Cybersecurity Guides
for SMEs and Professional Practices

Practical security guides for dental practices, law firms, accounting firms, medspas, and small businesses navigating HIPAA, PCI-DSS, and Cyber Essentials.

Get a Security Review Browse Posts
Latest Posts
Guides written for the people who run and protect small businesses

Microsoft 365 · Law Firms

M365 Security Misconfigurations Putting Law Firms at Risk

Microsoft 365 defaults are fine for a flower shop — not for a firm holding M&A documents and attorney-client communications. These are the misconfigurations we find most often, and how to fix them.

April 2026

Read Guide →

Cyber Essentials · SME

Cyber Essentials IT Security Policy: What SMEs Must Document

Cyber Essentials requires a written IT security policy covering five control areas. Here's what it must include — plus a free customisable template for UK SMEs.

April 2026

Read Guide →

PCI-DSS · Small Business

PCI-DSS Vulnerability Scanning: What Small Businesses Get Wrong

Internal scans, external ASV scans, and penetration testing — what PCI-DSS v4.0 actually requires and how to pass your external scan the first time.

April 2026

Read Guide →

QuickBooks · Accounting Firms

How to Secure QuickBooks Online for Small Accounting Firms

QuickBooks Online is not configured securely by default. A step-by-step guide for small accounting firms to protect client financial data and meet FTC Safeguards requirements.

April 2026

Read Guide →