Services

Three services. A defined sequence.

Every Bulwark engagement follows the same path. A 15-minute call to map your environment. A fixed-price project to close what it finds. An ongoing retainer to keep it that way. No scope creep. No surprises.

Cyber Essentials

Cyber Essentials is the UK government's baseline cybersecurity standard. All of Bulwark's technical work maps directly to its five controls. Completing the hardening project means your Google Workspace environment meets those requirements and can support a formal Cyber Essentials assessment.

Step 01

The Discovery Call

Book now →

A structured 15-minute call to map your current environment. We confirm what platform you are on, how your team is set up, and where the most significant gaps are. No technical knowledge is required on your side. No preparation is needed before the call.

By the end of the call, you will have a plain-English summary of what needs to happen, in what order, and a fixed price for the next step. If your situation is not a fit for Bulwark, that will be said directly on the call.

  • Covered Current Google Workspace configuration and any known gaps
  • Covered Team size, structure, and device setup
  • Covered Active risks: lapsed access, domain exposure, backup status
  • Covered Cyber Essentials baseline: where you currently sit against the five controls
  • You get Plain-English summary. Fixed price for the hardening project. No obligation to proceed.
Step 02

Security Assessment

Starts with a discovery call

A structured assessment of your Google Workspace environment against the five Cyber Essentials controls. Every setting, every account, every device in scope is checked and documented. Fixed price, completed within two weeks.

You receive a written report showing exactly where your environment stands, every gap found, the risk each one carries, and a clear remediation roadmap. The assessment stands alone or feeds directly into the hardening project.

  • Covered Full configuration review against all five controls
  • Covered Every user account and access level audited
  • Covered Device, email, and backup posture assessed
  • Covered Written findings report with risk-rated remediation roadmap
  • You get A written assessment report. A clear picture of where you stand. No obligation to proceed.
Step 03

Workspace Hardening Project

Starts with a discovery call

A one-off project to close every gap the discovery call identifies. Fixed scope. Fixed price. Completed within two to three weeks. Nothing is left open-ended.

Every item maps to a Cyber Essentials control. The project ends with a written before-and-after document showing exactly what changed, what was found, and where your environment now sits against the Cyber Essentials baseline.

  • Identity MFA enforced on every account. Admin roles tightened. All lapsed and ex-employee access removed.
  • Email DMARC set to reject. DKIM and SPF verified. Your domain cannot be impersonated to redirect client invoices.
  • Data Drive sharing permissions reviewed. External sharing locked to known contacts. Shared Drive access audited.
  • Devices 24/7 endpoint monitoring deployed on every managed device. Remote management agent installed and configured.
  • Backup Independent daily backup configured outside Google's infrastructure. Gmail, Drive, Calendar, and Shared Drives covered.
  • Browser Chrome Enterprise locked down. Dangerous extensions blocked. Safe browsing enforced across managed devices.
  • You get Written before-and-after. Cyber Essentials posture summary. Fixed price, no additions.
Step 04

Managed Monthly

Starts with a discovery call

Ongoing ownership of your Google Workspace environment. One specialist. One fixed monthly price. No tiers, no add-ons, no helpdesk queue. The person you speak to is the person who does the work.

Managed monthly clients receive a written security review every month. If something changes, a staff member leaves, a new device joins, a threat is detected, it is handled the same day. A quarterly Cyber Essentials posture check keeps your environment aligned as the standard updates.

  • Lifecycle Same-day leaver offboarding. New starters provisioned and fully live within 24 hours.
  • Monitoring 24/7 human-led threat monitoring on every managed device and cloud account. Contained before you find out.
  • Backup Independent daily backup maintained and tested. Point-in-time recovery available at any time.
  • Devices Remote patch management running silently in the background. Device posture maintained continuously.
  • Review Written monthly security review. What changed, what was detected, what was done. Documented, not assumed.
  • Compliance Quarterly Cyber Essentials posture check. Your environment stays aligned as the standard evolves.

Not on Google Workspace yet?

If your team is moving from Microsoft 365 or a legacy setup, Bulwark offers a Cloud Foundation project. The same Cyber Essentials-aligned configuration from day one, not retrofitted later.

Scope the migration →

Start with a 15-minute call.

Map your environment, identify your biggest risks, and get a fixed price for the next step. No preparation needed. No obligation to proceed.

Available Mon–Fri.