Ongoing Coverage
Security Renewal Plan
Your assessment proves you were secure in the month you completed it. The Security Renewal Plan proves you still are — as staff change, tools get added, and threats evolve.
Who this is for
Businesses that completed an initial assessment and want their report to stay current — for their insurer, their clients, and themselves. Three things decay after any assessment: your report date, your team composition, and the threat landscape. The Renewal Plan keeps all three from becoming liabilities. Particularly suited to clinics, law firms, accounting practices, and any business that cites security posture to clients or insurers.
What's included
Quarterly security posture check
Every quarter, we revisit your security posture against the baseline established in your initial assessment — accounting for staff changes, new tools, configuration drift, and emerging threats relevant to your sector.
Ongoing credential exposure monitoring
We continuously watch for your domain's email addresses and credentials appearing in breach databases. When a match surfaces, you hear from us before attackers can act on it.
Priority incident advisory channel
When something happens — a suspicious login, a phishing hit, an unexpected account change — you reach us first. Rapid containment guidance without waiting for a new engagement to open.
Staff offboarding verification
Departing staff are a consistent access-control risk. We verify that accounts, shared mailboxes, cloud app tokens, and device management profiles are properly revoked after each departure you flag.
Monthly threat briefing
A short, plain-English summary of the threats most relevant to Canadian SMBs in your sector — delivered monthly so you stay informed without having to monitor the security news yourself.
30-day response SLA
A guaranteed response window on all advisory requests. You are never left waiting when a question or concern comes up between scheduled check-ins.
What you receive
- Quarterly posture review report (updated findings vs. baseline)
- Credential exposure alerts as they are detected
- Priority advisory responses within the SLA window
- Offboarding verification confirmations on request
- Monthly threat briefing (written, plain-English format)
Starting point required. The Security Renewal Plan is built on an established baseline. We recommend completing an Essential Exposure Review or Business Risk Assessment first, so quarterly check-ins measure meaningful progress against known findings.