# NeoLinks - Full Site Content for AI Tools This document gives AI assistants, search systems, and crawlers a plain-text summary of the NeoLinks website. It is written for tools that cannot reliably execute JavaScript or inspect the React-rendered pages. NeoLinks is local-first, deterministic Microsoft 365 security review software for MSPs, IT consultants, security consultants, and vCISOs serving regulated or sensitive clients. It turns supplied M365 evidence into a client-facing report and an MSP delivery pack while keeping evidence state, reviewer decisions, blockers, and limitations visible. NeoLinks is not an AI report writer. No AI model interprets client evidence or generates findings in the human-trial target. NeoLinks is not a tenant scanner, automatic remediation system, certified audit, or continuous cloud monitoring portal. --- ## Home ### Page title NeoLinks | Local-First, Deterministic M365 Review Software for MSPs ### Main message Microsoft 365 reviews for clients where cloud portals are a non-starter. Deterministic, local-first security review software for MSPs and consultants serving healthcare, finance, public sector, legal, and other sensitive clients. NeoLinks turns supplied Microsoft 365 evidence into a client-ready report and an MSP delivery pack on the reviewer''s own device, with fixed scoring, visible evidence boundaries, and no AI model interpreting client data. ### Problem Regulated clients need more than a raw scanner export. MSPs already have tools to collect Microsoft 365 evidence. The hard part is turning exports, screenshots, baseline checks, and review notes into something a client can act on without sending sensitive tenant evidence to another cloud platform and without a black-box model deciding what the findings mean. ### Regulated client fit NeoLinks is positioned for Microsoft 365 review engagements where another cloud evidence repository is difficult to justify. Example client profiles include healthcare and medical operators, DORA-regulated finance teams, NIS2 and public-sector suppliers, and legal or professional-service firms. The core distinction is evidence handling: standard cloud security workflows often involve broad tenant access, offsite evidence syncing, and vendor-hosted repositories. NeoLinks is for supplied-evidence review work where the MSP processes approved evidence locally, avoids a NeoLinks-hosted evidence upload, and produces fixed-rule review outputs. ### Open-source tools bridge NeoLinks works alongside open-source or local-first Microsoft 365 security tools such as Maester, CISA ScubaGear, Monkey365, or similar evidence sources. Those tools can run technical checks and produce raw findings. NeoLinks is the last-mile reporting and delivery layer: it turns supplied evidence into a management-ready Client Report and an internal MSP Consultant Pack while keeping reviewer decisions, blockers, evidence boundaries, and pending verification visible. ### What NeoLinks does NeoLinks is the delivery layer between supplied Microsoft 365 evidence and a finished review pack. It does not replace the MSP's tools, scanner, or judgement. It standardises the evidence-to-report mechanism. Workflow: 1. Import supplied M365 evidence. 2. Apply fixed deterministic rules. 3. Separate tenant exposure from MSP delivery control. 4. Export two packs. ### Example metrics shown on the site - Security Exposure Index: 68. - MSP Delivery Control Index: 96. - Pending verification: 2. - Client blockers: 6. - Ticket batches: 4. ### Split-score architecture Security Exposure Index tracks actual tenant exposure. Client acceptance, licensing delay, and business exceptions do not make the tenant safer unless evidence proves the exposure changed. MSP Delivery Control Index tracks MSP delivery discipline: assignment, escalation, verification, ticket batching, and evidence-boundary handling. ### One product, two outputs Client report: exposure, decisions, blockers, risk acceptance, and a management plan. MSP consultant pack: local identifiers, parsed evidence context, remediation tracker, PSA-ready batches, delivery control, and governance receipt. ### Trust block No AI model interprets client evidence or generates findings. No client tenant evidence has to be uploaded to a NeoLinks cloud portal for the local workflow. Scoring is deterministic: fixed inputs, fixed rules, repeatable outputs. Evidence boundaries stay visible, including missing evidence, unsupported conclusions, and pending verification. --- ## Platform ### Page title How NeoLinks Works | Local, Deterministic M365 Review Pipeline ### Main message NeoLinks is a local review pipeline for MSPs and IT consultants. It takes supplied Microsoft 365 evidence, applies fixed scoring, records reviewer decisions, and produces two different outputs: a client report and an MSP consultant pack. ### Stage 1 - Evidence intake The pilot/sample workflow is designed around supplied evidence such as: - Maester M365 results. - CISA ScubaGear outputs where supplied for review. - Monkey365 outputs where supplied for review. - Entra sign-in, role, MFA, and guest exports. - SharePoint sharing exports. - Purview audit configuration. - Exchange mail-flow configuration. - DNS records such as SPF, DKIM, and DMARC. - Consultant notes and decision evidence. Evidence states: - accepted. - held. - excluded. - pending verification. Accepted evidence can support report claims. Held evidence cannot hide a control failure; it keeps the related finding open or appears in the evidence-boundary register. Excluded evidence cannot support conclusions. Open-source checks can fit here as evidence inputs. NeoLinks does not need to replace tools such as Maester, ScubaGear, or Monkey365. It sits after local evidence collection and helps