Offerings
Three ways to work together.
One-time setup, full foundation, or ongoing care. One predictable price, no hourly billing, no surprises on the bill. Pick the one that matches where you are.
01 · One-time setup
Starter
$1,200 CAD
The bare minimum, done properly, in a week.
Who this is for
Small service businesses with 4–10 people. You don’t have an IT budget yet, but you’ve started to notice the gaps. New hires take too long. Shared passwords are floating around. You’re not sure if your email is set up right. You don’t need a full IT department. You need someone to install the basics and walk away.
Small agencies, design studios, consultancies, and early-stage teams who want the foundations in place without a big engagement.
What changes after we’re done
Before: passwords in a spreadsheet. Email security half-set-up. New hires get configured by whoever has time. No one document explains how your IT actually works.
After: every person has their own password manager and multi-factor authentication. Your domain is set up to make impersonating you much harder. There’s a single one-page document that says what tools you use, who owns them, and how to revoke access if someone leaves.
What we set up
- One password manager the whole team uses. We get everyone off the shared spreadsheet and the sticky notes, with the right people seeing the right things.
Team password manager rollout - A second lock on the accounts that matter. Email, banking, payments, anything with client data, so a stolen password alone isn’t enough to get in.
Multi-factor authentication - Much harder to fake an email from you. We set up your domain so the easiest version of impersonation, sending from your actual domain, gets rejected. The most common small-business phishing trick, a lot harder to pull off.
Email anti-spoofing (SPF, DKIM, DMARC) - A quick once-over of every device. Each laptop and phone checked: encrypted, locks itself, can be found if lost, up to date, backing up. Catches the obvious risks fast.
Device security review - A clear list of what you’re paying for. Every tool, its cost, who owns it, when it renews. Most teams spot something they forgot they were paying for.
Software inventory - One page that explains your whole setup. Plain English: what you use, who has access, how to add someone, how to cut someone off. Yours to keep.
One-page runbook + checklists - A month of us on call by email. After we hand it over, email us anything for 30 days at no extra cost.
30-day follow-up
What’s not included
- Device management (that’s Foundation)
- Ongoing help desk (that’s Operations)
- Phishing training or simulated attacks
- Compliance audit work
- A 24/7 help-desk pager
Who this isn’t for
If you have more than ~10 people and are hiring regularly, you’ll outgrow Starter quickly. Go to Foundation instead. It’s built for that scale.
If you need ongoing help-desk support after we’re done, Starter doesn’t include that. Add Operations.
02 · One-time setup
Foundation
$3,500 – $6,000 CAD
Set up properly in two to three weeks. Then you own it.
Who this is for
Service businesses with 8–25 employees who’ve outgrown the DIY phase. You’re hiring fast. People are using their own logins for shared tools. New hires take longer than they should to be productive. Clients are starting to ask about your security in vendor questionnaires and you’re unsure how to answer.
Agencies, professional service firms, consultancies, and early-stage software companies that need a real foundation before they grow further.
What changes after we’re done
Before: shared passwords. Logins scattered everywhere. New hires get set up by whoever has time. Departing employees keep access for weeks. Your security questionnaire response is “let me get back to you on that.”
After: every person on your team logs in once and reaches everything. Devices are managed. Your domain is set up to make impersonating you much harder. Onboarding and offboarding are checklists that run the same way every time. Vendor questionnaires take 30 minutes, not 3 hours.
What we set up
- We tell you where you stand first. Week one, before we change anything, you get a plain written report: what’s working, what’s broken, what we’re going to fix. No surprises, no jargon.
Baseline security & IT assessment - One login for everything. Your team signs in once and reaches all their tools. When someone leaves, you shut them off everywhere at once instead of hunting through a dozen apps.
Single sign-on · access management - Every computer locked down and trackable. Laptops and phones are encrypted and set up so that if one’s lost or someone walks off with it, you can wipe it remotely. A new machine is ready to work out of the box.
Mobile device management · encryption · remote wipe - Something watching every laptop, around the clock. If a computer picks up something nasty, it’s flagged and contained where possible, often before anyone notices. A security team watches overnight and weekends, so a 3am problem is less likely to become your 9am crisis. It’s included, nothing extra to buy.
Managed threat detection · 24/7 monitoring - Much harder for someone to send email pretending to be you. We configure your domain to reject the easiest impersonation, messages sent from your actual domain. The most common wire-fraud setup stops working.
SPF, DKIM, DMARC at enforcement - Backups that actually come back. We make sure your files, email, and devices are backed up, then we actually test getting them back. Most companies think they’re covered. Most have never checked.
Backup configuration & tested restores - We find who can see what they shouldn’t. Files shared with the whole internet, with people who left, or with random personal accounts. We find them and lock them down. This is the single most common thing we catch.
