01
A client sends a security questionnaire.
The answers are spread across screenshots, memory, an MSP thread, and old notes.
Cyber hygiene for Canadian small businesses
Get the basics in order before someone asks for proof.
Regis Cyber helps small teams understand what is already handled, what is unclear, and what to fix first across accounts, MFA, backups, devices, vendors, email, and incident steps.
Built for
Owners and small teams without a full-time security department.
Useful when
A client, insurer, vendor, or incident forces security into plain language.
Format
Short working document, priority list, and 30-day cleanup plan.
Boundary
Not an audit, certification, legal opinion, or insurance guarantee.
When to call
This is for the awkward security questions small businesses get asked.
These are the moments where a short, practical cyber hygiene check can save hours of guessing.
02
Cyber insurance renewal gets uncomfortable.
MFA, backups, endpoint coverage, and admin access suddenly need honest answers.
03
No one clearly owns the basics.
The owner has some accounts. The MSP has some access. Contractors may still have keys.
04
You want to clean up before there is pressure.
That is the easiest time to do it. Small fixes are cheaper before a client or incident forces the issue.
Free self-check
Start with a real working document.
The free self-check is the front door: a plain, practical document a small business owner can finish in about 20 minutes.
01The free self-check asks 12 questions about MFA, admin accounts, passwords, backups, devices, vendors, email, offboarding, and incident steps.
02The checkup turns messy answers into a short list: handled, unclear, needs attention, fix first.
03The paid value is interpretation and prioritization, not pretending the checklist is an audit.
Regis CyberFree self-check
Small Business Cyber Self-Check
12 questions for businesses that do not have a full-time IT or security person.
MFA is on for every important account.
Admin accounts are separate from daily use accounts.
Backups exist and someone has tested a restore.
Critical vendors are known: email, domain, accounting, cloud storage, payments.
The first hour after an incident has an owner.
This is not a security audit. It is a starting point for honest cleanup. Download the PDF.
Approach
A working session, not a sales funnel.
The work is simple on purpose: look at the setup, separate what is handled from what is unclear, then write down the next few fixes.
Step 1
Check the basics.
Walk through accounts, MFA, password manager use, backups, devices, vendors, and first-hour incident steps.
You get a clearer picture.
Handled, unclear, and needs attention are separated before anything gets overbuilt.
Step 2
Sort what matters.
Find the few fixes that reduce the most risk or unblock a client, insurer, or vendor conversation.
You get a short fix list.
No giant binder. No scare tactics. Just the next practical actions.
Step 3
Document what is true.
Write the result in owner-friendly language so it can be reused later.
You get usable notes.
Enough structure to move forward, without pretending it is a formal audit.
Service menu
Start small. Add help only where it saves time.
Free self-check
12 questions to see where the basics stand.
CAD $0
Download PDFStarter kit
Trackers and templates for MFA, backups, admin access, vendors, and cleanup planning.
CAD $49
Ask about the kitWorking hour
A 60-minute screen share to walk through the basics and leave with a short fix list.
CAD $250
Ask about a working hourGuided checkup
A scoped review with a written snapshot and practical next steps.
CAD $895
Ask about a checkupClear scope is part of the trust.
What Regis Cyber does
Helps small businesses organize and prioritize cyber hygiene basics: MFA, backups, admin access, endpoint coverage, vendors, email, and first-hour incident steps.
What it does not claim
This is not a formal audit, certification, legal review, insurance review, privacy opinion, penetration test, or guarantee of security.
Contact