.Read.AllDirectory audit logsMaps to 6 controls covering logging, identity management, change management

All processing happens in your browser. No data leaves your machine. The scan takes approximately 30 seconds.

The full Certaria product checks 3 additional sources: Purview labels, Conditional Access, and role assignments, covering up to 37 controls automatically.

Scanning your environment...

Reading your M365 security configuration. This takes about 30 seconds.

Microsoft Secure Score Waiting
Intune Device Compliance Waiting
Audit Log Configuration Waiting

You're further along than you think.

0
Already Covered
Your M365 provides full evidence
0
Partially Covered
Some evidence detected, needs completion
0
Still to Do
Requires policies, processes, or manual evidence

Microsoft Secure Score

Your tenant's security posture against Microsoft's recommendations.

--
0
What does this score mean?

Microsoft Secure Score measures how well your M365 tenant follows Microsoft's security recommendations. It covers things like multi-factor authentication, device compliance, data protection, and admin role management.

Your maximum score depends on which Microsoft services you use. A tenant using Exchange, SharePoint, Teams, and Intune has a higher maximum than one using only Exchange.

This score maps to 7 ISO 27001 controls covering MFA, malware protection, and vulnerability management.

Learn more about Secure Score on Microsoft Learn →

What your M365 already covers

ISO 27001 groups its 93 controls into four domains. Click any domain to see which controls your tenant evidences.

This free scan checked 3 sources. Certaria checks 6, continuously.

Free scan checks

  • Secure Score (MFA, malware, vulnerabilities)
  • Intune (device compliance, encryption)
  • Audit Logs (identity, change management)

Full product adds

  • Purview sensitivity labels
  • Conditional Access policies
  • Directory role assignments

+ continuous monitoring, audit reports, policy templates

Certaria reads the 3 additional sources your M365 already has, typically covering 37 controls automatically. For the rest, it generates your task list, provides policy templates, and guides you with an AI agent in Teams.

You keep using M365. Certaria turns it into a certified ISMS.

Get Certaria
API sources checked

Your data stayed in your browser. No scan results, tenant identifiers, or configuration data were sent to any server. This page has no analytics, no cookies, and no tracking. Close this tab and everything is gone.

Something went wrong