Project-Based · Prioritized roadmap
Security Baseline Assessment
Structured cybersecurity assessment for SoCal small businesses — identity, endpoints, email, data — with a prioritized fix list and no pressure to buy.
What does a small-business security assessment from LuzGrid Tech produce?
A non-technical summary the owner can read in one sitting, an auditor-grade detail appendix, and a remediation plan ranked by impact-per-dollar. Mapped to what cyber-insurance carriers, HIPAA, FTC Safeguards, and Reg S-P frameworks actually ask about. Fixed-fee and scoped, not an open-ended hourly engagement.
- ✓
Maps to CIS Controls v8 and Microsoft Secure Score
- ✓
Ranked by risk, effort, and cost — not a 200-page PDF
- ✓
You own the findings; use us to fix them or don't
Who this is for
- You're about to sign a contract that has cybersecurity requirements and you're not sure you pass.
- Your cyber insurance is renewing and the questionnaire is asking things you can't confidently answer.
- You inherited IT from a predecessor and have no idea what the actual security posture is.
- You want a second opinion on what your current IT provider is (or isn't) doing.
What we review
Every engagement covers these as the baseline.
Identity & Access
MFA coverage, privileged accounts, conditional access, password policies, and legacy authentication.
Endpoint Security
EDR coverage, disk encryption, patch status, local admin rights, and USB/removable media policy.
Email & Phishing
Anti-phishing, Safe Links, DKIM/SPF/DMARC, external email banners, and impersonation protection.
Data & Backup
Backup coverage, tested restore, retention, and where sensitive data lives (and who can reach it).
Network & Remote Access
Firewall rules, VPN, Wi-Fi segmentation, and internet-exposed services.
Policies & People
Onboarding/offboarding, security awareness training, incident response, and vendor access.
Frequently asked
How is this different from a penetration test?
A pen test tries to break in. A baseline assessment reviews configuration and posture. Most small businesses need the baseline first — pen tests find things that the baseline would already tell you to fix.
Will you try to sell me stuff after?
We'll give you a prioritized list of fixes. You can hire us to do them, do them yourself, or hire someone else. The report is yours either way.
How long does it take?
Depends on the size of your environment and how quickly we can get read-only access to your systems. We give you a target completion date at kickoff, before any work starts.
What does a security assessment include?
A baseline assessment is a structured review of six areas: identity and access (MFA coverage, privileged accounts, conditional access, legacy auth), endpoint security (EDR coverage, disk encryption, patch status, local admin rights), email and phishing protection (anti-phishing, Safe Links, DKIM/SPF/DMARC), data and backup (coverage, tested restore, retention), network and remote access (firewall rules, VPN, internet-exposed services), and policies and people (onboarding/offboarding, awareness training, incident response). You get a prioritized roadmap ranked by risk, effort, and cost — not a 200-page PDF. The findings map to CIS Controls v8 and Microsoft Secure Score so the report is useful for cyber insurance questionnaires and vendor security reviews.
Will this help with our cyber insurance renewal or HIPAA / FTC Safeguards Rule compliance?
Yes — directly. Most cyber insurance questionnaires now ask about MFA coverage, EDR, backup, patching, and incident response. Our findings map to those questions in plain English so you can answer the questionnaire confidently and document your answers. For regulated businesses (HIPAA-covered providers, financial services subject to the FTC Safeguards Rule, businesses that handle CCPA-covered consumer data), we flag where your current posture deviates from what the regulation expects. We don't write the formal compliance report — that's typically a CPA or compliance specialist — but the technical findings feed straight into one.
Want this for your business?
Free 15-minute scope call. We'll confirm fit, scope the work, and send a fixed-fee proposal.