baref00t.io

// compliance / nis2

NIS2 Directive Compliance Assessment

EU

NIS2 Directive | EU

Assess your compliance with EU NIS2 Directive Article 21 cybersecurity risk-management measures. Mandatory for essential and important entities across the EU since October 2024.

One-off
$349

Single report, no commitment.

Monthly
$179/month

Continuous monitoring — fresh report every 30 days.

Available in AUD, USD, GBP, EUR, SGD. MSP partners get volume discounts via the partner programme.

What it scores

NIS21

All 10 Article 21 measures

risk analysis to MFA

NIS22

Incident handling, business continuity, and supply chain checks

NIS23

Automated identity, access control, and encryption validation

NIS24

Network and information systems security posture

NIS25

Governance questionnaire for policy and training evidence

NIS26

Maps to ENISA guidance and national transposition requirements

Microsoft APIs

  • Microsoft Graph (universal scopes, read-only across the tenant)
  • Azure REST (when the product reads Azure subscription posture)
  • Defender + Intune APIs where applicable

Customer prerequisites

  • Microsoft 365 tenant with admin-consent capability
  • Global Reader or equivalent for the consenting admin
  • No agent installs, no infrastructure changes required
  • Report delivered by email within 10 minutes of consent

Other Compliance

e8
Essential Eight ML1, ML2 & ML3 Assessment

Assess your compliance with the ACSC Essential Eight Maturity Model. Mandatory for Australian Government entities under

mcsb
Cloud Security Benchmark v2 Assessment

Assess your Azure and Microsoft 365 environment against the Microsoft Cloud Security Benchmark v2 — 14 control domains c

cism365
CIS Microsoft 365 Benchmark Assessment

Assess your Microsoft 365 tenant against the CIS Benchmark — the industry-standard security configuration guide recognis

See all Compliance Assessments