Veri-Tech
Enterprise Plan

Maximum coverage, automation, and compliance assurance

The complete Veri-Tech platform. Everything in Professional plus Veri-Tune (375 Intune endpoint security controls with Policy Insights, modify-in-place remediation, and cross-platform coverage for Windows, macOS, iOS, and Android), Veri-Patch (feature update compatibility, AU-scoped device group sync), Veri-Vault Full (config restore, drift alerting, emergency accounts, activity log, tenant reconnect wizard), compliance evidence packages, multi-tenant hub, unlimited team members, and an AI Compliance Copilot grounded in your tenant data.

Ideal for

  • Compliance-focused organizations with audit requirements (SOC 2, ISO 27001, HIPAA)
  • Organizations requiring automated compliance remediation at scale
  • Enterprises managing multiple Microsoft 365 tenants
  • Security teams that need automated remediation with safety controls

Enterprise

$11,988/yr

$999/mo · Billed annually

One flat fee per tenant

No per-user or per-device fees — 10 users or 10,000, same price

Subscribe to Enterprise

923

Total controls

548

M365 (Veri-Guard)

375

Intune (Veri-Tune)

Unlimited

Team members

Tenant AssessmentScanning 923 controls…
52%
Overall Score
NISTCISISOCISAHIPAA
Entra ID
94%
Intune
78%
Exchange
71%
Teams
88%
Defender
92%
SharePoint
83%
923Controls
330Auto-Remediate
6Workloads
5Frameworks

What's included

Everything in Pro — scanning, dashboards, AI insights, runbooks, framework mapping — plus:

Automated Remediation

  • 330+ controls with one-click automated fixes
  • Six workloads: Identity, Intune, Exchange, Teams, SharePoint, Defender
  • Safety controls: report-only mode for Conditional Access, break-glass account protection
  • Just-In-Time (JIT) write permissions — granted before remediation, revoked after
  • Disruption risk ratings (None/Low/Medium/High/Critical) for every control
  • Dependency-aware execution ordering

Veri-Tune — Intune Endpoint Security

  • 375 controls across Windows, macOS, iOS, and Android
  • Assignment-aware dual scoring (deployed vs. configured)
  • Cross-source detection: Settings Catalog, Security Baselines, Compliance Policies
  • Policy Insights — overlap & conflict detection across every Intune policy, with downloadable detailed and executive reports (HTML / Markdown / PDF)
  • Modify-in-place remediation — edits existing misconfigured policies instead of creating overrides, with previous-value tracking for rollback
  • macOS device configuration + compliance remediation alongside Windows
  • AI-generated remediation plans with per-control dispositions
  • 3-tier dispatch workflow (green / amber / red) with change advisory and runbook generation
  • Dedicated policy assignment page with per-platform group selectors (Windows, macOS, iOS, Android)
  • CIS, NIST, SOC 2, ISO 27001, HIPAA, CISA framework mapping

Veri-Patch — Feature Update Intelligence

  • Guided prerequisite validation with telemetry setup wizard
  • Live update policy management (feature rings, quality updates, expedited patches, driver profiles)
  • Feature update compatibility scanning with per-device readiness
  • Group assignment for unassigned WUfB policies directly from the portal
  • Assignment status badges on every policy card (assigned / unassigned)
  • Automated AU-scoped device group sync (ready + blocked groups)
  • Recurring scheduled scans, CSV exports, shareable HTML reports

Evidence & Assurance

  • Compliance evidence packages for auditors
  • SHA-256 signed manifests for document integrity
  • Executive summary reports with framework-level scoring
  • Full audit trail of all scans and remediation actions

Multi-Tenant Management

  • Multi-tenant hub with cross-tenant comparison and drift analysis
  • Centralized dashboard across all linked tenants
  • Link additional tenants for centralized compliance management
  • Per-tenant RBAC (Owner, Admin, Viewer, Billing roles)

Veri-Vault — Full

  • Everything in Professional plus:
  • Config restore from any snapshot with JIT write permissions and audit trail
  • Drift alerting with configurable thresholds (email + HMAC-signed webhooks)
  • Vault Activity Log — full history of snapshots, restores, comparisons, and exports
  • Tenant Reconnect Wizard for re-binding disconnected tenants
  • Emergency Accounts with QR-code TOTP setup, scrypt password hashing, and AES-256-GCM Key Vault encryption
  • Download All Runbooks as ZIP; export comparisons as CSV
  • Snapshot completeness indicators and size-trend stats
  • Tier-based snapshot retention: 90 days / 1 year / 3 years

