Why one platform

Buying four separate tools doesn't add up to one TATER.

The GRC tool, the ITSM tool, the admin portal, and the engagement platform don't share users, don't share policies, don't share audit trail. TATER does — and you pay for one platform, not four. Compliance vendors charge extra for service desk; ITSM vendors charge extra for GRC. TATER ships both for one seat price.

One identity

Centralized user, role, and permission management.

Add someone once in TATER Manage. They're a real user in every TATER app with the right role. No re-onboarding when they need Ops access. No reconciliation when they leave.

Shared modules

Policies, risks, audits, vendors — same data, two surfaces.

A policy signed in TATER Ops is the same record audit pulls in TATER Security. A risk raised in a Security review is visible to the Ops team handling the remediation. One backing store, parity operations.

One audit trail

Cross-app activity log with full attribution.

Every action across every app — Security scans, Ops tasks, Manage config changes — flows into a single audit trail. Includes the "via" channel (web / MCP / Copilot / Claude / agent) so AI-assisted actions are traceable.

The full architecture matrix is published.

Which capabilities live in which app, which are shared, which belong to Admin? The matrix is the canonical reference for procurement, audit, and integration conversations.

View matrix →

TATER Security

Beyond audit checkboxes.

Most compliance tools tell you whether you'd pass the audit today. TATER tells you whether you're actually secure. 5,000+ controls across CIS M365, CISA SCuBA, DISA STIG, NIST 800-53, ISO 27001, ISO 42001 (AI), HIPAA, SOC 2, PCI-DSS v4.0, GDPR, FedRAMP, CMMC — plus operational frameworks ITIL 4 and NIST SP 800-61 on the Ops side. Commercial / GCC / GCC High / DoD-aware. Federal ATO pipeline (POAM / RMF / SSP / OSCAL).

Real risk scoring with MITRE ATT&CK mapping and CISA KEV correlation
1,385+ automated remediation scripts (67 M365 + 1,318 endpoint hardening)
Continuous drift detection — daily scans, hourly remediation pulses
Multi-tenant for MSPs, three-tier client access (Monitor / Operate / Manage)

Explore TATER Security All features

Last scan · M365 Cloud · 2 hours ago

4,121 controls passing

127 controls failing · 23 high-severity

12 risk acceptances active

18 controls in remediation queue

6 frameworks at >90% compliance

Drift detected on Conditional Access policy "CA001-Block Legacy Auth"

Remediation script REM_ENT_BlockLegacyAuth.ps1 queued

TATER Ops

One service desk for the whole business.

IT help desk, DevOps engineering tasking, HR onboarding/offboarding, AR/AP procedures, vendor coordination, meeting capture and documentation. Per-department customization — your IT team works with one set of categories, statuses, and SLAs; your HR team works with another. Same backing store, different surface.

ITIL 4 + NIST SP 800-61 process profiles ship out of the box — pick a template, the form shows only the fields that standard requires
Multi-step workflow automation (trigger once, fan out N coordinated tasks with dependencies)
Scheduled runbook execution + drift monitoring on a per-org Azure Automation account
Microsoft Teams bot for meeting capture, chat commands, and a personal Tasks tab
Public intake portal + email-to-ticket — every team has a way for outsiders to file work

Explore TATER Ops All features

My open tasks (8)

[High] Review CB security baseline · due in 2 days

[Med] Approve change request CR-2026-0142 · vendor migration

[Med] Onboard new hire (Sarah Chen) · HR workflow step 3 of 5

[Low] Document yesterday's arch review meeting · overdue 1 day

12 templates active · 47 recurring tasks queued for tomorrow

5 process profiles seeded (ITIL Incident, Service Request, Problem, NIST 800-61 IR, Basic)

Workflow run · Quarterly access review

Step 4 of 6 complete · 12 of 18 reviews approved

TATER Manage

Tenant administration without the portal sprawl.

Organizations, users, subscriptions, MSP licensing, integrations, audit log, usage analytics, MCP feedback — one console for the SuperAdmin who runs the platform. Plus operational telemetry: agent fleet view, vulnerability inventory across endpoints, remote command channel, and multi-screen viewer for help-desk sessions.

MSP tier system — three access levels for client orgs (Monitor / Operate / Manage)
Per-org subscription state with seat licensing and billing visibility
Endpoint command queue with run-as-user / run-as-system + history
Azure DevOps inbound + outbound sync (TATER tasks ↔ ADO work items)

Explore TATER Manage Sales conversation

Tenant Admin · Active orgs

12 organizations · 3 MSP clients

47 active users · 2 pending invites

Subscriptions: 9 active · 2 suspended · 1 trial

Endpoint fleet: 234 agents · 218 online

6 high-severity CVEs across fleet (CISA KEV-correlated)

Recent · jmiles-a@TATERSecurity.com

approved policy "Acceptable Use 2026" (via web)

created risk RISK-0042 (via mcp/claude)

My TATER

Your TATER, surfaced.

