Security peace of mind — backed by a clear baseline.

Who's it for?

✅ Small businesses that want to reduce risk, pass audits, and satisfy cyber insurance requirements
✅ You need to satisfy cyber insurance or compliance expectations
✅ Leaders who want a real baseline without enterprise complexity

What you get!

• ✅ External vulnerability scan + findings summary

• ✅ Internal vulnerability scan (network + endpoints as applicable)

• ✅ Risk-ranked report (Critical/High/Medium/Low)

• ✅ Executive summary (plain English, board-friendly)

• ✅ Remediation roadmap (what to fix first, and why)

• ✅ 30-minute results review call

• ✅ Includes up to 2 hours of quick-win remediation support

Timeline:

• Day 1: kickoff + scheduling + access

• Days 2–4: scan + analysis

• Day 5: report delivery + 30-minute results review call

• Optional: remediation support + retest

Pricing:

Pricing varies by scope and environment size.

• Baseline Package: $495–$1,095

• Retest (optional): $250–$500

• Add-on (optional): Cloud Identity & Email Security Baseline Review: $495

✅ If you move forward with Marathon Tech for managed IT/security, the baseline cost can be applied as a credit toward onboarding.

Already a Marathon Tech client?

You’re already protected through our ongoing monitoring and security stack. This baseline is a verification + roadmap tool to keep your environment tight as it evolves — and managed clients qualify for preferred pricing.

Why Marathon Tech?

We help small businesses build peace of mind into their systems with proactive IT + cybersecurity.
Our baseline is designed to be:

• Practical (not theoretical)

• Actionable (clear priorities)

• Fast (typically completed in one week)

• Easy to understand (executive-level summary)

FAQ

Is this a “penetration test”?
This is a vulnerability assessment (baseline testing). It identifies weaknesses and provides a remediation roadmap. It is not full exploitation/red teaming.

Will this disrupt my business?
No. Scans are scheduled to minimize impact. We coordinate access and timing during kickoff.

What do you need from us?
We’ll confirm scope and access during kickoff. Typically we need basic network visibility and endpoints where applicable.

Do you fix the issues you find?
We include up to 2 hours of quick-win remediation support. Larger remediation work can be quoted as a project or addressed through managed services.

Can this help with cyber insurance?
Yes. Many clients use the report and remediation plan to support cyber insurance renewal requirements and demonstrate security posture improvement.