Shared drive permissions audit - One password manager the whole team uses. Set up properly, with the right people able to see the right things. No more passwords in a spreadsheet or a sticky note.
Team password manager rollout - Starting and ending people, made boring. A new hire is productive on day one. Someone who leaves is fully cut off the same day. Same checklist every time, nothing forgotten.
Onboarding & offboarding playbooks - A clear list of everything you pay for. Every tool, who owns it, what it costs, when it renews, so a surprise charge or auto-renewal never catches you out.
Vendor & software inventory - Security forms answered in minutes, not days. We write up answers to the questions clients keep asking, so the next security questionnaire is a copy-paste instead of a lost week.
Security questionnaire answer library - Everything written down, and it’s yours. A plain-English guide to your whole setup, in your accounts. If you ever stop working with us, you keep all of it and nothing breaks.
Documented runbook you own
What’s not included
- Ongoing help desk (that’s Operations)
- SOC 2 or compliance audit work (separate engagement when you’re ready)
- Custom software development
- A 24/7 help-desk pager
Who this isn’t for
If you’re under 8 people and the only real pain is “we don’t have a password manager,” Foundation is overkill. Book a call anyway. We can scope something lighter.
If you’re around 50 people and growing fast, you’re probably approaching the point where an in-house IT person makes more sense than a productized engagement. We’ll tell you that on the discovery call.
03 · Monthly retainer
Operations
$250 / employee / month CAD
Ongoing IT care, without hiring full-time.
Who this is for
Businesses that have a working IT setup, whether we built it for you in Foundation or you have it from somewhere else, and want it kept healthy without hiring full-time. You don’t need an IT department. You need a person you can call.
What you get every month
Threat protection running on every device, watched around the clock. Onboarding done the same way every time a new hire starts. Offboarding done the same way every time someone leaves. Help with vendor questionnaires when clients ask. A monthly written digest of vendor renewals coming up, so a price hike or surprise auto-renewal never catches you. A live dashboard showing where your IT stands right now: headcount, licenses, what’s open. And someone who knows your setup well enough to answer a question without three rounds of context-gathering.
Every quarter: a written review of what we did, what we noticed, what to think about next, plus a refresh of your security questionnaire library so it stays current with your stack.
Four lanes, one plan
Everything in Operations falls into one of four lanes. It’s how we keep the plan focused instead of becoming “do anything tech.” If a request fits a lane, it’s included; if it doesn’t, we scope it as a project or point you to the right person.
- Access — identity, logins, multi-factor, getting people set up and shut off cleanly
- Devices — laptops and phones managed, protected, and recoverable
- Security — around-the-clock monitoring, response, and email protection
- Support — a real person, plus inventory, renewals, and quarterly reviews
How pricing works
$250 per employee per month, billed monthly in advance. Headcount counted at the start of each month. As your team grows or shrinks, your invoice tracks reality. No contract amendments, no tier renegotiations.
8 employees
$2,000 / month
15 employees
$3,750 / month
25 employees
$6,250 / month
Security is included, not extra
Threat protection on every device, login and email security, backup oversight, all part of the monthly price. There’s no separate security tier, no add-on fee, no software you have to buy yourself. One number covers keeping your IT running and keeping it safe.
What we hand off instead
- Setting up the baseline from scratch (do Foundation first)
- A 24/7 general help-desk pager (security is watched overnight; the help line keeps normal hours)
- SOC 2 audit work (separate engagement when you’re ready)
Need hardware? We handle that too.
New laptop for a new hire, a monitor, a replacement that died, we coordinate it, set it up, and get it to them ready to work. You don’t chase a vendor or open a half-configured box. The hardware’s billed separately at cost with a flat setup fee, so you see exactly what everything cost. Tell us someone’s starting and there’s a provisioned laptop on their desk, ready to go.
The Strawberry Baseline
You own your tools, always. But to keep the watch strong, every Operations client runs on a supported baseline: a managed identity platform (Google Workspace or Microsoft 365), multi-factor authentication, a password manager, device management, threat protection, backup oversight, and admin access to your core systems. It’s how “you own everything” stays true without us inheriting whatever mess happens to be there. If you’re not on it yet, Foundation gets you there.
Who this isn’t for
If you don’t have a working baseline yet, Operations doesn’t make sense. You’d be paying us to maintain something that isn’t there. Do Foundation first.
If you need a true 24/7 help desk with someone answering calls at 3am, we’re not the right size of practice. We’ll help you find someone who is.
— Not sure which one fits?
The 30-minute call is exactly for this. We’ll talk about what you have, what you need, and which engagement (if any) makes sense for where you are.