turn technical output into reviewed, evidence-bound delivery packs. ### Stage 2 - Deterministic scoring Example exposure ledger: - Baseline integrity: 100. - Open technical risks: -30. - Evidence gaps: -8. - Repeated unresolved drift: -3. - Verified remediation credit: +9. - Security Exposure Index: 68. Example delivery control ledger: - Baseline delivery control: 100. - Pending verification quality penalty: -2. - QA/evidence-boundary penalty: -2. - MSP Delivery Control Index: 96. ### Stage 3 - Consultant decision layer Decision states include approve for report, exclude with reason, defer for follow-up, accept risk time-bound, request more evidence, mark not applicable, add remediation note, and carry forward previous decision. Risk acceptance workflow can include affected finding, residual exposure, compensating controls, approver, role, date, reason, expiry, and T-30 or expiry events. ### Stage 4 - Two outputs Client Report: for client leadership and stakeholders. It explains exposure, decisions, blockers, risk acceptance, and management plan. It is designed to be client-safe. MSP Consultant Pack: for the MSP delivery team and reviewer. It preserves technical context, local identifiers, delivery controls, evidence trace, remediation tracker, PSA-ready batches, control map, and governance receipt. It is not client-safe by default. ### Stage 5 - Recurring delta Recurring delta buckets can include new P1 findings, pending verification, resolved with accepted evidence, client blockers, evidence changed, and repeated unresolved drift. ### Team and deployment NeoLinks runs on the reviewer's device by default. For the human-trial workflow, team handoff assumes an MSP-controlled workspace, shared folder, PSA path, or storage process selected by the MSP. NeoLinks does not require a NeoLinks-hosted evidence portal for this sample workflow. ### What NeoLinks is not NeoLinks is not continuous compliance automation SaaS, not a cloud posture monitoring platform, not an MSP admin portal, not just a scanner, and not an AI adviser. --- ## For MSPs ### Page title NeoLinks for MSPs | M365 Review Packs and Delivery Accountability ### Main message Turn Microsoft 365 reviews into evidence-backed client reports and delivery packs your team can stand behind. NeoLinks helps MSPs show what was reviewed, what evidence supports each finding, what is blocked by client decisions, and what still needs delivery. ### MSP value Security reviews should be a service, not a scramble. MSPs already have engineers, M365 tools, and client relationships. The service gap is packaging evidence into a repeatable review with clear findings, explicit blockers, and an internal delivery path the team can run again next quarter. NeoLinks separates tenant exposure from MSP delivery control. Open M365 risks stay visible until accepted evidence proves they changed. Client acceptance or licensing delay does not make the tenant safer by itself. Assignment, escalation, current blocker, verification quality, evidence handling, and ticket batching are tracked separately from the exposure score. NeoLinks helps MSPs stop closing work on optimism. Work moves to pending verification until refreshed accepted evidence proves closure. ### PSA-ready workstreams Ticket batches can group workstreams such as identity and MFA, guest and external sharing, mail-flow and DNS, audit and evidence quality, risk acceptance and client decision, and verification and closure. This is described as PSA-ready output, not as a live PSA integration claim. ### Client clarity and internal receipts The client report explains decisions and next steps. The internal delivery pack keeps operational detail, evidence context, blockers, and governance trail for the MSP team. --- ## For Consultants ### Page title NeoLinks for Consultants | Defensible Local-First Security Reviews ### Main message Deliver defensible client reviews without losing your judgement. NeoLinks gives consultants and vCISOs a local, deterministic workflow for turning messy M365 evidence into findings, decisions, limitations, and client-ready review packs. ### Consultant value M365 reviews often span exports, screenshots, scripts, spreadsheets, previous reports, and client conversations. NeoLinks gives the review a local structure so findings, decisions, exclusions, limitations, and follow-up actions survive beyond private notes and old report drafts. Decision states include approve, exclude, defer, accept risk, request more evidence, and carry forward. Evidence limitations stay visible, including missing evidence, held evidence, excluded evidence, pending verification, unsupported conclusion, and reviewer note required. No AI summaries need to be defended later. NeoLinks is deterministic. It does not ask the reviewer to defend an AI-generated interpretation of client evidence after the report has been delivered. If a client, insurer, or auditor asks how a finding was reached, the reviewer can show the evidence source, the decision made, the reviewer note, and the date. --- ## Sample Reports ### Page title NeoLinks Sample Reports | M365 Client Report and MSP Pack ### Main message See the actual output before you request a pilot. The page provides two website-safe PDF downloads from a synthetic Microsoft 365 demo tenant, Harbour Medical Group. No live client data is used. ### Client Report What the client sees. This is a client-facing PDF deliverable for management discussion. It focuses on the exposure summary, business decisions, blockers, risk acceptance, evidence boundaries, pending verification, and a 30/60/90-day plan. Download: https://www.neolinks.ie/sample-reports/neolinks-m365-client-report-sample.pdf ### MSP Consultant Pack What the delivery team uses behind the scenes. This is a