Understand where your cyber posture stands.
A no-cost scan of your environment against the ACSC Essential 8. We map your current state, show you the gaps, and hand you a one-page summary your board can read in 90 seconds. No obligation. Clear findings. Practical next steps.
What's included in the Free Cyber Scan
Many cyber assessments are difficult to compare because the output is unclear or heavily sales-led. This one is genuinely free and the report is yours to keep, regardless of whether we work together.
Essential 8 maturity assessment
We map your environment against the ACSC Essential 8 and tell you what maturity level you're sitting at, control by control, with the evidence behind each rating.
External attack surface review
We look at what an attacker can see about your business from the outside. Public DNS, exposed services, leaked credentials and dark-web mentions of your domain.
Microsoft 365 security review
Conditional access, MFA coverage, sharing settings, audit logging and admin sprawl. The configuration changes most tenants quietly never made.
Identity and access check
MFA enforcement, dormant accounts, shared logins, admin tier separation and the bypass conditions auditors look for first.
Backup posture check
What's protected, what isn't, where it's stored, how immutable it is and whether anyone has actually tried to restore from it lately.
Board-ready one-pager
A single page summarising posture, top three risks and recommended next actions in plain English. Take it to your next leadership meeting.
Four steps, two weeks, no surprises
-
1
Request your scan
Fill out the form and a senior engineer will be in touch inside one business day to set a kick-off call.
-
2
30-minute kick-off call
We agree scope, get the read-only access we need, and confirm the timeline. Nothing changes in your environment.
-
3
We do the work
Our engineers do the assessment. External and internal scans, configuration review, evidence-based scoring against the Essential 8.
-
4
Report walkthrough
One-hour walkthrough of the findings with you and whoever you want in the room. We hand over the report. What you do with it is up to you.
By the end of the scan, you'll have answers to
- What Essential 8 maturity level your business is honestly at, control by control
- What an attacker can see about you from the public internet
- Where your Microsoft 365 tenant is misconfigured against best practice
- Whether your backups would actually save you from a ransomware event
- The three things, in priority order, you should fix before anything else
- Honest answers to your cyber insurance questionnaire next renewal
Common questions about the Free Cyber Scan
Is it actually free?
Yes. There's no charge for the scan, the report or the walkthrough. We do this because it's the best way for businesses to see whether we're worth working with.
What access do you need?
Read-only Global Reader access to your Microsoft 365 tenant, read-only access to your firewall configuration if relevant, and a list of your public-facing domains. Nothing that lets us change anything.
How long does it take?
Two weeks end to end is typical. About one engineer-week of effort on our side, plus your kick-off and walkthrough calls.
What size business is this for?
Best fit is Australian businesses between 30 and 500 staff. Smaller businesses we can usually help with a lighter version. Larger businesses are usually better served by a paid Essential 8 maturity engagement instead.
Do I have to switch IT providers to do this?
No. We're happy to do this for businesses who already have an internal IT team or another MSP. The report is yours and you can hand it to whoever you like.
What happens after the report?
You can use the report internally, share it with your existing IT provider, or ask us to quote remediation work.
Ready to know where you stand?
Two weeks. No charge. A real report, written by senior engineers, in language a leadership team can read.
Request your Free Cyber Scan →