Question 01
Where do your identity, email, endpoint and data risks sit?
Which controls fail, which warn, which are in critical state, mapped in detail.
Security
Microsoft 365 Health & Security Assessment
Request assessmentMicrosoft 365
Security
Managed Services
Backup & Recovery
Microsoft 365 · Health & Security
A technical assessment of your Microsoft 365 tenant across Identity, Email, Endpoints, Data, Compliance and Governance. The result is a report in Portuguese, a prioritised remediation plan, and a presentation session with the analyst in charge.
Read-only access, with no changes to your environment.
Why this assessment
This assessment is for organisations already running on Microsoft 365 that need to know, without ambiguity, the state of their tenant Your organisation's Microsoft 365 environment — your users, data and settings. . It does not replace migration: it assumes migration has happened. What it does is give you a structured risk read, against internationally validated baselines and against the Menshen team’s experience in aviation, public sector and banking environments in Angola.
It answers three concrete questions about your environment, based on recognised tools and senior analysis, not an automated questionnaire.
Question 01
Which controls fail, which warn, which are in critical state, mapped in detail.
Question 02
CISA SCuBA, Microsoft Zero Trust, Microsoft Secure Score and email best practices, in a single report.
Question 03
Roadmap across immediate, short, medium and long-term horizons, with estimated effort.
Scope
Every engagement covers all six pillars below. Nothing is left out by omission: if a pillar does not apply to your environment, it is recorded in the report with that explicit note.
Pillar 01
Microsoft Entra ID, MFA and Conditional Access, including privileged accounts and the user lifecycle.
Pillar 02
Exchange Online protection and Defender for Office 365, anti-phishing and email authentication (DMARC/SPF/DKIM).
Pillar 03
Microsoft Intune and Defender for Endpoint: compliance and protection of the devices that access the tenant.
Pillar 04
Microsoft Purview: sensitivity labels, DLP and retention policies.
Pillar 05
Mapping to international baselines (CIS, Zero Trust, NIST), with exposure read against regulatory requirements.
Pillar 06
Administrative roles, privilege separation (PIM), audit log and application consents.
Access requested
Read-only
Account with Global Reader and Security Reader roles. No changes to configuration during the assessment.
Tooling and methodology
The assessment cross-references recognised instruments (the CISA SCuBA baseline, the Microsoft Zero Trust Assessment and Microsoft Secure Score), a manual checklist, and the analysis of a Menshen senior technician. All in one report, with no black box.
CISA SCuBA baseline
The Microsoft 365 security baseline from CISA (the U.S. Cybersecurity and Infrastructure Security Agency), with mappings to NIST SP 800-53 rev.5 and MITRE ATT&CK. Automated control coverage.
Microsoft Zero Trust Assessment
Zero Trust maturity assessment across four pillars: Identity, Devices, Network and Data. Microsoft-validated score.
Recommended email configuration
Analysis of the Exchange Online configuration and email security against Microsoft-recommended best practices.
Microsoft Secure Score
Native Microsoft score, with recognition of alternative mitigations and tenant context.
Manual checklist + technical analysis
The 12 items the tools do not cover (governance, training, review processes), validated manually, plus the senior read that ties everything into a coherent plan.
How we run it
01 / 05
Scope
Remote collection and analysis. The final presentation session can be on-site (Luanda) or remote (Teams), as you prefer. Each phase has defined deliverables.
30-minute alignment call. Scope confirmation, technical contacts, NDA, execution window.
Access provisioning with Global Reader role (read-only, no changes). Collection pipeline executed remotely.
Cross-reference of the four instruments with the manual checklist. Priorities identified by the Menshen team.
Remediation roadmap built by horizon (immediate, short, medium, long-term), with estimated effort and owner.
Interactive presentation session (60 to 90 minutes). Final reports delivered, action plan agreed on the spot.
What you receive
The reports are produced directly in Portuguese, with no translation step: the content is native, with consistent technical terminology.
Deliverable 01
A short document for management, with priority risks and decisions to make. A longer appendix for the technical team, with every control justified and referenced to the baseline.
Deliverable 02
Led by the responsible analyst over an interactive report, filterable by product, severity and status. On-site in Luanda or remotely via Teams, open to questions and to plan adjustments in real time.
Deliverable 03
Roadmap prioritised by time horizon, adjusted to your team’s input in the presentation session. Basis for a possible follow-on remediation, as a separate project.
The assessment is a structured diagnostic, not a coverage guarantee. Its conclusions inform remediation decisions; remediation execution is a separate project, if you decide to pursue it.
This assessment is a standalone service, available on its own. If you want to keep the diagnostic current between assessments, Microsoft 365 Posture Monitoring and Managed Microsoft 365 give you the same read, every month. All delivered by Menshen's own local certified team.
Credentials
24 years as Microsoft Partner
Since 2002. Angola’s oldest active Microsoft partner.
10 Microsoft Partner of the Year awards
5 country awards and 5 regional awards. Repeated validation by Microsoft of our technical competence and customer success.
Methodology validated in real deliveries
The phased methodology, the technical pipeline and the presentation-session format are validated in real deliveries, for organisations with 50, 250 or 1,000 users.
Next step
You have decided to proceed
Answer 7 questions about your environment. The team confirms scope and sends a detailed proposal, with a fixed price and timeline.
Get a QuoteStill evaluating
30-minute call with a Microsoft 365 specialist to discuss your environment and decide whether the assessment makes sense now, or after other priorities.
Talk to a specialist