teletraan systems // front-door offer
A structured review of the systems, accounts, and infrastructure your business depends on. Designed for professional small businesses where a security gap, a vendor failure, or an account compromise creates real operational or legal risk.
A structured review across identity, endpoints, email authentication, cloud tenancy, network posture, backup and recovery, documentation, and AI data handling. Findings come back prioritized by real-world exploitability, not by framework checkbox.
Scoped discovery across the eight surfaces that decide incident outcomes: IAM and access lifecycle, endpoint fleet state, SPF/DKIM/DMARC posture, SaaS and tenant configuration, network segmentation, backup integrity and restore time, operational documentation, and AI and automation data flows. Output is an impact-ranked findings document, not a compliance artifact.
Professional small businesses where the cost of getting security wrong is not abstract.
Firms holding client data with confidentiality obligations: legal, medical, financial, hospitality. Environments where account compromise or downtime has regulatory or contractual consequences.
Trust-heavy environments with real obligations (privilege, HIPAA adjacency, fiduciary duty) and lean internal IT. The relevant threat model is commodity attacks against under-hardened defaults.
Eight areas that determine whether a business can operate securely, recover from an incident, and hand off knowledge when needed.
Identity & access
Accounts, admin rights, MFA enforcement, shared credentials, offboarding gaps
Admin role inventory, MFA coverage and method strength, shared and service accounts, stale access, offboarding lifecycle
Entra ID / Workspace role assignments, conditional access, MFA method strength (SMS vs authenticator vs FIDO2), break-glass accounts, joiner-mover-leaver lifecycle
Devices & endpoints
OS versions, encryption, patching cadence, MDM or management coverage
OS support status, disk encryption, patch cadence, management and RMM coverage, local admin sprawl
Fleet inventory vs reality, OS lifecycle state, BitLocker/FileVault posture and key escrow, patch SLAs, endpoint protection coverage, local admin state
Email & DNS
SPF, DKIM, DMARC, email hosting, phishing exposure, lookalike domain risk
SPF and DKIM alignment, DMARC policy and reporting, hosting configuration, forwarding rules, lookalike domain exposure
SPF lookup-limit hygiene, DKIM rotation, DMARC enforcement path with report review, MTA-STS and TLS-RPT, registrar lock state, homoglyph monitoring
Cloud platforms
Microsoft 365, Google Workspace, third-party SaaS, admin account hygiene
Tenant security defaults, admin account separation, OAuth app grants, SaaS inventory and access scopes
Tenant baseline vs secure defaults, privileged role separation, risky OAuth consent grants, legacy auth protocols, SaaS-to-SaaS token sprawl
Networks
Wi-Fi segmentation, remote access, firewall posture, guest vs. staff separation
VLAN and SSID segmentation, remote access method and exposure, firewall rule hygiene, guest isolation, IoT placement
L2/L3 segmentation map, WPA2/WPA3 and key rotation reality, exposed services and their patch state, east-west reachability, management plane access
Backups
Coverage, test history, recovery time estimates, offsite or immutable copies
Coverage map against the systems that matter, restore test history, recovery time and point estimates, offsite and immutability status
3-2-1 posture, immutability and separation from the production identity plane, restore drill evidence, RTO/RPO measured not assumed, SaaS data backup beyond retention defaults
Documentation
Runbooks, asset inventory, vendor contacts, recovery plans, staff procedures
Runbook currency, asset and license inventory, vendor escalation paths, recovery procedures, bus-factor exposure
Runbooks executable by a competent stranger, credential escrow, topology accuracy, recovery procedures with last-validated dates, tribal-knowledge inventory
Workflow & AI risk
Automation tools, AI adoption, data handling practices, shadow IT exposure
Sanctioned and shadow AI use, data classes in prompts, vendor terms, automation credentials and scopes
AI data-flow map (who, which tools, which data classes), vendor retention and training terms, local vs hosted workload split, automation service-account scopes
Every assessment produces a written findings summary. Findings are organized into three priority tiers (urgent, important, and later) so time and budget go where they reduce the most real risk first.
The summary is plain-language, not a compliance checklist. It is designed to be read by a business owner, not just an IT person.
Share what is happening, what feels risky, or what needs to improve. Three to five minutes. No technical knowledge required.
A focused conversation reviewing the environment together. Covers the eight areas above. The initial call is free.
If a deeper technical review is warranted (device audits, network testing, documentation review), that work is scoped and quoted before it begins.
A prioritized written summary with urgent, important, and later recommendations. A practical roadmap for what to address and in what order.
Most small businesses share a short list of recurring gaps. None of these are unusual. All of them are fixable.
Share what is happening, what feels risky, or what needs to improve. Teletraan will respond with next steps within one business day.
The initial assessment call is free. If deeper review is needed, scoped assessment work is quoted before it begins.
Serving Oregon, Washington, and select international clients.