AI Compliance Copilot

  • Interactive AI chat grounded in your real tenant data
  • Ask questions about your compliance posture in natural language
  • Get control-specific remediation guidance and impact analysis
  • AI-generated Veri-Tune remediation plans with per-control dispositions
  • Powered by Anthropic Claude Sonnet — enterprise-grade accuracy

Enterprise Team Access

  • Unlimited team members per tenant
  • Role-based access control (Owner, Admin, Viewer, Billing)
  • Invite flow with email pre-assignment, 7-day expiry, and require-invite toggle
  • User audit log — logins, role changes, removals, invites
  • Bulk role changes with multi-select
  • Session revocation with 5-minute propagation
  • Access-denial UX for removed / invite-required / limit-reached users

Data & Governance

  • 3-year data retention (vs. 30/90 days on lower tiers)
  • Role-based access control (RBAC) with four roles
  • Full permission transparency — audit from Entra admin center at any time

+ HIPAA Compliance Pack

$199/mo add-on

67 controls mapped to 45 CFR Part 164 — the M365-observable subset of Administrative, Physical, and Technical safeguards. CFR-cited evidence reports for your HIPAA compliance program.

Frequently asked questions

How does automated remediation work?
Select failing controls from your dashboard and click "Remediate." Veri-Tech requests just-in-time write permissions, applies fixes (e.g., creating Conditional Access policies in report-only mode, updating Intune profiles), and then automatically revokes write permissions. Break-glass accounts are always excluded, and every action is logged.
What is the Compliance Copilot?
An AI-powered chat assistant that understands your specific tenant configuration and compliance results. Ask questions like "Which controls are failing for Exchange?" or "What's my NIST compliance score?" and get instant, data-grounded answers. Powered by Anthropic Claude Sonnet with no data retention by the AI provider.
What is Policy Insights in Veri-Tune?
Policy Insights scans every Intune policy in your tenant and surfaces settings that appear in 2+ policies — flagging value conflicts (policies fighting each other), redundant duplicates, and unassigned overrides. You get setting-centric and policy-centric views, filters, and downloadable Detailed and Executive reports in HTML, Markdown, or PDF. It's how you find the silent misconfigurations that accumulate over years of Intune administration.
How is Veri-Tune remediation different from before?
Veri-Tune now edits existing misconfigured policies in place rather than creating override policies that stack on top. You get a per-control strategy toggle (Modify vs. Override) with previous-value tracking for rollback, a 3-tier dispatch workflow (green / amber / red), and AI-generated remediation plans. macOS device configuration and compliance policies are auto-remediated alongside Windows.
How does multi-tenant work?
Link additional Microsoft 365 tenants to your account. The Multi-Tenant Hub provides cross-tenant comparison, drift detection, and a unified compliance view. Each linked tenant runs independent scans and has its own compliance dashboard.
Why is Enterprise annual-only?
Enterprise includes automated remediation capabilities that require ongoing infrastructure and support commitments. Annual billing ensures we can deliver the highest level of reliability and support for organizations running automated compliance at scale. The annual price ($11,988/yr) works out to $999/mo.
What is the HIPAA Compliance Pack?
An add-on ($199/mo) that maps 67 of your Veri-Guard controls to 45 CFR Part 164. It assesses the M365-observable subset of HIPAA Technical safeguards (§164.312), Administrative safeguards (§164.308), and a limited subset of Physical safeguards focused on Workstation Security (§164.310(c)) and Device/Media Controls (§164.310(d)). It does not evaluate workforce training, risk assessment documentation, Business Associate Agreements, or facility access controls — those organizational safeguards must be addressed separately. Deliverables: CFR-cited gap assessments, Required vs. Addressable scoring, and evidence reports for your broader HIPAA compliance program.

Have more questions? View all FAQs or email us

Resources & support

Getting Started Guide

Connect your tenant, run a scan, and start remediating

Control Frameworks

Browse 923 controls with framework mappings and remediation guidance

AI Features & Privacy

AI models, data handling, and transparency disclosures

Permissions Explained

Read and write permissions, JIT model, and how to revoke

Troubleshooting

Consent, scan failures, remediation errors, and permission issues

FAQ

Billing, scanning, remediation, and document questions

Ready to get started?

Connect your Microsoft 365 tenant in under 60 seconds. No credit card required to explore.

Subscribe to EnterpriseCompare all plans