Feature · TATER Security

Fix failing controls, don't just admire them.

Most compliance tools stop at a red X. TATER runs the fix. One click on a failing control applies a vetted, tested fix to your Microsoft 365 tenant — and logs exactly what changed.

See it in a walkthrough How it works
How does this look?
app.tatersecurity.com/security.html · Remediation
Auto-remediation — fix-available controls with SLA tracking and one-click Remediate
What it does

Findings you can act on, not just report on.

Every failing control in TATER carries a Fix button. Click it and TATER applies the change directly in your tenant — then re-checks the control and records the result. No exporting a findings list to another team, no writing the scripts yourself.

One-click fixes

Trigger a remediation straight from a failing control. TATER pulls the vetted script, runs it against your tenant, and reports the outcome back to the control.

Across your whole estate

A library of remediation scripts spanning Microsoft Defender, Exchange Online, SharePoint, Entra ID, Purview, and Power Platform — mapped to CIS and CISA SCuBA controls.

The hard parts, handled

Exchange fixes need their own special connection setup — the kind of plumbing that stalls most automation projects. TATER handles it behind the scenes; you just click Fix.

Full audit trail

Every remediation is logged with who triggered it, what ran, and the result — attributed whether it came from the UI, an API call, or an AI agent via MCP.

How it works

Detect, remediate, verify — in one loop.

Remediation isn't a bolt-on. It closes the loop on the same controls TATER already scans, so a fix is never more than a click from a finding.

Detect

A scan marks a control as failing and surfaces it on the dashboard with its severity and framework mapping.

Remediate

Click Fix. TATER retrieves the vetted script from secure storage and applies the change in your tenant.

Verify

TATER re-evaluates the control, flips it to passing, and writes the whole action to the audit trail.

In practice

Where the Fix button earns its keep.

The security lead, Monday 9am

The weekend scan shows 37 newly failing controls after someone “simplified” sharing settings on Friday.

Filter to fix-available, multi-select, Fix. The fixes queue, the controls re-verify, and the log shows exactly what changed — before the 10am standup.

The MSP engineer

The same legacy-authentication finding is sitting red in nine different client tenants.

Each fix runs per-tenant with its own attribution and result. No PowerShell pasted between nine admin consoles, no wondering which client got which version.

The compliance manager, two weeks out

The auditor arrives on the 23rd and the gap list is sixty items long.

Sorting by fix-available burns half the list down in an afternoon — and every change lands in the audit trail with who, what, and when already answered.

Ready to set it up?

The setup guide walks through connecting the automation account, granting the remediation permissions, and running your first fix.

Remediation setup guide  →

Stop shipping findings to a backlog.

See automated remediation run against your own Microsoft 365 tenant in a live walkthrough.

Book a walkthrough All features