CyberLifeCoach | Small Business Cybersecurity Readiness Assessment

Identity and Access

Unique accounts for staff

MFA on email and critical apps

Devices

Device updates

Disk encryption on laptops

Network

Router and Wi-Fi security

Remote access

Data Protection

Backups with version history

SaaS data backups

Policies and Training

Written baseline policies

Security awareness

Vendors and Email Security

Vendor risk checks

Email authentication (SPF, DKIM, DMARC)

Audit & Compliance

Written security policies

Access reviews and permissions audits

Incident response plan

Regulatory obligations (GDPR, HIPAA, PCI, etc.)

Security Controls

Endpoint protection (AV/EDR)

Admin privileges

Logging and monitoring

Secure configuration baseline

Vulnerability Management

Asset inventory

Vulnerability scanning

Patch remediation SLAs

External exposure checks

Legal Disclaimer: This assessment is provided for informational purposes and does not constitute legal, compliance, or professional security advice. Security posture depends on your systems, configuration, behavior, and evolving threats. No responses are collected, stored, or transmitted.

Small Business Cybersecurity Readiness Assessment

Business Profile