Purple Cap Security logo Purple Cap Security
Defense-in-Depth for small teams & businesses

Practical cybersecurity that protects your business

Get clear, actionable guidance—no scare tactics. From quick hardening wins to ongoing advisory, we focus on the essentials that reduce risk fast.

Contact me See services

Serving Whidbey Island & remote. Vendor-neutral.

Security Roadmap
90-day plan with clear milestones
Quick Wins
MFA (Multi‑Factor Authentication), backups, EDR (Endpoint Detection & Response), RBAC (Role‑Based Access Control), phishing
Right-Sized
Small-business focused, vendor‑neutral guidance

What I can do for you

Start simple, then scale. We prioritize the highest‑impact controls first.

Comprehensive Cybersecurity Assessment

Baseline your environment and identify prioritized actions.

  • Asset inventory & risk review
  • Policies: access, backup, incident
  • 90‑day roadmap & quick wins

Incident Response (IR) Planning

Prepare playbooks and roles so you can act decisively.

  • IR runbooks & tabletop drills
  • Vendor & law‑enforcement coordination
  • Post‑incident review

System Hardening & Implementation

Close common gaps fast and document the changes.

  • MFA & SSO rollout
  • EDR/AV deployment & tuning
  • Secure backups & restore testing

Ongoing Security Consultation (Retainer)

Steady guidance, reviews, and prioritization as your environment evolves.

  • Monthly check‑ins & metrics
  • Policy & vendor reviews
  • Ad‑hoc questions & coaching

Hourly Consulting Services

Flexible support when you need a second set of hands.

  • Troubleshooting & advisement
  • Project planning & reviews
  • Security architecture

Additional Services

Training, vendor selection, and light compliance alignment and auditing.

  • Security awareness sessions
  • Backup/restore drills
  • Light NIST CSF (National Institute of Standards and Technology — Cybersecurity Framework) alignment and auditing.
Request pricing & availability

Why Purple Cap?

  • Clear priorities. You’ll know what to do next and why it matters.
  • Action over jargon. Acronyms defined the first time: MFA, EDR, RBAC.
  • Right‑sized for small businesses—no enterprise upsell.
  • Flexible engagement: one‑time hardening, project‑based, or retainer.

Common quick wins

  1. Enable MFA (Multi‑Factor Authentication) everywhere
  2. Harden email & anti‑phishing
  3. Patch cadence & asset inventory
  4. Backups with restore testing
  5. Admin access via RBAC (Role‑Based Access Control)
  6. EDR/AV roll‑out & alerting

We’re vendor‑neutral and prioritize controls aligned with NIST CSF (National Institute of Standards and Technology — Cybersecurity Framework).

Let’s talk

Tell me a bit about your environment and goals. I’ll reply with next steps and a suggested starting plan. Free 30-minute initial consultations.

Email me Call (360) 672-7144

Prefer Signal or another secure channel? Mention it in your email and we’ll do our best to accommodate.