Every user gets their own dashboard. Open tasks assigned to you. @mentions you haven't read. Favorites you starred. Activity from your peers. Leaderboard standings and achievement badges. The whole platform's gravity, focused into one personal view that's yours.

Open Ops tasks + recent activity stream in a single feed
Achievement system + leaderboard for evidence submissions, control passes, policy approvals
Community feed showing org-wide platform activity
Starred favorites — controls, policies, risks, wiki pages — quick access

Explore My TATER Sign in to yours

My TATER · jesse.miles@tatersecurity.com

Compliance Champion · Level 7 · 14 badges

8 open tasks · 2 due this week · 1 overdue

3 @mentions you haven't read

24 favorites · 12 controls · 4 policies · 8 wiki pages

Org leaderboard · #2 of 47 this month

47 evidence submissions · 19 control verifications

What sets TATER apart

Capabilities no other platform combines.

Most competitors do one of these. None of them do all three at the same time, in the same product, for the same per-user-seat price.

Three-Doc Rule

Every fix becomes durable knowledge.

When you (or your AI assistant) resolve a help-desk issue, TATER captures three artifacts automatically: the Ops task (lifecycle record), a ConfigDoc (this org’s specific state), and a TATERpedia wiki page (the generic playbook). All cross-linked. Same root cause won’t bite twice.

Enforced via MCP tool instructions. Vanta has nothing comparable.

Per-Org Scan Isolation

Each tenant gets its own scanner.

MSPs and sovereign-cloud clients can run scans from a dedicated per-org Azure Automation Account with its own app registration, certificate, and webhook. Client A’s scanner credentials never see Client B’s data. Required for FedRAMP / IL5 / multi-jurisdiction MSP deals.

Set up via scanWebhookUrl on the org record. Vanta and Drata are shared-tenant only.

Evidence Agent (Browser)

It opens portals and clicks for you.

The TATER endpoint agent (Go binary) launches a real Chrome browser via chromedp, waits for you to sign in, then systematically walks through Manual Review controls — takes screenshots, analyzes them with Claude, writes evidence comments. Closes the gap between “configured” and “verified”.

No SaaS GRC tool has anything like this. Drata Adversary & Vanta both still rely on human evidence uploads.

UEM — Endpoint Central parity

Compliance, ITSM, and endpoint management. One agent.

Live interactive PowerShell / bash shell, patch management, software deployment catalog, BitLocker / FileVault / LUKS recovery key escrow, USB / app-allow / JIT-admin / power / browser / DNS policies, Wake-on-LAN, process control, and an end-user self-service portal. ManageEngine Endpoint Central’s feature surface, built on the agents you already deploy for compliance. Read the docs →

Vanta + Drata + Sprinto all stop at “detect”. TATER Manage replaces your separate RMM / UEM.

Power BI & Power Automate

Live data into the BI tools you already pay for.

Six flat datasets exposed at /api/reports/powerbi for direct Power BI Desktop import. Custom Power Automate connector with triggers (scan-completed) and actions (create risk, trigger remediation). Vanta and Drata both publish CSV exports and call it integration.

Connector definition: /Docs/TATER-PowerAutomate-Connector.json

Meeting Capture (MCP-first)

Your AI does the extraction. TATER stores the substrate.

Upload a transcript (or paste from Teams Premium); your Claude/ChatGPT/Copilot session reads it via MCP and creates the tasks, change requests, business docs, and control assignments. TATER pays no LLM token cost — you bring your own AI. Outlook calendar surface included.

Plus an optional Teams meeting bot for live transcript capture (BYOC deployment).

Shared modules — same data, multiple surfaces.

Modules below live in one backing store. Both TATER Security and TATER Ops surface them with parity operations and a unified audit trail. No duplication.

Policies

Drafts, sign-offs, approval workflow, version history. One source of truth.

Risk Register

Heat map, 5×5 scoring, treatment tracking. Visible from both products.

Vendor / TPRM

Vendor onboarding, questionnaires, contract tracking.

Audit Management

Engagement planning, findings, evidence collection.

BCP / DR Plans

Plan library, BIA, RTO/RPO tracking, test schedules.

Exceptions / Waivers

Request workflow, approval chain, expiry enforcement.

Calendar / Events

Compliance dates, audits, policy reviews, tasks — unified ICS feed.

TATERpedia / Wiki

Cross-org knowledge base, search, validation.

Projects / Engagements

Multi-month initiatives with milestones, tasks, deliverables.

Change Control

Change requests, approvals, audit trail. Linked to scans + controls.

Trust Center

Public-facing compliance posture — share certifications with customers.

Meeting Records

Transcripts, attendees, decisions, linked artifacts. RBAC + sensitivity gating.

One platform for Microsoft 365 compliance and operations.

One platform. Four apps. Shared everything.

Supercharge your AI with TATER.