Core Service · 02

Security That Stops Threats.

CompTIA Security+-certified cybersecurity consulting grounded in real SOC operations. Practical defenses for small businesses — risk assessments, identity protection, endpoint hardening, and incident response guidance without the enterprise price tag.

Security+ · SOC Operations · Columbia University IT

Security Assessment

Risk & Gap Analysis

A structured review of your current security posture — accounts, devices, network, and permissions. You get a clear picture of where you're exposed and a prioritized remediation roadmap.

Identity and access review (who has access to what)
Device and endpoint inventory
Email and cloud security configuration audit
Prioritized findings with remediation steps

MFA Implementation

Identity Protection

Multi-factor authentication deployed properly across your organization — Microsoft Authenticator, Google Authenticator, or hardware keys. MFA is the single most effective control against credential theft.

MFA rollout for Microsoft 365 and Google Workspace
Conditional access policy configuration
User enrollment and training
Phishing-resistant MFA recommendations

Endpoint Hardening

Device Security

Laptops and workstations are the most common attack entry point. Endpoint hardening closes configuration gaps, enforces encryption, and ensures every device meets your security baseline.

Full-disk encryption (BitLocker, FileVault)
Endpoint protection and antivirus configuration
OS and application update enforcement
Screen lock, idle timeout, and USB control policies

Email Security

Phishing Defense

Email is the top attack vector for small businesses. Proper SPF, DKIM, and DMARC configuration combined with Defender for Office 365 settings dramatically reduces phishing and spoofing exposure.

SPF, DKIM, and DMARC record configuration and verification
Microsoft Defender for Office 365 policy setup
Phishing simulation and staff awareness
Suspicious message reporting workflows

Incident Response Guidance

SOC-Informed

When something happens — a phishing click, a suspicious login, ransomware — you need immediate, calm guidance. Informed by real SOC operations at Columbia University, not just textbook theory.

Incident triage and containment guidance
Account compromise response and remediation
Ransomware response planning
Post-incident review and hardening recommendations

Compliance Readiness

SOC 2 · HIPAA Adjacent

Not a compliance audit firm — but if your clients are asking about your security controls or you're working toward a framework, we can map your current state and identify the most critical gaps.

Security policy documentation
Access control and audit log review
Data handling and retention guidance
Vendor security questionnaire support

Pricing

Packages & Rates

Security Audit

$500 – $900

Full security assessment of accounts, devices, and configurations with prioritized remediation report.

MFA Rollout

$400 – $800

Organization-wide MFA deployment for Microsoft 365 or Google Workspace, including user enrollment support.

Email Security Setup

$300 – $600

SPF, DKIM, DMARC configuration and Microsoft Defender policy setup to protect against phishing and spoofing.

Security Retainer

$400 – $900 / mo

Ongoing monitoring, patch guidance, security updates, and incident response support for your team.

Get Started

Know where you're exposed before someone else does.

Start with a free 30-minute security consultation. We'll review your current posture and identify the highest-priority gaps without a sales pitch.

Book a Free Consultation View All Services