Home/IT Risk Self-Assessment
Eight plain-English questions. No email required to see your score. You'll get an instant read on where your IT and cybersecurity posture is solid — and where the gaps are that owners usually don't find out about until something breaks.
Ordered by what we'd fix first. Each links to a plain-talk guide if you want the detail.
We'll send your results and a prioritized action list you can hand to whoever runs your IT — plus the occasional plain-talk brief. No spam, unsubscribe anytime.
Prefer to just talk it through? That's usually faster.
If you'd rather skip ahead, the 20-minute intro call is the fastest way to turn this list into a plan.
This self-assessment is an educational tool, not a formal security audit or a guarantee of compliance. Your answers are scored entirely in your browser and are never sent anywhere unless you enter your email above. For a real evaluation of your environment, book a discovery call.
The assessment walks through the eight areas where small and mid-sized businesses most often carry hidden risk — the same areas a cyber-insurance carrier, an auditor, or an incident responder asks about first:
Most breaches at small businesses don't exploit anything exotic — they walk through a gap the owner didn't know was open: an un-MFA'd mailbox, a backup no one ever restored, an endpoint running antivirus from a decade ago. A risk assessment is simply the fastest way to find those gaps before an attacker, an auditor, or an insurer does.
Your result is an instant, plain-English score with a tailored action list — no email required to see it, and no sales sequence. If you'd rather have a person walk your environment with you, the call below is free, and there's no slide deck.