Field Notes
The Solid Cyber Blog
Practical, no-fluff security guidance for small and mid-sized businesses — compliance, pentesting, and the misconfigurations we see most.
M365 Security Misconfigurations Putting Law Firms at Risk
Microsoft 365 ships with defaults designed for a flower shop, not a law firm. The misconfigurations we find most often — and how to fix them.
Read →PCI-DSS Vulnerability Scanning: What Small Businesses Get Wrong
Internal scans, external ASV scans, and penetration testing — what PCI-DSS v4.0 actually requires, and how to pass the first time.
Read →How to Secure QuickBooks Online for Small Accounting Firms
QuickBooks Online isn't secure by default. A step-by-step guide to protect client financial data and meet FTC Safeguards.
Read →Cyber Essentials IT Security Policy: What SMEs Must Document
Most SMEs fail Cyber Essentials not on technical controls, but because nothing is written down. What your policy must cover.
Read →Next step
Ready to test what you've built?
Most engagements start with a 5-minute scoping form. No sales call required.