SMB1001 Readiness Assessment

Do you have a firewall installed and actively configured on all internet-facing connections and devices, including host-based firewalls enabled on staff laptops?

Is antivirus or anti-malware software installed and kept automatically up to date on all organisation devices, including workstations, laptops, and mobile devices?

Are operating system and application updates set to install automatically on all workstations, laptops, and personal devices used for work?

Do all public-facing websites and services your organisation operates use valid TLS certificates from a trusted certificate authority, with no expired or self-signed certificates?

Do you have a documented server patching schedule covering all servers — on-premise, cloud-hosted, and provider-managed — with critical patches applied within 14 days of release?

Is Endpoint Detection and Response (EDR) deployed on all workstations, laptops, and servers, providing behavioural threat detection, automated response capability, and alerts to your IT team?

Do you conduct regular automated vulnerability scanning of all public internet-facing systems and infrastructure?

Is all critical and sensitive business data encrypted at rest across servers, workstations, laptops, cloud storage, and external drives?