Remote Security Audit – Sophia

Price

€200 (fixed)

Turnaround

3 working days after receiving access / information

Target clients

SMEs handling sensitive data — pharmacies, accountants, legal offices, construction firms, small municipalities.

Scope

• External network scan (open ports, exposed services)
• DNS configuration review (SPF, DKIM, DMARC, DNSSEC, zone consistency)
• Web application surface check (TLS version, cipher suites, headers, known vulnerabilities)
• Mail server hygiene (SMTP banner, relay, spam blocklists, STARTTLS)
• Basic OS hardening review for up to 2 public-facing servers (ssh config, pf ruleset, service banners, user accounts, software versions)
• Backup policy sanity check (existence, rotation, offsite/cold storage, recovery test status)

Deliverables

• 4–6 page PDF report (plain English, technical appendix) containing:
  • Executive summary (risks, top 3 findings)
  • Per-area findings with severity (Critical / High / Medium / Low)
  • Concrete, copy-pasteable remediation steps
  • Verification checklist you can use to confirm fixes
• 30-minute video call walkthrough (optional, included) to explain the findings and answer questions

What this is NOT

• Not a full penetration test
• Not a compliance certification (we can prepare you for one)
• Not an ongoing monitoring service (we can set that up separately)

Why Sophia

• All work is documented, reproducible, and vendor‑independent
• You receive infrastructure that you can understand, maintain, and recover
• We use OpenBSD, libre tools, and public documentation – nothing hidden

Booking

Send an email to mailto:contact@sophia.host with subject “Audit inquiry – [Your Company]”. You’ll get a confirmation within 24 hours and a short checklist of the information we’ll need.