Frequently Asked Questions

Yes, we can. While many of our services can be delivered remotely, we’re happy to visit your office for on-site assessments, workshops, or strategy meetings—especially for Melbourne-based clients.

Yes. We are an authorised CyberCert partner and can guide you through the process of achieving SMB1001 Certification, including a formal audit and certificate upon passing.

Yes. While we are recognised specialists in Google Workspace security, we also provide cybersecurity services for Microsoft 365 environments.

Yes, we frequently conduct web application penetration testing. Get in touch with us to discuss your application and goals—we’ll tailor the scope to your needs.

Getting started is easy—just give us a call at 1800 526 269 or contact us here. One of our specialists will walk you through your options and provide clear, practical advice—no pressure, no obligations.

If you have a cyber incident response plan, follow it immediately. If not, power down affected systems and contact us urgently. Acting fast can significantly reduce the damage.

Ransomware is malicious software that encrypts your data and demands payment—usually in cryptocurrency—to restore access. It’s one of the fastest-growing cyber threats facing businesses today.

We don’t offer general IT support or managed IT services. Our focus is purely on cybersecurity, though we do assist with security-related issues and work alongside your existing IT team or MSP.

MSPs (Managed Service Providers) typically offer general IT support, whereas we specialise exclusively in cybersecurity—offering risk assessments, penetration testing, awareness training, and ongoing security monitoring.

Yes, we offer discounted rates for eligible not-for-profits. Contact us to find out more about how we can support your mission securely and affordably.

We require payment in advance for most of our services. Managed security services are typically billed monthly, and project-based work is invoiced upfront or on milestone completion. We accept EFT or credit card payments

Absolutely. We work with clients across Australia and overseas through a combination of remote services, on-site visits where needed, and secure communication tools.

No. We offer a complimentary cybersecurity workshop that identifies key gaps and vulnerabilities—what we call the “tip of the iceberg”—to help you prioritise your next steps.

Yes. We offer carefully selected cybersecurity tools for backup, threat detection, phishing protection, and more—integrated into our managed security services.

Yes. Our managed security clients are protected by our data breach guarantee: if you suffer a breach while under our protection, we’ll refund your managed security fees for that period.

Yes. We deliver engaging cyber awareness training both in person and online. Sessions are tailored to your industry, team size, and specific risks.

A penetration test (or “pen test”) simulates a real-world cyberattack to uncover weaknesses in your systems or applications—before the attackers do.

A vulnerability assessment is a scan and review of your environment to identify known security weaknesses that could be exploited by attackers.

SMB1001 is a certification tailored for small to mid-sized businesses to demonstrate cyber hygiene, while Essential Eight is an Australian government framework outlining specific security controls. Both are valuable but serve different purposes.

Yes. Many of our clients operate with hybrid or fully remote teams. We specialise in securing cloud platforms, remote access, and collaboration tools like Google Workspace and Microsoft 365.

Yes. We offer secure code reviews, infrastructure hardening, and continuous security monitoring for web applications to reduce the risk of compromise.

Yes. Google’s native tools are not backups—they’re productivity tools. We strongly recommend backing up Google Workspace and Shared Drives using third-party solutions.

No. Google Workspace only provides basic Spam and malware protection from emails. We highly recommend an effective Secure Email Gateway (SEG) such as IronScales to provide best in class protection.

Yes. While we’re best known for helping SMBs, our team has experience working with enterprise environments, especially those using Google Workspace or needing expert assessments.

We recommend conducting a cybersecurity review at least annually—or immediately after a major change in your systems, such as a cloud migration or staff restructure.

Yes. We run tailored phishing simulation campaigns to test and train your staff, and provide follow-up reporting and awareness training.

Yes. We help clients align with major compliance frameworks by identifying gaps, implementing controls, and providing evidence for audits.

Yes. Our Managed Security service includes 24/7 monitoring of key systems, alerting, and response to threats in real-time.

We work across a range of industries including finance, healthcare, education, real estate, technology, media and not-for-profits—especially those using Google Workspace.

We offer both. Whether you need a single audit or want a long-term security partner, we can tailor our services to meet your needs.

Most of our clients are small to mid-sized businesses (10–200 users), but we also support larger organisations needing specialist cloud security expertise.

Yes. We offer full configuration and policy hardening for Google Workspace, including 2FA, device management, DLP, context-aware access, and more.

Most risk assessments are completed in 3-6 weeks depending on the size of your organisation and scope of the review.

We start with a discovery call or workshop, followed by a tailored proposal. Once approved, we begin onboarding with a security assessment and implementation roadmap.

Both. We regularly collaborate with internal IT departments, MSPs, and leadership teams to deliver security without stepping on anyone’s toes.

Yes. We can help you prepare for insurance applications, answer technical questions, and implement controls insurers typically require.

Yes. We partner with MSPs and consultants who want to offer expert cybersecurity services without building a full internal team.

Yes. Our team includes professionals with certifications such as Certified Penetration tester (eCCPT), Certified Malware Analysis Professional (eCMAP), Certified Ethical Hacker (CEH) Certified Application Security Practitioner, Certified Cyber Security Technician (CCT), Certified in Cybersecurity (ISC2) and Google Workspace Admin credentials, ensuring technical depth and credibility.

We specialise in cloud-first environments especially Google Workspace, which most traditional firms don’t. We’re also known for making cybersecurity simple, practical, and easy to action.