baref00t.io

// compliance / nist-csf

NIST Cybersecurity Framework Assessment

US

NIST CSF 2.0 | US

Assess your alignment to the NIST CSF 2.0 six functions. The de facto baseline for US federal contractors, critical infrastructure, and cyber-insurance underwriting.

One-off
$349

Single report, no commitment.

Monthly
$179/month

Continuous monitoring — fresh report every 30 days.

Available in AUD, USD, GBP, EUR, SGD. MSP partners get volume discounts via the partner programme.

What it scores

NC1

All 6 functions

Govern, Identify, Protect, Detect, Respond, Recover

NC2

22 categories with automated + questionnaire scoring

NC3

Identity & access, detection, and platform security fully automated

NC4

Governance and recovery via guided questionnaire

NC5

Maps to NIST SP 800-53 and SP 800-171 controls

NC6

Prioritised gap analysis with remediation roadmap

Microsoft APIs

  • Microsoft Graph (universal scopes, read-only across the tenant)
  • Azure REST (when the product reads Azure subscription posture)
  • Defender + Intune APIs where applicable

Customer prerequisites

  • Microsoft 365 tenant with admin-consent capability
  • Global Reader or equivalent for the consenting admin
  • No agent installs, no infrastructure changes required
  • Report delivered by email within 10 minutes of consent

Other Compliance

e8
Essential Eight ML1, ML2 & ML3 Assessment

Assess your compliance with the ACSC Essential Eight Maturity Model. Mandatory for Australian Government entities under

mcsb
Cloud Security Benchmark v2 Assessment

Assess your Azure and Microsoft 365 environment against the Microsoft Cloud Security Benchmark v2 — 14 control domains c

cism365
CIS Microsoft 365 Benchmark Assessment

Assess your Microsoft 365 tenant against the CIS Benchmark — the industry-standard security configuration guide recognis

See all Compliance Assessments