SERVICE / PLATFORM
Platform security & compliance
PLATFORM REMOTE-FIRST TALLINN · EE
A focused hardening and alignment pass — not a full ISO 27001 certification project. Small and mid-sized organisations often end up with a Microsoft 365 tenant, an Atlassian Cloud, and a GDPR register that were all set up quickly and never properly revisited. This service is the revisit. Scoped to what actually reduces risk for a company of your size.
/01What this covers
- /01 Microsoft 365 security review and hardening for Business and Enterprise tenants — conditional access, sharing policies, data loss prevention, admin role hygiene
- /02 Atlassian administration — Jira, Jira Service Management, Confluence — including workflow, permission scheme, and notification scheme design
- /03 GDPR alignment — data inventory, processor agreements, retention policies, records of processing activities
- /04 ISO 27001 gap analysis — identifying what you already do well, what's missing, and what's realistic to close in a defined timeframe
- /05 Practical documentation written for the people who actually have to follow it
/02Typical engagement
Usually a defined project — two to six weeks — with a concrete deliverable: a hardened tenant, a documented policy set, or a gap analysis report. I can also take on ongoing administration for clients who don't want to keep this work in-house.
/03When to get in touch
- /T01 Your M365 or Atlassian tenant has grown organically and no one is quite sure what the current security posture is
- /T02 You're preparing for a client audit, a procurement requirement, or an ISO 27001 certification and need to know where you stand
- /T03 A GDPR incident, data subject request, or processor negotiation has exposed gaps you want to fix properly
- /T04 A recent access review surfaced more than you expected
/04Contact