What you will answer
Control family, services managed, physical server and firmware practices, local and cloud network controls, email systems, documentation, change control, monitoring, and evidence readiness.
Are you responsible for a business network and not sure where you stand with physical, technical, and administrative IT controls? Use this guided self-audit to review services, identify gaps, prioritize work, and generate a practical report in about 10 to 15 minutes.
What this tool does
This self-assessment is built for IT administrators, network engineers, IT managers, CISOs, security managers, and business technology leaders who want a practical way to review control coverage by service area. Start by choosing physical, technical, or administrative controls, then select the services and systems you are responsible for.
At the end, you receive a dashboard, risk score, prioritized findings, recommended technical actions, and direct learning links to IT Perfection encyclopedia pages that match weak or uncertain answers.
Control family, services managed, physical server and firmware practices, local and cloud network controls, email systems, documentation, change control, monitoring, and evidence readiness.
An executive-friendly score, category risk bars, high-priority task list, remediation roadmap, and links to relevant ITperfection.com learning resources.
Most teams can complete a useful first pass in 10 to 15 minutes. A deeper review may take longer if you verify answers against systems while completing it.
Deliverables
Overall score, maturity level, category risk, unanswered items, and high-priority issue count.
Each weak answer becomes a finding with risk, business impact, how to verify it, and recommended action.
Tasks are sorted by priority so owners can start with the items most likely to reduce outages, exposure, or confusion.
The tool recommends related IT Perfection pages from the 900-page catalog so your team can learn more about each topic.
Interactive Tool
Start with physical, technical, or administrative controls, then select the related services you manage. The questionnaire will adjust and generate a focused report.
Choose the services you manage or influence. Physical controls include servers, firmware, repositories, rooms, power, and access. Technical controls include local network, cloud network, email, identity, endpoints, routers, switches, firewalls, and VPN. Administrative controls include policies, documentation, vendors, change control, lifecycle, and evidence.
Choose the recurring responsibilities you handle, such as operations management, monitoring, patching, backup, security administration, documentation, compliance, vendor coordination, or reporting.
Select at least one system area or service responsibility to load the assessment questions.
The report includes a score, maturity level, category risk summary, findings, recommended tasks, and IT Perfection learning links.
Knowledge Base
The tool uses these pages to recommend next steps. Search by system, vendor, risk area, keyword, or page title.
This tool is for initial guidance only and does not replace a professional IT assessment, cybersecurity audit, compliance assessment, penetration test, legal review, or formal risk assessment. Your answers are processed in your browser. Use the results as a starting point for review, planning, validation, and follow-up with qualified IT or cybersecurity professionals.

Created by Ali Hassani
Ali Hassani is a CISO, cybersecurity and IT consultant, and IT infrastructure leader with 25+ years of experience helping organizations manage Microsoft infrastructure, networks, servers, cloud services, cybersecurity controls, documentation, and operational risk. His credentials include CISSP, CCISO, CCNP, CCNA, MCSE, MCSA Security, MCITP, MCP, and MCTS.







IT Perfection can help with managed IT, co-managed IT, Microsoft 365, Azure, endpoint management, backup, server, network, documentation, monitoring, and remediation follow-through. For cybersecurity audits, compliance readiness, and vCISO support, the report can also point to OC Security Audit resources.
We use necessary cookies and limited analytics and advertising-measurement cookies. Select Accept to allow optional cookies or Deny to continue with necessary cookies only. No name or email is required. You may close this website at any time.