Incident Response Playbook for SMBs: From Alert to Resolution in 4 Hours
A working incident-response playbook for the SMB that cannot afford a 24/7 SOC: five phases, severity-graded alerting matrix, six scenario containment playbooks, and the five pre-incident artefacts that have to exist before the alert fires.
Employee Offboarding Security: The 47-Point Checklist That Prevents Data Leaks
The 47-point offboarding checklist covering identity, email, SaaS, devices, communication, compliance, and HR. Three escalation tiers (standard / sensitive / hostile), the HRIS-driven workflow, and the structured evidence record that becomes audit proof.
Identity-First Security: Why Your Firewall Is No Longer the Perimeter
The perimeter dissolved. Identity is the new perimeter. The introduction for the IT lead who wants to know what the shift actually means for the next 90 days of work — five operational consequences and five concrete next steps.
Microsoft 365 Security Hardening: 15 Settings Most Admins Miss
Fifteen Microsoft 365 settings that turn up wrong in every tenant we audit — identity, email, data protection, and the often-missed Conditional Access policies — with the exact admin paths, side effects, and the 90-minute version for the IT lead with time today.
Zero-Trust Network Segmentation Without the Enterprise Price Tag
Zero-Trust at €5k of CAPEX. VLAN segmentation, 802.1X with RADIUS, ZTNA overlay (Tailscale / Twingate / Cloudflare), host-level nftables, monthly policy review. 80-85% of enterprise micro-segmentation value for under 5% of the cost.