Small Business
Practical, industry-specific assessments designed for Australian small businesses. Plain language guidance tailored to your sector's unique risks and compliance requirements.
Small businesses face the same cyber threats as large enterprises but without dedicated security teams or big budgets. Our health checks are designed specifically for business owners and managers who need to understand their security posture without specialist expertise.
Each assessment uses plain language, focuses on practical controls you can actually implement, and provides clear guidance tailored to your industry's specific risks and regulatory requirements.
Select the assessment tailored to your business type for industry-specific questions, compliance guidance, and relevant recommendations.
A comprehensive cyber security health check suitable for any small business. Covers essential security controls, data protection, and incident readiness in plain language that any business owner can understand.
84 questions across 12 domains
Purchase AssessmentTailored for accounting firms handling sensitive financial data. Covers ATO portal security, client financial records protection, tax agent obligations, practice management system security, and accountant-specific cyber risks.
84 questions across 12 domains
Purchase AssessmentDesigned for financial planners and advisers. Addresses AFSL compliance obligations, client portfolio protection, Statement of Advice security, platform access controls, and regulatory requirements specific to financial advice.
62 questions across 12 domains
Purchase AssessmentBuilt for general practices and medical clinics. Covers patient health information protection, clinical system security (Best Practice, Medical Director), My Health Record obligations, pathology/imaging integration, and healthcare-specific compliance.
85 questions across 12 domains
Purchase AssessmentTailored for mortgage brokers and finance professionals. Covers ACL compliance requirements, aggregator security expectations, lender portal access, settlement fraud prevention, referral partner data sharing, and client document protection.
56 questions across 7 domains
Purchase AssessmentDesigned for real estate agencies and property managers. Addresses trust account security, vendor and buyer data protection, property listing system security, settlement process risks, and tenant information handling.
84 questions across 12 domains
Purchase AssessmentAll assessments evaluate the essential security areas that matter most for small businesses, with industry-specific questions where relevant.
Password policies, two-factor authentication, access controls, and who can get into your systems.
Keeping your computers, phones, and software up to date to fix security vulnerabilities.
Making sure you can recover your important data if something goes wrong.
Antivirus, anti-malware, and other protective software on your devices.
Understanding what sensitive information you hold and how it should be protected.
Making sure your team knows about common threats like phishing and scams.
Having a plan for what to do if you experience a cyber incident.
Managing security risks from the IT providers and cloud services you use.
A clear overall score showing where your business sits — from "Getting Started" through to "Strong Foundation".
The most important things to fix first, ranked by risk so you know where to focus your time and budget.
Recommendations written in everyday language — no technical jargon or acronyms.
Word and Excel exports you can share with your IT provider, insurer, or keep for your records.
Run the assessment annually to track your improvement and demonstrate good security practices to customers, insurers, and regulators.
Purchase and download your industry-specific assessment. It's a single HTML file that runs in your web browser — no installation needed.
Work through the questions at your own pace. Your progress is saved automatically in your browser. Most businesses complete it in 30–60 minutes.
Get your security score and see exactly where you're doing well and where you need to improve. Export reports to share with your IT provider or keep for your records.
Use the prioritised recommendations to improve your security. Many fixes are simple and low-cost — the assessment tells you what matters most.
The assessment runs entirely in your web browser. Your answers are saved locally on your computer and are never sent to us or anyone else. You're in complete control of your data — exactly as it should be for a security assessment.
Important Note
These assessments are self-assessment tools designed to help small businesses understand their current security posture. They do not constitute professional security advice, formal audits, or compliance certifications. For specific security concerns or compliance requirements, please consult with a qualified professional.
Do I need technical knowledge to use these assessments?
No. The questions are written in plain language and include helpful explanations. If you run a small business, you'll be able to answer most questions — and it's okay to mark things as "unsure" if you don't know.
How long does it take to complete?
Most businesses complete the assessment in 30–60 minutes. Your progress is saved automatically, so you can stop and come back later if needed.
Which assessment should I choose if my industry isn't listed?
Use the "Small Business Cyber Security Assessment" (General). It covers all the essential security areas that apply to any business.
Can I share my results with my IT provider?
Yes. You can export your results to Word or Excel to share with your IT provider, accountant, insurer, or anyone else who needs to see them.
Is this assessment enough for regulatory compliance?
These assessments help you understand your security posture and identify gaps, but they are not formal compliance certifications. For specific regulatory requirements (like Privacy Act obligations), you should seek professional advice.
Get in touch and we'll help you choose the right health check for your business.
Contact Us