broader technical and operational working pack for the MSP or consultant team. It can include evidence trace, decision ledger, blocker register, remediation tracker, PSA-ready ticket batches, pending verification list, evidence register, control map, delta, governance receipt, and structured JSON where available. For website safety and simplicity, the site provides a PDF preview of the MSP working pack. The full operational pack can include HTML, DOCX, PDF, JSON, evidence trace files, ticket batches, and governance receipts depending on the review. Download: https://www.neolinks.ie/sample-reports/neolinks-m365-msp-consultant-pack-sample.pdf ### Trust note Synthetic sample only. Not a live client audit, certification, or compliance rating. Control mappings are reference mappings for discussion. The MSP working pack is not client-safe by default. --- ## Security and Trust ### Page title NeoLinks Security & Trust | Local-First, No AI Evidence Handling ### Main message Concrete controls for evidence-sensitive review work. NeoLinks is positioned for MSPs and IT consultants who need local-first M365 review delivery, deterministic scoring, visible evidence boundaries, and reviewer-controlled judgement. It is not marketed as a cloud scanner, evidence portal, or AI report writer. ### Public promises 1. Client evidence stays on the reviewer's device unless a separate deployment arrangement says otherwise. 2. NeoLinks works from supplied and approved evidence; it is not a tenant scanner. 3. Report claims are tied to accepted evidence and disclosed limitations. 4. Consultant decisions remain visible. 5. No AI model is used to interpret evidence or generate report narrative in the human-trial target. ### Trust model NeoLinks focuses on controlled review-pack delivery from supplied M365 evidence. The system should make evidence state, scoring logic, and reviewer decisions easier to inspect. Local-first evidence handling: the human-trial workflow is designed around evidence that stays on the reviewer's device. A NeoLinks-hosted evidence portal is not required for the sample workflow. Deterministic rules and templates: scoring, evidence states, and report rendering use fixed rules and templates rather than a model interpreting client evidence or writing report narrative. Accepted, held, and excluded evidence gates: accepted evidence can support claims. Held evidence keeps related findings open or visible in the evidence-boundary register. Excluded evidence cannot support conclusions. Open-source checks can fit here as evidence inputs. NeoLinks does not need to replace tools such as Maester, ScubaGear, or Monkey365. It sits after local evidence collection and helps turn technical output into reviewed, evidence-bound delivery packs. Reviewer authority remains explicit: NeoLinks structures the review. The consultant remains responsible for approvals, exclusions, risk acceptance, remediation notes, and final client-ready output. ### Limitations Missing evidence stays visible instead of being hidden in polished wording. Unsupported conclusions should remain out of the client report. Risk acceptance does not reduce technical exposure unless evidence proves the exposure changed. Pending verification remains open until refreshed accepted evidence supports closure. --- ## Design Partner Program / Trial Waitlist ### Page title NeoLinks Pilot | Request Access for M365 Review Delivery ### Main message Join the design partner program for local-first M365 review delivery. NeoLinks is being validated with MSPs, IT consultants, and vCISOs who need deterministic Microsoft 365 review packs without uploading client evidence to a NeoLinks-hosted evidence portal. ### Best-fit design partners - MSPs delivering or building Microsoft 365 security review services. - IT consultants and vCISOs handling sensitive M365 evidence. - Providers who need local-first review delivery for regulated or cautious clients. - Teams that want to validate client reports and MSP delivery packs from supplied evidence. ### What the pilot involves 1. A 30-minute fit call for M365-focused, evidence-based review delivery. 2. A guided walkthrough using either the demo tenant/sample pack or the MSP's own safe sample evidence. 3. A short evaluation period with direct feedback to the product team. Pilot pricing and wider availability are being finalised with selected partners. There is no public self-serve plan yet. --- ## Privacy NeoLinks is designed around consultant-controlled evidence handling. It does not collect, process, or store customer review data, tenant exports, evidence bundles, or security review artifacts on NeoLinks servers unless a specific deployment arrangement requires it. This website does not use cookies. No tracking cookies, analytics cookies, or advertising cookies are used. NeoLinks does not transmit review evidence to any third-party AI model or API. For privacy enquiries, contact hello@neolinks.ie. NeoLinks Systems, Galway, Ireland. --- ## Contact NeoLinks is currently inviting selected MSPs and consultants into the design partner program. Contact: hello@neolinks.ie. Phone: 086 4032735. Location: Galway, Ireland. --- ## Public URLs - Home: https://www.neolinks.ie/ - Platform: https://www.neolinks.ie/platform - For MSPs: https://www.neolinks.ie/for-msps - For Consultants: https://www.neolinks.ie/for-consultants - Sample Reports: https://www.neolinks.ie/sample-reports - Security & Trust: https://www.neolinks.ie/security-and-trust - Join Design Partner Program: https://www.neolinks.ie/pilot - Contact: https://www.neolinks.ie/contact - Privacy: https://www.neolinks.ie/privacy - Terms: https://www.neolinks.ie/terms - Sitemap: https://www.neolinks.ie/sitemap.xml - Short AI-readable summary: https://www.neolinks.ie/llms.txt