Cloudativ Assessment

Cloudativ Assessment is an enterprise-grade security posture evaluation platform purpose-built for Microsoft 365 environments. It empowers MSSPs, security consultants, and enterprise IT teams to conduct comprehensive, automated security assessments — without making any changes to your tenant. What It Does The platform connects to your Microsoft 365 tenant via read-only Microsoft Graph API permissions and evaluates your security configuration across 9 critical domains: Identity & Access Management (MFA, Conditional Access, legacy authentication) Privileged Access (PIM, just-in-time access, admin role hygiene) Device & Endpoint Security (Intune enrollment, compliance, BitLocker) Exchange & Email Protection (anti-phishing, DKIM/DMARC/SPF, mail flow rules) Microsoft Defender XDR (Endpoint, Office 365, Identity, Cloud Apps) Data Loss Prevention & Information Protection (DLP policies, sensitivity labels) Audit & Logging (unified audit log, sign-in monitoring, alert policies) Application Governance (OAuth consent grants, service principals, high-privilege apps) Collaboration Security (Teams, SharePoint, guest access, external sharing) Key Capabilities 70+ automated security checks with severity classification (Critical, High, Medium, Low) Compliance gap analysis against 41 global standards including NIST CSF, ISO 27001, CIS Controls v8, GDPR, PCI DSS v4.0, HIPAA, CMMC 2.0, Saudi NCA (ECC/CCC/DCC), UAE IAS, SOC 2, and more AI-powered remediation recommendations (optional GPT-4 integration) Comprehensive asset inventory across 33 entity types with change detection License utilization analysis with E5 value-leakage detection Professional reports in PDF, Excel, HTML, JSON, and CSV formats Multi-tenant management with role-based access control Progress tracking with assessment-to-assessment comparison Security & Privacy Strictly read-only — zero modifications to your Microsoft 365 environment Self-hosted deployment — your data never leaves your infrastructure Encrypted credential storage and TLS 1.2+ transport security Multi-tenant data isolation enforced at database and application layers No telemetry or data transmitted to Cloudativ Deployment Options Deploy on Windows Server, Linux, Docker, or Azure App Service with your choice of SQLite, PostgreSQL, or SQL Server. Single-binary deployment with no external dependencies beyond a database and Microsoft Graph API access. Who It's For Managed Security Service Providers (MSSPs) managing multiple client tenants IT security consultants delivering compliance assessments Enterprise security teams monitoring M365 posture across business units GRC professionals mapping controls to regulatory frameworks