ElkazaElkaza

Security Baseline

Get the basics right: MFA, patching, backups, access control.

Typical timeline: 3-6 weeks 6 Deliverables
Start Security Assessment

Who it's for

  • SMBs without a dedicated security team
  • Companies after a security incident
  • Growing teams with ad-hoc IT
  • Executives with compliance concerns

What you get

  • MFA active on all accounts
  • Patch status documented and current
  • Backups tested and verified
  • Access rights cleaned up
  • Central logging established

What we do

  • Security posture review
  • MFA rollout and configuration
  • Patch management setup
  • Backup configuration and test run
  • Access rights audit
  • Documentation and handover

Deliverables

  • Security assessment report with prioritized findings
  • MFA deployment documentation
  • Patch management policy and schedule
  • Backup verification report
  • Access rights cleanup summary
  • Central logging configuration

Tools & Stack

  • Identity Provider (Entra ID, Google Workspace, Okta)
  • Patch Management (WSUS, Intune, Automox)
  • Backup Solutions (Veeam, Acronis, Cloud-native)
  • SIEM or Log Aggregation (Microsoft Sentinel, Graylog)

Example outcomes (illustrative)

Based on typical project scenarios.

SMB, 35 employees, financial sector
Before: No MFA, shared admin passwords
After: MFA on all accounts, individual credentials
Result: First phishing attack blocked.
Manufacturing, 50 employees
Before: Backups existed but never tested
After: Monthly restore tests established
Result: Restore in 4h instead of estimated 4 days.

Process

1

Assess

Security posture review and gap analysis.

1 week
2

Implement

MFA, patching, backups, access cleanup.

2-4 weeks
3

Run

Handover, training, optional managed support.

Ongoing

FAQ

What if we already have some security measures?

We assess what you have and fill the gaps. Working systems won't be rebuilt.

How do you prioritize what to fix first?

We rank by risk and impact. Quick wins first, then deeper fixes.

Will this disrupt our users?

MFA rollout requires user action. We provide clear guides and support.

Is this a one-time project or ongoing?

Baseline is a project. We offer optional managed support for ongoing protection.

We follow the least-privilege principle. Admin access is temporary, documented, and removed after project end. All configurations belong to your company.

Stop guessing about security. Build a clear baseline.

Start Security Assessment