Peace CountryCyber

How we work

The full engagement model — from first call through annual review.

We publish our process the way we publish our pricing — openly. No mystery, no high-pressure sales motion. Here is exactly what happens between “I emailed you for the first time” and “we're into year two together,” with timelines, fees, and deliverables at each stage.

01

Discovery call

30 minutes

Free

Phone or Teams. You tell us what's going on. We listen. We ask specific follow-up questions about your IT setup, your insurance situation, and what triggered you to reach out. No sales pitch. At the end of the call, we tell you honestly whether we're a fit. If not, we usually have a recommendation for who is.

What you get from this phase
  • Honest read on whether we're the right partner for you
  • Initial scope of what we'd propose next
  • Recommended starting point (Assessment or directly into a tier)
02

Cyber Insurance Readiness Assessment

2 weeks

$2,500 fixed-fee

The bridge from inquiry to engagement. A formal third-party audit of your current cybersecurity posture against the questions your carrier is asking in 2026. We interview your team, review your Microsoft 365 tenant, scan your external surface, examine your backup architecture, and deliver a 15-page written report. This is the document you take to your broker.

What you get from this phase
  • Owner-facing executive summary (1 page) with readiness tier
  • Control-by-control gap analysis mapped to insurance questionnaire
  • Top 10 risk register with likelihood × impact scoring
  • Prioritized 30/60/90-day remediation roadmap
  • Cost estimate for each recommendation
  • Engagement options for ongoing managed services
03

Proposal + tier selection

5 business days

Free

Based on the Assessment, we send you a specific managed-services proposal — which tier we recommend, what's included, what it costs, what the SLA looks like. Easy to compare against other providers. If you converted to a managed retainer within 90 days of the Assessment, $2,500 of assessment fee credits against your first three months.

What you get from this phase
  • Written proposal with tier recommendation
  • Pricing breakdown (seat count × tier rate + any one-time setup)
  • Master Services Agreement + Statement of Work for review
  • 60-day no-questions-asked termination clause built in
04

Onboarding (30/60/90 days)

90 days

First month bundles setup at no extra charge

We deploy the security stack in a defined sequence. Day 1: in-person kickoff workshop at your site. Days 2–7: EDR rollout, asset inventory, MFA enforcement. Days 8–30: vulnerability scan, patch baseline, phishing simulation #1. Days 31–60: operational rhythm established, monthly report cycle starts. Days 61–90: optimization, first Quarterly Business Review in person.

What you get from this phase
  • 100% endpoint EDR coverage by Day 7
  • MFA enforced across all M365 users by Day 7
  • Asset + software inventory documented in Hudu
  • First successful backup restore test logged
  • Annual security training assigned to all staff
  • Three monthly security reports delivered
  • First in-person Quarterly Business Review at Day 90
05

Steady-state operations

Ongoing

Per-seat monthly per tier

Once Day 90 closes, the engagement shifts to a steady managed rhythm. Tickets flow through Atera. EDR alerts are handled by the Huntress SOC. Patches roll out on schedule. Phishing simulations run monthly. Monthly security reports land on the 5th business day. Quarterly Business Reviews happen in person at your office every ~90 days.

What you get from this phase
  • Monthly security reports (Day 5 of following month)
  • Quarterly in-person Business Reviews
  • Annual security awareness training auto-enrolment
  • Monthly phishing simulations with trend tracking
  • Quarterly external vulnerability scans
  • Quarterly backup restore tests with documented evidence
06

Annual readiness reassessment

1 week

$1,500 (40% off standard)

Once a year, ahead of your insurance renewal, we re-run an abbreviated version of the Cyber Insurance Readiness Assessment. The baseline is already established, so the deliverable is faster and cheaper. The output is a fresh report your broker can use to negotiate at renewal — usually for a meaningful premium reduction.

What you get from this phase
  • Updated readiness tier and score
  • Year-over-year posture trend
  • Specific evidence for each carrier questionnaire item
  • Recommendations for the next 12 months

What you get

  • Published pricing with no mystery fees
  • 60 days' written notice to terminate, no exit penalties
  • Honest disqualification if we're not the right fit
  • An accountable human who answers their own email and phone
  • Documentation you actually own — everything in Hudu transfers if you leave

What you don't get

  • AI-buzzword-of-the-week products we don't believe in
  • Aggressive renewal sales motions or upsell pressure
  • Surprise price increases mid-contract
  • Vendor lock-in tactics — we use industry-standard tools you could keep without us
  • Promises we can't back up with evidence

The first conversation is free.

Thirty minutes by phone or Teams. We listen, you talk. At the end we tell you honestly whether we're a fit.

Schedule a call →Take the Risk Report first