Users, sessions, admin paths, mail flow, and tenant posture.
Secure Score, risky sign-ins, MFA exceptions, conditional access, mail security, DNS, and admin exposure.
The baseline assessment is the deeper report: infrastructure, identity, cloud, backups, vendors, security stack, and recovery readiness in one leadership-ready record.
The report should make the next decision obvious.
Reality. Risk. Order of work.The assessment maps where the business depends on technology and where ownership, recovery, or proof will fail under pressure.
Secure Score, risky sign-ins, MFA exceptions, conditional access, mail security, DNS, and admin exposure.
Endpoint coverage, server age, patch posture, critical workloads, local admin paths, and support boundaries.
Restore paths, immutability, recovery order, RTO/RPO reality, backup ownership, and clean-room assumptions.
External exposure, segmentation, remote access, DNS, certificate drift, uptime signals, and cloud dependencies.
Business applications, integrations, vendor access, data paths, ownership gaps, and escalation boundaries.
EDR, email security, backup, SIEM, SOC, SASE, identity, vulnerability management, and response runbooks.
The output is not a giant spreadsheet. It is a risk-ranked report, first actions, and a clear business case for emergency response, monthly preparedness, or stack management.
The assessment should lead to one of three decisions: fix a critical gap, put 3PS close on retainer, or clean up the stack so tools work together under pressure.
Close the highest-risk gaps first: identity, restore, exposed services, remote access, vendors, or fragile applications.
Annual retainer billed monthly so 3PS knows the environment before the emergency starts.
Security tools can be bought and operated through 3PS, but the retainer buys ownership and judgment.
Plain-English reporting that explains what changed, what remains, and what the next investment prevents.
Send the current pain, the business impact, and the systems that cannot be allowed to fail.