Microsoft 365 Security
MFA, Conditional Access and Microsoft Defender configured properly across your whole tenant. No Business Premium? We enable Security Defaults as a minimum. It’s the step most MSPs skip.
Most incidents aren’t sophisticated. They’re preventable. The right configuration, the right tools, and a senior team that checks before something goes wrong. Led by our CTO, built into your support.
DEFENCE IN DEPTH · ALWAYS ON
Modern phishing is well-written, contextual and built to bypass even good filters. If something looks off, don’t click it. Send it to us and we’ll detonate it safely in a sandbox before it touches your system.
The businesses that stay protected aren’t the ones spending the most. They’re the ones with the fundamentals configured properly: MFA, patching, device management, email hardening. And a team keeping watch.
If the worst happens, speed matters. Our 3.3-minute average first response means we’re on it fast: immediate lockout and recovery, then a full investigation and a written report on what happened, why, and exactly what needs to change.
Security is part of managed support, not bolted on. Our Premium plan (£55/user) bundles email security, cloud backup, on-site support and Cyber Essentials. Standalone products are available for Standard-plan clients too.
MFA, Conditional Access and Microsoft Defender configured properly across your whole tenant. No Business Premium? We enable Security Defaults as a minimum. It’s the step most MSPs skip.
Microsoft Defender for Business or Bitdefender on every device. Real-time detection, behavioural analysis and automatic response. Not just antivirus, but EDR that catches what signatures miss.
Anti-phishing and anti-spoofing policies, DMARC/DKIM/SPF configured correctly, and impersonation protection. Email is how most attacks arrive, so yours gets hardened.
Every Windows device enrolled in Intune with compliance policies enforced. Non-compliant device? It doesn’t get company data. Conditional Access ties it together.
OS and application patches deployed automatically via our RMM. Vulnerability scanning finds exposure before attackers do, and asset inventory means nothing falls through the cracks.
The full process: audit, remediation, submission and assessor liaison. We fix what you’d fail on before submitting. Cyber Essentials Plus and ISO 27001/9001 gap analysis available too.
Most businesses treat Cyber Essentials as form-filling. We treat it as a genuine security improvement, and we fix the gaps before your assessor ever sees them.
We review your environment against the requirements first and document exactly what you’d fail on: end-of-life hardware, missing MDM, firewall config, access controls. You get a clear remediation plan.
We fix the gaps: replace an end-of-life firewall, roll out Intune, configure Conditional Access and compliance policies, and create the missing joiners/leavers and new-user processes.
We complete and submit the questionnaire for you. We know what assessors look for and how to present your environment accurately. No guessing, no back-and-forth.
We manage annual renewal and keep you at the standard year-round, so renewal is a formality. Cyber Essentials Plus and ISO 27001/9001 gap analysis available.
IASME fees are fixed by organisation size; our time varies with the state of your security. All prices + VAT.
Twelve areas that decide how exposed you really are. We check each, document what we find, and give you a plain-English written summary within 24 hours. No jargon, no sales pitch.
Is MFA enforced for all users? Are admin accounts separately protected? Most account compromises are preventable with MFA alone.
Are anti-phishing and anti-spoofing policies active? Are your DMARC, DKIM and SPF records configured to prevent impersonation?
Business Premium / P1: are Conditional Access policies enforced and legacy auth blocked? Otherwise: are Security Defaults enabled? Most MSPs don’t bother.
Is EDR/antivirus active and current on every device, including personal devices used for work? Are detections reviewed?
Are OS and app patches applied within 14 days? Is there an asset inventory? Any end-of-life software still in use?
Are all Windows devices enrolled in Intune with active compliance policies? Unmanaged devices can’t be monitored, patched or wiped.
Is your firewall current and not end-of-life? Is guest Wi-Fi separated from your corporate network? A core Cyber Essentials requirement.
Are admin accounts used only for admin tasks? Is access least-privilege? Any shared accounts? Privileged access is heavily exploited.
Are backups running, restore-tested, and stored separately from the systems they protect? When did someone last verify a restore worked?
Is onboarding and offboarding documented? Are accounts disabled the day someone leaves? Are access rights reviewed on role change?
Have all staff completed phishing awareness training in the last 12 months? Human error causes most incidents. Training is the cheapest control.
Is there a written plan? Do the right people know who to call, what to isolate and what not to do if breached? A plan written after the event is too late.
We run all 12 points with you in a free 1-hour assessment. Written report within 24 hours.
Book your free security assessmentWe build security around the Microsoft stack (Defender, Intune, Entra ID, Conditional Access) rather than bolting on expensive hardware that adds complexity without adding protection.
Got on-site infrastructure? We’ll support it, and give you an honest picture of what moving to the cloud would mean for security and cost. No pressure, just a straight technical view from your TAM.
Tools we deploy and configure for clients
“WikiTech spotted and blocked a live phishing attack before a single penny left the business.”
“The switch from our old provider was seamless. WikiTech handled everything. We barely noticed the changeover was happening.”
“We save around £800 a month since WikiTech moved us to Azure Virtual Desktop. But honestly the bigger win is having IT that just works.”
WikiTech is not a helpdesk of anonymous agents. It is a team of senior engineers based in Maidstone, led by our CTO on security, who know your business and your systems.
When something looks wrong, you reach people who already know the context. No scripted responses, no bouncing between departments, and no re-explaining your setup every time.
Meet the teamSecurity is built into managed IT support, not sold separately. The Standard plan (£40/user) includes Microsoft Defender configuration, Intune MDM, patch management and Microsoft 365 hardening. The Premium plan (£55/user) adds email security, cloud backup, on-site support and Cyber Essentials support, with no separate per-product billing. Certification itself is quoted separately, as cost depends on your organisation size and the remediation required.
Business Premium unlocks Conditional Access and the full Defender for Business suite, and we recommend it where budget allows. But we don’t leave clients on lower licences exposed: we enable Microsoft Security Defaults on every tenant we manage, which most MSPs skip because it creates more support tickets. We do it anyway.
Typically 4–8 weeks from initial assessment to certification, depending on remediation needed. We complete the pre-audit, fix everything that would cause a failure, then submit and liaise with the assessor directly. You’re not left form-filling.
Usually security and IT support are too intertwined to separate cleanly: patching, device management and access controls touch everything. The honest answer is it works better as part of a full managed relationship. Book a conversation and we’ll give you a straight answer for your situation.
We move fast. First step is immediate lockout: password reset, session revocation and MFA re-enrolment to cut off access. Then we investigate how they got in and what was accessed, handle any ICO reporting if personal data was involved, and give you a full written report: what happened, why, and what needs to change to prevent it.
Ask them for a written summary of your security configuration: MFA status, patch compliance, Intune enrolment rates, firewall model and firmware. If they can’t produce that within a day, that’s your answer. Our free 12-point security check tells you exactly where you stand.
The free 12-point security check takes an hour. You get a written report in 24 hours: plain English, no jargon, no sales pitch.
We use essential cookies to run this site. With your consent we also use analytics and advertising cookies to measure and improve our marketing. You are in control, and you can change your mind any time. See our cookie policy and privacy policy.
Necessary and functional storage keep the site working and are always on. Choose whether to allow analytics and advertising.
Keeps the site secure and remembers your cookie choice. The site cannot run without these.
Notes which pages you look at during this visit. If you send an enquiry, it helps us understand which services you are interested in so we can respond faster and more usefully. First-party, cleared when you close the tab.