Services · Fixed-price project

Where does your business really stand on security?

Most small businesses have no idea where they are most vulnerable — and attackers do. We review your business against the baseline security principles from NSM, the Norwegian National Security Authority: interviews, a technical check of your cloud setup and vulnerability scanning. The result is a prioritized top-10 list of actions, written so management understands it.

Fixed-price project

Price

NOK 14,900–29,900

excl. VAT

All prices excl. VAT.


What’s included

  • Interviews with management and key people about routines and risk
  • A technical review of your Microsoft 365 / cloud setup
  • Vulnerability scanning of your internet-facing services
  • An assessment against NSM’s baseline principles for ICT security
  • Top 10 prioritized actions — what’s urgent and why
  • A management report without jargon, ready for the board meeting
  • A review meeting where we answer everything

How we work

  1. 01

    Kickoff and interviews

    We agree on scope and talk to management and the people who know the systems. 1–2 hours of your time — the rest is our work.

  2. 02

    Technical check

    We review the cloud setup, access, MFA coverage and security settings, and scan your internet-facing services for known vulnerabilities.

  3. 03

    Analysis and prioritization

    Findings are assessed against the NSM baseline and ranked by risk and cost — so you know what buys the most security per krone.

  4. 04

    Report and review

    You get the management report with the top 10 actions, and we go through it together. No scare tactics — just an honest risk picture and a plan.


A fit for you if

  • have never had a proper security assessment done
  • get security questions from customers, banks or insurers
  • want to know where the money should go before buying more security
  • need to report security status to the board

Common questions

What does a security review cost?

NOK 14,900–29,900 excl. VAT, depending on size and how many systems you have. The fixed price is agreed before we start.

How long does it take?

Usually 2–4 weeks from kickoff to delivered report. You contribute 2–3 hours in total — we do the rest.

Will it disrupt operations?

No. We need read access and a few conversations. The vulnerability scan is gentle and scheduled in advance — nothing stops.

Is this a penetration test?

No. A penetration test actively tries to break in and requires a dedicated team. Our review finds the same open doors — at a fraction of the price — and is a far better first step.

Do you help with the actions afterwards?

Yes, if you want. The report is written so you can implement the actions yourself or with anyone you like — and we always state clearly what we ourselves have delivered, so the assessment stays independent.



Get an honest picture of your security