Pricing

Transparent Plans for NYC Small Businesses

No quotes that require a sales call. No long-term lock-ins. Pick the plan that fits your team size — and get enterprise-grade protection starting the same week.

Month-to-month, cancel anytime
Free onboarding security assessment
2-week implementation
No hidden fees
Starter
Essentials
Best for practices with 5–15 employees
$799/month

  • Annual Security Risk Assessment (×1)
  • HIPAA / NY SHIELD baseline compliance review
  • Security policy documentation templates (WISP)
  • Quarterly employee phishing training
  • Email & phone support (business hours)
  • Vendor security questionnaire review
  • 24/7 threat monitoring
  • MDR endpoint protection
  • Incident response support
  • Monthly security reports
Get Started
Full Program
Enterprise
40+ employees or multi-location practices
From $2,499/month

  • Quarterly Security Risk Assessments (×4)
  • Full compliance program management (all regulations)
  • Unlimited & customized employee training sessions
  • 24/7 MDR + SIEM log aggregation & correlation
  • Penetration testing (annual)
  • Incident response + 1-hour SLA
  • Dedicated account manager
  • Executive / board-level reporting support
  • Multi-location coverage
  • Custom onboarding & integration
Request Custom Quote

All plans include a free onboarding security assessment. Pricing based on standard NYC SMB environments. Contact us for exact quotes based on your team size and technology stack.

Plan Comparison

Side-by-Side Feature Breakdown

Feature Essentials
$799/mo
Professional
$1,499/mo
Enterprise
From $2,499/mo
Assessments
Security Risk Assessments×1 / year×4 / year
Penetration Testing Annual
Vulnerability Scanning
Compliance
Compliance Gap AnalysisBaseline Full
WISP DocumentationTemplates Maintained
Ongoing Compliance Mgmt
Vendor / BAA Management
Monitoring & Protection
24/7 Threat Monitoring
MDR Endpoint Protection
SIEM Log Aggregation
Dark Web Monitoring
Training
Phishing SimulationsQuarterlyUnlimited
Security Awareness TrainingAnnualCustom
Bilingual (EN + Mandarin)
Response & Support
Incident Response Plan
IR Response SLA1 hour
Monthly Security Report
Dedicated Account Manager
Support HoursBusiness hours24/7
One-Time Services

Not Ready for a Monthly Plan?

Start with a one-time engagement. Many clients begin here and move to a managed plan after seeing what we find.

🔍

Initial Security Assessment

A full review of your network, devices, policies, and compliance posture. Includes written report with prioritized findings. Ideal first step for any organization.

$499 — one time
🐛

Penetration Testing

Simulated attack on your network and/or web applications to identify exploitable vulnerabilities before real attackers do. Required by some insurance carriers.

From $1,500
🎓

Employee Security Training

A single live training session (60–90 min) covering phishing, password hygiene, MFA, and secure work habits. Available in English or Mandarin. Up to 25 attendees.

$399 — per session
📋

HIPAA / SHIELD Compliance Audit

Standalone compliance gap assessment against HIPAA Security Rule or NY SHIELD Act. Deliverable includes gap report and remediation roadmap.

$799 — one time
🚨

Emergency Incident Response

Active breach or ransomware? We respond immediately for non-retainer clients. Containment, investigation, recovery, and regulatory notification support.

$250 / hour
💬

Custom Engagement

Need something specific that doesn't fit the above? We scope custom projects for policy writing, architecture review, M365 hardening, and more.

Pricing FAQ

Common Questions About Plans & Costs

All managed plans are month-to-month with 30 days' notice to cancel. We don't believe in locking clients in — we'd rather earn your business every month through results.
Every new managed client receives a complimentary security baseline assessment during onboarding — covering your network, devices, email configuration, and compliance posture. This is a $499 value included at no charge. It helps us configure monitoring correctly and prioritize your biggest risks from day one.
Absolutely. Most clients start with Essentials or a one-time assessment, then upgrade to Professional once they see the value. Upgrades take effect the following billing cycle with no penalty.
The Enterprise plan scales to any size. For larger organizations or multi-location practices, we build a custom scope and pricing. Contact us and we'll put together a tailored proposal within 48 hours.
Increasingly, yes. Cyber insurance underwriters now require documented security controls, MFA, endpoint protection, and employee training as conditions for coverage. Our Professional and Enterprise plans satisfy the requirements of most major cyber insurance carriers — and we can provide documentation to your broker on request.
No setup fees. The only additional cost may be software licensing for endpoint protection tools if your devices don't already have compatible solutions — we'll disclose this clearly upfront before you sign anything.
Ready to Start?

Book Your Free 30-Minute Consultation

We'll review your current setup, identify your top risks, and recommend the right plan — or tell you honestly if you don't need us yet.