About Us
pangolin.consulting is an information technology and security advisory group based in Massachusetts, US. Serving small businesses, we bring enterprise-grade technical resources (people, processes, tools) at a fraction of the cost of traditional consulting firms.
Who We support
Your company may be a great candidate to make use of these consulting services if you represent a small business (< 250 FTE) that has limited internal IT resources and require additional expertise to address specific IT challenges or projects.
Your organization may not have the budget or need for a full-time IT staff, but still require support to maintain and optimize your IT infrastructure or security program.
You may not have an information security program or contingency plan.
Enterprise IT experience at a fraction of the cost.
Did you know?
According to Massachusetts General Law (MGL C93H), business that collect, store, or use Personal Information about a Massachusetts resident must comply with regulation 201 CMR 17.00.
Personal Information includes:
a Massachusetts resident’s first name and last name or first initial and last name in combination with any one or more of the following data elements that relate to such resident: (a) Social Security number; (b) driver’s license number or state-issued identification card number; or (c) financial account number, or credit or debit card number, […]
Mass 201 CMR 17.02
What do I need to be compliant with 201 CMR 17? — Your company must have a Written Information Security Program which outlines the security controls of your organization… access controls, authentication controls, monitoring, staff training, among numerous others. In addition to this, if your company gets breached, you are obligated to notify the attorney general, and in some cases, the affected data subjects.
Check-out the compliance checklist at Mass.GOV
Odds are…
- 46% of all cyber breaches impact businesses with < 1,000 employees[1]
- 61% of SMBs were targeted by a cyberattack in 2021[2]
- The most common types of cyberattacks that affect small businesses[3]:
- Malware (18%)
- Phishing (17%)
- Data Breach (16%)
- Hacked Website (15%)
- DDoS (12%)
- Ransomware (10%)
- Speaking of ransomware….
82% of ransomware attacks were against companies with < 1000 employees; 37% of companies with < 100 employees were hit with ransomware in 2021[4] - 87% of small businesses collect customer data including credit card #s, social security #s, bank account info, and contact info [5]
- 51% of small businesses have no cybersecurity plan at all
- 59% of small business owners believe they are too small to be attacked
- 27% of small businesses that collect credit card info have no cybersecurity protections
- 47% of businesses with <50 employees have no budget for cybersecurity [6]
- Only 17% of small businesses have cybersecurity insurance, 48% don’t purchase insurance until after an attack; 64% of business owners are not familiar with cybersecurity insurance [7]
[1] https://www.verizon.com/business/resources/reports/dbir/2021/smb-data-breaches-deep-dive/
[2] https://www.verizon.com/business/resources/reports/dbir/
[3] https://quickbooks.intuit.com/r/trends/insights-april-2022/
[4] https://www.coveware.com/blog/2022/2/2/law-enforcement-pressure-forces-ransomware-groups-to-refine-tactics-in-q4-2021
[5] https://digital.com/51-of-small-business-admit-to-leaving-customer-data-unsecure/
[6] https://insights.corvusinsurance.com/cyber-risk-insight-index-q1-2022/survey-findings-smb-cyber-readiness
[7] https://advisorsmith.com/data/small-business-cyber-insurance-statistics/
Cost of a FTE
There is no replacement for a full-time, in-house technical professional.
Trust and accountability comes with having a dedicated person for that role, but unfortunately, these things come at a cost.
Our consultancy provides businesses with an efficient and cost-effective alternative to hiring a full-time IT or IS employee. Rather than bearing the high cost of salary, benefits, and overhead associated with a full-time employee, our consultancy offers flexible, on-demand services that are tailored to meet each client’s specific needs. We can provide specialized expertise for specific technology and security projects or ongoing support, all while minimizing the costs and time commitments associated with recruiting, training, and retaining a full-time employee.
Cost of Consulting Firms
Our consultancy offers businesses a personalized and cost-effective alternative to large consulting firms. Rather than paying for high-priced services, our clients work directly with an experienced IT professional who provides a customized solution to meet their unique needs.
Unlike large consulting firms, we don’t have layers of management or high overhead costs which allows us to provide affordable pricing and exceptional service. Our consultancy values building long-term relationships with our clients, and we take pride in delivering high-quality services that exceed their expectations. By working with us, businesses can benefit from our personalized approach, enterprise expertise, and competitive pricing, all while receiving the attention and support they deserve.
Why choose us?
pangolin.consulting is composed of certified cybersecurity and privacy professionals with over 20 years of experience working in information technology, cybersecurity, systems design, and education.
We love what we do.
Let us supplement your existing technical staff. If you have a big project on the horizon and need another pair of eyes or another set of hands, we can help!
OR hire us to take some of the burdens of managing your technical resources.