π‘οΈ Aligned to ACSC Essential Eight ML1 Β· π Delivered in 14 business days Β· β Fixed fee, no surprises Β· π¦πΊ Australian-owned
Why Baseline Assurance?
We built this service for businesses that need real cyber protection β not a 200-page report they'll never read.
π―
Pragmatic security, not perfection
We focus on Maturity Level 1 β the high-impact, low-cost baseline recommended by the ACSC. We target the "bottom-feeder" risks first, giving you maximum protection for minimum spend.
π¬
We speak business, not IT jargon
Cyber frameworks are full of confusing acronyms. We deliver an executive-ready summary that explains your risks, why they matter to your cash flow, and a plain-English plan to fix them.
β‘
Completely non-intrusive
We understand that downtime costs money. Our assessment analyses your configurations in the background β without interrupting your staff or halting your daily operations. Zero disruption guaranteed.
π
Independent eyes on your IT
Your IT provider is often too busy with support tickets to audit their own work. We provide a friendly, independent review to validate your setup and align your IT strategy with your business goals.
Fixed-Fee Policy Packs
Choose by headcount. Delivered in 14 business days. All prices +GST.
Starter
$1,490 +GST
Up to 9 staff
6 core policies: Information Security, Acceptable Use, Patch Management, Backup & Restore, MFA & Access Control, Incident Response Plan
Gap Report: "You are X/8 compliant β 5 actions for your IT person"
The Essential Eight is a set of eight cyber security strategies recommended by the Australian Cyber Security Centre (ACSC). It covers areas like application control, patching, multi-factor authentication, and backups. Maturity Level 1 (ML1) β what we target β is the practical baseline that stops the vast majority of real-world attacks without requiring enterprise-level resources.
No. Our process is completely non-intrusive. We analyse your configurations remotely and in the background β your staff keep working as normal. There's no downtime, no software installation on your systems, and no interruption to your client operations.
Not necessarily. Many of our clients have an outsourced IT provider rather than in-house staff. We work alongside whoever manages your technology β and if you don't have anyone yet, we can help you understand what you need. Our deliverables are written so that any competent IT provider can act on them immediately.
A penetration test actively tries to break into your systems β it's a technical exercise. Our service is a policy and compliance assessment: we evaluate whether your documented controls and configuration settings align with the ACSC Essential Eight standard. Both are valuable, but for most small businesses, having solid policies in place comes first.
Small businesses are disproportionately targeted precisely because attackers assume their defences are weaker. A single ransomware incident can cost tens of thousands of dollars in downtime, recovery, and reputational damage. Cyber insurance also increasingly requires evidence of baseline controls β and our attestation letter helps you demonstrate exactly that.
You receive a set of customised policies tailored to your business (not generic templates), a Gap Report showing your current compliance score out of 8 with specific actions for your IT provider, and a signed attestation letter you can present to clients, insurers, or government procurement panels.
Yes, genuinely fixed. The price you see is the price you pay β no hourly overruns, no scope creep charges. If we discover something during the process that requires additional work beyond the pack, we'll tell you upfront before doing anything, so you're always in control.
We sign a mutual non-disclosure agreement before any work begins. We only request the minimum configuration data needed to complete the assessment. All information is stored securely in Australian-based systems, handled in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles.
Often, yes. Many government tenders and insurance applications now require evidence of Essential Eight alignment. Our attestation letter and Gap Report are specifically designed to satisfy those requirements. If you have a specific deadline or a particular standard you need to meet, tell us in your enquiry and we'll tailor our approach.
Get started in 14 business days
Tell us about your business and we'll send a fixed-fee proposal within one business day.
Baseline Assurance β Live Chat
π Hi there! I'm an AI assistant for Baseline Assurance. How can I help you today? Ask me anything about our services, or if you'd like to speak with our team directly, I'll connect you right away.
