⚠ Pre-Flight Security Briefing
Slide a control through the X-Ray Scanner to reveal its threat model, concrete attack scenarios, before/after hardening demos, and blast radius. This is the adversarial view of Copilot — showing what each security feature actually defends against, not just what it does.
◉ X-Ray Scanner
◉ INITIALIZING SCANNER…
Security Posture Score
0%
Posture
At Risk
Compliance Mapping
| Framework | Control | Copilot Feature |
|---|---|---|
| SOC 2 | CC6.1 — Logical Access Controls | Feature Policies, Seat Management, SSO integration |
| SOC 2 | CC7.2 — System Monitoring | Audit Logs, Usage Metrics |
| SOC 2 | CC8.1 — Change Management | Copilot Autofix, Security Scanning, Agent Self-Review |
| GDPR | Art. 5(1)(b) — Purpose Limitation | Content Exclusion, Data Residency (EU) |
| GDPR | Art. 32 — Security of Processing | BYOK, Copilot Instructions (guardrails) |
| GDPR | Art. 30 — Records of Processing | Audit Logs |
| HIPAA | §164.312(a) — Access Control | Feature Policies, Content Exclusion |
| HIPAA | §164.312(b) — Audit Controls | Audit Logs |
| IP / Legal | Third-party code risk | IP Indemnity (Business/Enterprise), Content Exclusion |