Security is hope — as long as nobody checks.
Backups exist — but has anyone tested them? Risks are felt, not measured. An incident would cost weeks, not hours. I create clarity and a concrete plan.
Analysis
Systematic vulnerability analysis of your IT landscape. Identify attack surfaces, assess risks, set priorities.
Resilience
Backup validation, recovery tests, emergency processes. So an incident costs hours — not weeks.
Roadmap
Prioritised action plan with quick wins and long-term improvements. Actionable, measurable, traceable.
Typical Quick Wins
- MFA activation for all critical systems
- Test and document backup recovery
- Configure SPF/DKIM/DMARC for email domains
- Establish and automate patch cycles
Process
- Assessment — Define scope, identify systems and stakeholders
- Check — Technical review, backup tests, configuration analysis
- Evaluation — Risk matrix, vulnerability report, prioritised recommendations
- Implementation — 30/60/90-day plan with quick wins and structural measures