Selected work · Anonymized · Portfolio entry
Small-business security review
Structured review of identity, email, endpoints, backups, and vendor access—with prioritized fixes, not scare slides.
Context
Growing companies asked to demonstrate security posture to insurers, partners, or boards.
Problem
Tool sprawl without ownership; MFA gaps; shared accounts; backup restore never tested. Leadership wanted clarity without buying a 24/7 SOC on day one.
What we advised and built
Reviewed against practical controls (identity, email, endpoints, data, vendors), ranked fixes by risk and effort, and paired recommendations with implementation options.
Outcome
A sequenced fix list owners can act on. Security improvements tied to real workflows—not a binder that sits on a shelf.
Related: Cybersecurity Diagnostic