top of page

Microsoft  365 Remediation

Flexible

Requires at least one recurring one hour working session a week. Remediation can be completed in as little as two weeks! The more often we can meet, the quicker we can get through all the security controls

Proven

We hold credentials such as Microsoft Certified: Cybersecurity Architect Expert and have performed many remediation projects for organizations of varied sizes from sectors such as municipalenergy, finance, and medical

Standardized

Implement up to 161 security controls

to reduce security gaps and risk using

the latest CIS M365 benchmark

Thoughtful

Swiftly reduce risk while minimizing impact to your business and customers. Includes expert support for active remediation projects and extended expert support for 30-days post-remediation

Measured

Remediate findings with respect to business need, licensing, and risk tolerance. Provides an excellent training opportunity for your internal resources

Tip of The Spear

We are an official CIS contributor to the Microsoft 365 Foundations Benchmarks. We don’t just follow the CIS M365 Benchmark — we helped shape it

161 Controls
20 Projects in One*

1. Access Reviews
2. CASB
3. Custom Banned Passwords
4. Device Encryption
5. Device Whitelisting
6. DLP
7. Dynamics Hardening
8. Entra Hardening
9. Exchange Hardening
10. Fabric Hardening
11. LAPS
12. OneDrive Hardening
13. PIM
14. Principal of Least Privilege
15. Risk-Based Conditional Access
16. Secure MFA
17. Secure Passwords
18. SharePoint Hardening
19. SPF/DKIM/DMARC
20. Teams Hardening

*Note
The CIS M365, CIS Dynamics, and RCC Controls do not go to exhaustive depth. The controls will be implemented to satisfy the documented remediation steps, no further. For example, implementing the DLP controls as written does not negate the need to explore DLP in a separate and more thorough project. These controls apply to M365 implementation ONLY - not on-premises or across other applications. If it is not feasible or appropriate to implement more complex controls at the time of remediation, a status of "Deferred" shall be given which will count towards project completion.

Extended Service Options

Need ongoing assurance after your 30-day remediation support grace period ends? Explore our extended service options. Tailored to give your business access to expert guidance post-remediation.

 

Some clients just need 2–3 months of support post-remediation while they stabilize. Others prefer ongoing assistance and priority access year-round. We support both, but we reward long-term commitments with lower rates.

Expert support

Non-emergent Q&A
• Quick Q&A support (available via email or Teams) response within 10 business days

Low priority
• Email and Teams response within 5 business days

Moderate priority
• Email and Teams response within 3 business days

High priority
• Priority Email and Teams response within 1 business day

Critical priority
• Expedited phone call or Teams response, within 4 business hours or ASAP

Limitations
• Must be related to M365 remediation project support topics.

Flexible Commitments

During active remediation and 30-days post

  • Included​

Month-to-Month

  • Starting at $1500/mo​

  • Up to 2 support hours/month

  • Cancel anytime

3-month extended service

  • Starting at $1425/mo​

  • Up to 2 support hours/month

  • 3-month commitment

12-month extended service

  • Starting at $1350/mo​

  • Up to 4 support hours/month

  • 12-month commitment

Perks

For 12-month extended service customers:

• 5% off all M365 Assurance Plans (excluding "The Works")

• 10% off M365 First-Response services

Our Prices*

rates 2.jpg

*Note
Pricing tiers are based on typical Microsoft 365 environments and user counts. Final pricing may vary for organizations in highly regulated or high-risk industries (e.g., healthcare, finance, government, aerospace) or for environments with advanced compliance requirements. Contact us for a tailored quote if your organization falls outside these scenarios.

Why our Services are Worth Every Dollar

1. You're Hiring a CIS Benchmark Contributor

  • Our founder isn’t just a CIS Microsoft 365 Benchmark Contributor—he is one of only 17 professionals officially credited in the benchmark. His contributions include dozens of accepted improvements, from refining technical guidance to strengthening rationales and impact statements, and even successfully lobbying for a new control (“2.1.15 (L1) Ensure outbound anti-spam message limits are in place”), which debuted in v6. That means you’re working with someone who understands exactly why each control matters, and how to implement them the right way — fast.

2. You're Getting Enterprise-Grade Expertise, Not Junior Help

  • No offshoring. No junior analysts. Just one highly-certified expert with 10+ years of hands-on experience, including public sector, private industry, and regulated environments. Your M365 tenant isn’t a lab — it’s your business. We treat it that way.

3. You're Paying for Speed and Certainty

  • In just 2 hours of your time, we identify what’s risky in your tenant. In as little as 2 weeks, we close those gaps using CIS-aligned remediation.

  • Other firms drag out timelines, bury you in fluff reports, or bill hourly without clear outcomes. We’re focused, fast, and comprehensive — because that’s what you deserve.

4. You're working to reduce the likelihood of a $150,000+ Problem

  • The average business email compromise (BEC) incident in 2024 cost $150,000.

  • Our services typically cost less than 10–15% of that — and help you prevent the breach in the first place. That’s not a cost. That’s a safeguard.

5. You're Buying Peace of Mind

  • Your Microsoft 365 environment is your identity system, your data, your email, your business continuity. When it’s properly secured, you sleep better, your auditors smile, and attackers move on.

Contact Us

Like what you see? Get in touch to learn more.

  • LinkedIn
bottom of page