Home  /  Cyber Security and IT Security Services

Solutions

Cyber security for London businesses. Built in from day one.

Most small businesses approach cyber security the wrong way. They buy an antivirus licence, assume that covers them, and move on. Then something goes wrong, and they discover that antivirus alone was never enough.

Cyber Security and IT Security Services

We take a different approach. Every Network Fish managed support client gets a full, layered security stack deployed and managed as part of their contract. Not as an add-on. Not as a separate engagement. Included.

Here is what that looks like.

The security stack we manage for every client

Antivirus (Datto AV)

Managed antivirus deployed across every Windows and macOS device, monitored centrally. We see every device’s protection status in real time. If a definition update fails, if a device drops off, if a threat is detected, we know about it immediately and deal with it. Not installed and forgotten — actively managed.

Advanced threat detection (Datto EDR: Endpoint Detection and Response)

Your antivirus catches threats it already recognises. Datto EDR catches everything else. It watches how every device is behaving around the clock and detects suspicious activity — including new ransomware variants and zero-day attacks — even when no matching signature exists. It works across Windows, macOS, and Linux. If a threat is detected, EDR can contain it automatically, isolating the affected device before the infection spreads.

Web-level threat blocking (DNS Filtering)

Before your team’s browser connects to a malicious website, we block the connection at the network level. Phishing links, malware download sites, fake login pages, and command-and-control domains are stopped before they load — whether your team is in the office, at home, or travelling.

Two-step login, enforced for everyone (MFA: Multi-Factor Authentication)

We enforce multi-factor authentication across every account and every system in your business: Microsoft 365, Google Workspace, VPN, and any other business-critical application. Even if an attacker has a password, they cannot get in without the second verification step. It is included in your platform licences at no extra cost. We make sure it is switched on and enforced.

Device hardening

Out-of-the-box device settings are not secure. We apply a recognised security baseline to every device: disabling unnecessary services, restricting local admin rights, enforcing strong login policies, and controlling removable media. This is done at onboarding and reviewed regularly, and it maps directly to the Cyber Essentials technical controls.

Automatic patch management

Outdated software is the most common entry point for attackers. We deploy operating system and application updates automatically, on a tested schedule, across every device. Critical security patches are fast-tracked. You never need to think about it.

Full-disk encryption (FDE)

Every device in your business should be encrypted so that a lost or stolen laptop cannot be read by anyone who finds it. We enforce BitLocker on Windows devices with recovery key escrow, FileVault on macOS, and verify encryption status across the estate. This is also a GDPR requirement and a Cyber Essentials control.

Vulnerability scanning

We run continuous internal and external vulnerability scans across your network and devices. Think of it as a constant health check: finding unpatched software, misconfigured settings, and exposed ports before an attacker does. Issues are raised as helpdesk tickets and resolved. Every quarter you receive a written report of what was found and what was done about it.

Cyber Essentials readiness

We hold Cyber Essentials certification ourselves. For managed support clients, the gap analysis, remediation guidance, and support through the certification process are included in your contract at no extra charge. The only additional cost is the certifying body fee, currently around £300, paid directly to the certifying body.

Cyber Essentials Plus (an independently audited higher level of certification) and CREST-certified penetration testing are available as additional services for businesses that need independent, audited assurance.

Email defence

We configure anti-phishing policies, safe links, safe attachments, and outbound filtering within your Microsoft 365 or Google Workspace environment, alongside SPF, DKIM, and DMARC sender authentication records for your domain. Email is the most common entry point for attackers. We close that door properly.

Why layers matter

No single security control is sufficient on its own. Antivirus misses new threats. MFA can be bypassed if a device is already compromised. Patching helps, but only covers known vulnerabilities. DNS filtering stops web-based threats but not email-borne ones.

Effective security is a set of overlapping controls, each covering the gaps left by the others. When one control fails or is bypassed, the next one catches what it missed.

That is what we build and manage for every client — a set of controls that work together, all monitored centrally, all included in one monthly fee.

What this is not

We do not sell security as a consulting engagement. We do not produce reports and leave implementation to you. We deploy, configure, monitor, and manage every control described above as a managed service, as part of your ongoing support contract, alongside the helpdesk, on-site support, network management, and backup services that make up the complete package.

One monthly fee. One number to call.

The day-to-day risk of keeping your business secure becomes our job, not yours.

Book your free site survey   or call +44 (0) 207 403 4031

Frequently asked questions

What cyber security services does Network Fish include in a managed support contract?

The full security stack included in a Network Fish managed support contract covers: managed antivirus (Datto AV) on every Windows and macOS device; advanced threat detection (Datto EDR) covering Windows, macOS, and Linux; web-level threat blocking (DNS filtering); multi-factor authentication enforced across all accounts and business systems; device hardening applying a security baseline to every endpoint; automatic patch management for operating systems and applications; full-disk encryption with central key escrow; email defence including anti-phishing, safe links, safe attachments, and sender authentication; continuous vulnerability scanning with quarterly reporting; and Cyber Essentials readiness support. All of these are included at no extra charge beyond the monthly support fee.

Is antivirus enough to protect my business from cyber attacks?

