Find your biggest cybersecurity gaps before attackers do.
A practical security posture review for small and midsized businesses that need clarity, prioritization, and a realistic action plan without starting with a full-scale consulting project.
Starting Price
USD $2,500 / CAD $3,500
Typical Timeline
5 to 10 business days
Engagement Snapshot
Best For
Businesses that know security matters but are not sure where to start
Primary Outcome
A clear, prioritized cybersecurity roadmap
Standard Scope
One company, one IT environment, up to 3 stakeholder interviews
Key Exclusions
No hands-on remediation, penetration testing, or compliance certification
The Problem
Most businesses have security gaps they have not mapped yet.
Many businesses have a mix of cloud services, email, endpoints, remote access, backups, and security tools, but no clear picture of where the real risks are. Without a structured review, it is easy to spend time and money on the wrong things or miss exposures that matter. This engagement helps identify the most important gaps and turns them into a practical plan that your team can actually act on.
What You Get
Defined deliverables
- check_circle Cybersecurity readiness scorecard
- check_circle Risk-ranked findings across all reviewed areas
- check_circle Top quick wins your team can address immediately
- check_circle 30/60/90-day improvement roadmap
- check_circle Executive-friendly findings summary
- check_circle Findings walkthrough call
What Is Included
Standard scope
- check One company or business unit
- check One primary IT environment
- check Up to 3 stakeholder interviews
- check Review of identity, endpoints, email, backups, patching, remote access, and basic cloud exposure
- check Up to 10 provided documents, screenshots, exports, or configuration summaries
- check One final report and one findings presentation
What Is Not Included
Scope exclusions
- remove Hands-on remediation
- remove Incident response
- remove Penetration testing
- remove Compliance certification
- remove Full policy library creation
- remove Ongoing monitoring
- remove Unlimited meetings or unlimited system review
The Process
How this engagement works
Fit Call
We confirm the environment, stakeholders, and whether this snapshot is the right starting point.
Scope Confirmation
Scope, assumptions, access needs, and deliverables are confirmed in writing before work begins.
Information Collection
Stakeholder interviews are conducted and supporting materials are reviewed within the agreed limits.
Review
Findings are analyzed, prioritized, and organized into a clear, practical report.
Findings Walkthrough
Deliverables are shared and a walkthrough call covers findings, next steps, and your questions.
Who This Is For
Ideal for businesses starting their security journey
This engagement is a strong fit for small and midsized businesses that have a mix of cloud services, endpoints, email, and remote access, but no clear picture of their current security posture. It works well when leadership knows security is important but the organization has not yet had a structured review.
It is also useful after a security incident, before a compliance review, before acquiring new software or cloud infrastructure, or when your IT environment has grown in complexity and you want to understand what you have and where the real risks are.
Pricing note: Pricing shown is starting pricing for standard-scope engagements. Final pricing depends on environment size, number of systems, complexity, urgency, and any requested work outside the standard scope.
These starter engagements are intentionally scoped to produce useful outcomes without turning into open-ended consulting projects. If your environment is larger, more complex, or requires hands-on implementation, SullySoft can provide a separate estimate before any additional work begins.
Cybersecurity Readiness Snapshot
Starting at USD $2,500 / CAD $3,500 • 5 to 10 business days
Book a 30-minute fit call to confirm the scope and get started.
Book a 30-Minute Fit Call