Four 60-minute 1-on-1 sessions via Microsoft Teams. Designed specifically for Australian small businesses (1-10 employees). A clear, achievable path to SMB1001 Bronze certification in 60-90 days. Weekly or fortnightly cadence, paced to suit your business. Fixed-fee — request a quote. We prepare you for the certification; the certificate itself is issued by our external partner.
Sessions 1 + 2 — Threat Landscape and Digital Defences: where the threats actually come from (real Australian numbers — $56,600 average incident cost, every 6 minutes a cybercrime, 47% ransomware hit rate for SMBs), how attackers really get in (mostly phishing — still), the SMB1001 framework, the seven Bronze controls. Then the four foundational defences: managed IT support, firewalls (device + router + 2026 verification update), antivirus on every device including phones (new for 2026), and automatic updates including Windows 10 EOL.
Sessions 3 + 4 — Locking It Down and Your Certification Path: passwords vs passphrases (with a live crack-time demo), password managers, social media as a business asset, backups and the 3-2-1 rule (why offline backups still matter even with cloud sync), customer data mapping, the Privacy Act 1988 + Notifiable Data Breaches scheme. Then the gap analysis review, the 90-day implementation framework (days 1-30, 31-60, 61-90), a detailed walkthrough of the SMB1001 certification process (Bronze costs under A$100/year), and a warm handover to our certification partner.
What you get: live conversational sessions (not recorded video), session workbooks with real-time activities, a facilitated gap analysis between sessions 3 and 4, a 90-day implementation plan specific to your business, a clear path to certification with a partner who issues the actual certificate, plus reference materials — phishing red-flag checklist, password-strength tester, customer data mapping tool, 3-2-1 backup builder. Verified facts only — every stat is cited (ASD/ACSC, Sophos, OAIC, CyberCert/DSI).
The course is for owners of Australian SMBs (1-10 employees) who feel overwhelmed by where to start, are tired of generic “watch for suspicious emails” advice, want a certifiable structured outcome, need to satisfy customer or government questions about cyber posture, or are in regulated sectors (health, finance, legal). Bigger than 10 staff? Same course content, group-session format. The first 30 minutes is a free scoping call.