No. Antivirus is an essential layer but it only detects known threats by matching files and processes against a database of malicious signatures. It cannot catch new threats it has never seen before. Effective cyber security for a business requires multiple overlapping layers: antivirus for known threats, EDR for unknown or behaviour-based threats, MFA to protect accounts even if passwords are compromised, DNS filtering to block web-based threats before they load, automatic patching to close known software vulnerabilities, and device hardening to reduce the attack surface. Network Fish manages all of these layers as part of a single managed support contract.

What is the difference between antivirus and EDR?

Antivirus (AV) detects threats it recognises by comparing files against a database of known malicious signatures. EDR (Endpoint Detection and Response) monitors device behaviour in real time and detects suspicious activity regardless of whether the specific threat is known. EDR can contain a threat automatically by isolating the affected device before an infection spreads. The two products work best together: antivirus handles known threats quickly, EDR catches what antivirus misses. Network Fish deploys and manages both Datto AV and Datto EDR for managed support clients.

What is Cyber Essentials and is it included in a managed support contract?

Cyber Essentials is a UK government-backed security certification that assesses five technical controls: firewalls, secure device configuration, user access controls, malware protection, and patch management. It is increasingly required by insurers and by larger organisations when onboarding suppliers, and is mandatory for businesses tendering for UK government contracts. For Network Fish managed support clients, the Cyber Essentials gap analysis, remediation guidance, and support through the certification process are included in the contract. The only additional cost is the certifying body fee, currently around £300, paid directly to the certifying body.

What is multi-factor authentication and why do you enforce it?

Multi-factor authentication (MFA) requires a second verification step when someone logs into an account, usually a code sent to a phone or generated by an app, in addition to their password. Even if an attacker obtains a password, they cannot access the account without completing the second step. MFA is included in Microsoft 365 and Google Workspace licences at no extra cost but is not enforced by default. We enforce it across every user account and every business system as a standard part of our managed support service because it is the single most effective control against account takeover attacks.

What is DNS filtering and how does it protect my business?

DNS filtering works at the network level to block connections to malicious websites before they load in a browser. When your team clicks a phishing link, visits a website hosting malware, or accidentally navigates to a fake login page, DNS filtering stops the connection at the DNS lookup stage before any content is loaded. It works across all devices on your network and follows your team when they are working remotely. It does not require any action from your staff and does not depend on them knowing what to avoid.

What is device hardening and why does it matter?

Device hardening means applying a recognised security baseline to every device in your business by disabling services that do not need to be running, restricting who can make administrative changes to the machine, enforcing strong login and password policies, and controlling what can be connected via USB or removable media. Out-of-the-box device settings from manufacturers are not optimised for security. Hardening closes a range of vulnerabilities that attackers commonly exploit, and it maps directly to the Cyber Essentials technical controls for secure configuration.

What is full-disk encryption and do I need it?

Full-disk encryption means encrypting the entire contents of a device’s storage so that the data is unreadable without the encryption key. If a laptop is lost or stolen, full-disk encryption is what prevents the data on it from being read by whoever finds it. It is a GDPR requirement for businesses handling personal data, a Cyber Essentials control, and standard practice in any properly managed IT environment. We enforce BitLocker on Windows and FileVault on macOS, with recovery keys held centrally.

What is vulnerability scanning and how is it different from a one-off security assessment?

A security assessment is a point-in-time review of your IT environment. Vulnerability scanning is continuous. We run automated internal and external scans across your network and devices on an ongoing basis, checking for unpatched software, misconfigured settings, exposed network ports, and known vulnerabilities across all connected devices and network equipment. When an issue is found, it is raised as a helpdesk ticket and resolved. Every quarter we produce a written report summarising what was found and what was addressed.

Do you offer penetration testing?

Yes. CREST-certified penetration testing is available as an additional service for businesses that want independent, audited assurance of their security posture beyond what continuous vulnerability scanning provides. A penetration test involves an accredited tester actively attempting to break into your network to find vulnerabilities that might not be visible through automated scanning alone. CREST is the UK accreditation body for penetration testing, and using a CREST-certified provider means the test meets a recognised professional standard.

What is the difference between Cyber Essentials and Cyber Essentials Plus?

Cyber Essentials is a self-assessed certification: you complete an online questionnaire and, if your answers demonstrate compliance, a certifying body awards the certificate. Cyber Essentials Plus is independently verified: a qualified assessor actually tests your systems to confirm the controls are in place and working, rather than relying on self-declaration. Cyber Essentials Plus carries more weight with clients and insurers who want audited assurance rather than self-certification. Network Fish supports clients through both levels.

How is Network Fish’s cyber security different from buying a security product ourselves?

Buying a security product gives you the software. It does not give you anyone monitoring it, updating it, responding when it alerts, or ensuring it is correctly configured. A security product that is installed but not monitored, updated, or correctly configured provides significantly less protection than its specifications suggest. Network Fish deploys, configures, monitors, and manages every security control as an active, managed service. When a threat is detected, we respond. When a definition update fails, we know. When a device drops off the monitoring console, we investigate. The difference is between having a security product and having security.