We take a different approach. Every Network Fish managed support client gets a full security stack deployed and managed as part of their contract. Not an optional add-on. Not a separate quote. Included.
Here is what that looks like in practice.
Antivirus
Managed antivirus deployed to every Windows and Mac device in your business, monitored centrally. Not installed and forgotten. If protection lapses on any device, or an update fails, we know about it and fix it before it becomes a problem. One unprotected machine is all it takes.
Advanced threat detection (EDR: Endpoint Detection and Response)
Your antivirus catches threats it already recognises. But what about an attack it has never seen before?
We also run software that watches how every device is behaving, around the clock. If something starts acting suspiciously, even if it looks like a legitimate programme, the software spots it, contains it, and responds automatically — before anyone needs to pick up the phone. It works across Windows, Mac, and Linux.
Web-level threat blocking (DNS Filtering)
Before your team’s browser even connects to a dangerous website, we block the connection at the network level.
Malicious links in phishing emails, fake login pages, malware download sites: all stopped before they load, whether your team is in the office, at home, or travelling. It does not require your staff to know what to avoid. It stops the connection happening in the first place.
Two-step login, enforced for everyone (MFA: Multi-Factor Authentication)
A password on its own is not enough. We make sure every account in your business — email, cloud apps, VPN, and any other business system — requires a second verification step before anyone can log in. Usually a code sent to a phone or generated by an app.
Even if an attacker has someone’s password, they cannot get in without that second step. It is the single most effective security control available to a small business. We make sure it is switched on across your whole business and stays that way.
Device hardening
Out-of-the-box device settings are not secure. We apply a recognised security baseline to every device in your business: disabling services that do not need to be running, restricting who can make changes to the machine, enforcing strong login policies, and controlling what can be plugged in via USB. This is done at the start and reviewed regularly, and it maps directly to the Cyber Essentials technical requirements.
Automatic software updates
Outdated software is the most common way attackers get in. We deploy operating system and application updates automatically, on a tested schedule, across every device. Critical security patches are fast-tracked. You never need to think about it, and nothing is left running on an old version.
Vulnerability scanning
We run continuous scans of your network and devices to find security weaknesses before an attacker does. Think of it as a constant health check: looking for unpatched software, misconfigured settings, exposed ports, and known risks across your entire estate.
When something is found, it is raised as a ticket in our helpdesk and resolved. Every quarter we give you a written report of what was found and what was done about it.
Cyber Essentials
Cyber Essentials is a UK government-backed security standard that tests five core areas: firewalls, secure device configuration, user access controls, malware protection, and software patching. Passing the assessment gives you a certificate that lasts 12 months.
It is increasingly required by insurers and by larger organisations before they will work with a supplier. For businesses tendering for UK government contracts, it is mandatory.
We hold Cyber Essentials certification ourselves. For managed support clients, the gap analysis, remediation guidance, and support through the certification process are included in your contract. The only additional cost is the certifying body fee, currently around £300, paid directly to them.
Cyber Essentials Plus (an independently audited, higher level of certification) and CREST-certified penetration testing are available as additional services.
In plain English
Attackers do not target businesses because they are interesting. They target them because they are easy. A business without managed antivirus, without two-step login, without automatic patching, is an easy target.
With Network Fish, every device in your business is monitored, protected, updated, and hardened. All day. All night. For one monthly fee.
One monthly fee. One number to call.
The day-to-day risk of keeping your business secure becomes our job, not yours.
