Skip to content
Core protection

The floor every serious business should already stand on.

Shield is the security baseline your current provider keeps calling “enough.” It rarely is. We deploy managed detection, hardened endpoints, and email defence — then prove it holds.

Lead-to-quote. Scoped to your business after the assessment — never bought from a checkout page.

A hardened GMAN IT firewall appliance rendered in gold and obsidian. Hardened by default
The uncomfortable part

“You’re fine” is not a control.

Most breached businesses had a provider who told them they were covered. They had antivirus, a firewall, and a backup nobody had ever tested. That is not core protection. This is.

Detected, not just logged

We respond to intrusions the moment they start — the gap most providers leave wide open.

Tested, not assumed

Backups and recovery are verified on a schedule, so the last line actually holds.

Hardened, not default

Endpoints, mailboxes, and tenancies configured to a security standard, not the out-of-box one.

Evidenced, not promised

You see what we found and what we closed — in plain English, every quarter.

What Shield deploys

5 controls. One accountable partner.

Every line below is deployed, monitored, and maintained by us. No part-time attention. No “that’s on your other vendor.”

Compliance-ready out of the box

GMAN Shield — Inclusions Ledger

  1. Managed Detection & Response (24/7)Continuous monitoring that acts on an intrusion before it spreads — not a dashboard nobody watches.
  2. Endpoint Protection on every deviceEnterprise-grade EDR deployed across your fleet. Consumer antivirus is not protection.
  3. Email Security & phishing defenceA dedicated layer over your mailbox to stop the phishing and business email compromise that default filters miss.
  4. Automated patch managementKnown vulnerabilities closed on a managed cadence, before an adversary reaches them.
  5. Quarterly vulnerability scanningWe look for the open doors on a schedule — and report what we found and what we closed.
  6. Continuous compliance readinessEssential Eight, ISO 27001, and Privacy Act alignment maintained, not scrambled for at audit time.

Our Word, In Writing

90-Day Confidence Guarantee

If a successful breach gets through an unpatched vulnerability or a failed endpoint defence in your first 90 days, your management fees are refunded in full.

We put our fee where our standard is. The guarantee covers the controls Shield is responsible for, applies for the first 90 days of the engagement, and is written into your agreement — not buried in a footnote.

Stephan Garofalo, Founder & Director

When the floor isn't enough

Some businesses can’t stop at core.

If you carry regulatory weight — APRA, AHPRA, the Privacy Act with real teeth — Fortress adds the vCISO, SIEM, pen-testing, and board reporting Shield deliberately leaves out. Here is the exact line.

The Inclusions Ledger

Shield builds the floor. Fortress builds the roof.

ShieldFortress
  1. Managed threat detection & response (24/7)
  2. Endpoint protection (EDR) on every device
  3. Email security & phishing defence
  4. Continuous compliance readiness
  5. Quarterly vulnerability scanning
  6. Dark web credential monitoring
  7. Virtual CISO (vCISO) advisory
  8. SIEM with log retention
  9. Scheduled penetration testing
  10. Board-ready risk reporting
Controls included5/1010/10