What it is
Protection of company information assets against leaks, unauthorised access, and loss. Not “we’ll sell you an antivirus” — a full cycle: risk assessment, technical controls picked for the specific scale, rollout, regular audit.
What’s included
Audit and risk assessment
- Information asset inventory: what’s stored, where, who has access.
- Classification by sensitivity: what’s critical, what’s bulk, what’s public.
- Likelihood and impact assessment per asset.
- Documentation for reporting and budget justification.
Technical controls
- Perimeter protection: firewalls (open-source and commercial), intrusion detection and prevention (IDS/IPS).
- Data leak prevention (DLP): outbound traffic control, removable-media monitoring, copy policies.
- Anti-virus and EDR: on servers and workstations, centralised console.
- Access control: multi-factor authentication, privileged account management (PAM), admin action auditing.
- Backups: treated as part of security strategy — defence against ransomware and sabotage.
Compliance
We use only licensed software. We help align infrastructure with applicable regulations (personal-data laws, industry standards, client policies).
When you need this
- The company holds data whose leak would cause real damage (customer database, contracts, R&D, correspondence).
- A regulator requires audit and reporting on personal-data protection.
- There was an incident or breach attempt — you need to understand the scope and close the gaps.
- The company is growing and becoming an attractive target — time to audit before something happens.
Approach
Security measures are chosen by infrastructure scale. We don’t pitch expensive enterprise tools to small businesses — well-configured open-source usually does the job. And we don’t try to cover enterprise-grade requirements with free tools.