Independent information security

Enterprise-grade security, made affordable.

The basics done properly, certifications, monitoring and a security leader on call, at a price that makes sense for businesses of every size.

Book a free 30-min review → See what we do

No retainer required to start. Fixed, transparent pricing on everything.

soc-monitor · groundwork live

Email & phishing

post-delivery scanning

Monitored

Microsoft 365

Defender · Entra · Sentinel

Secure

Endpoints

142 devices protected

Healthy

Identity

MFA enforced · 0 risky sign-ins

Enforced

Threats blocked today 0

What we do

Everything a security team does, sized to fit you.

Pick the piece you need today. Add more as you grow. No bundle you have to buy whole.

Cyber Essentials & Plus

Get certified, win contracts, and satisfy insurers. We take you from gap to badge.

Security health check

An honest look at where you stand, so you fix what matters first instead of buying things you don't need.

Virtual CISO

Security leadership on a retainer instead of a salary. Strategy, board reporting, and decisions you can stand behind.

Microsoft 365 hardening

Defender, Entra ID, Sentinel and Intune configured properly, using licences you already pay for.

Security monitoring

A managed eye on your tenant and endpoints, so a real person catches what slips past the tooling.

Risk, governance & compliance

Risk assessments, DPIAs and policies that fit how you actually work, not a shelf of templates.

Phishing & awareness

Realistic simulations and training that change behaviour, measured so you can prove it works.

Incident response

When something goes wrong, get experienced hands on it fast, with a clear path back to normal.

How we protect you

A clear path from exposed to covered.

We follow the same proven cycle the best security teams use, scaled to fit your business.

Identify

We find what you have and where you're exposed, in plain language.

Protect

We fix the fundamentals first, hardening what you already pay for.

Detect

We watch your tenant and accounts so threats surface early.

Respond

When something happens, we act fast and get you back to normal.

A straight-talking approach

As a security leader, I've watched too many businesses pour money into tools and badges while the basics still aren't in place. Real security almost never starts with the biggest spend. It starts with getting the fundamentals right. We'll always tell you that honestly, even when it means selling you less.

— Founder, Groundwork Security

Basics first Honest advice Cost-effective by default

Our own product

Meet Rex — email security that keeps watching after delivery.

Most filters check email once, at the door. Rex watches every Microsoft 365 mailbox continuously, catching the threats that only reveal themselves after they have landed.

AI analysis of every message, grouped so you triage threats in seconds
SOC sign-in monitoring that protects your accounts from takeover, flagging unusual countries and risky logins
One-click bulk remediation across affected mailboxes
Built for M365 SMEs, live in minutes, no hardware

£7per user / month

Explore Rex →

rex · inbox feed3 needs review

DHL Delivery

Your parcel is held, confirm payment

Blocked

Microsoft 365

Unusual sign-in from Singapore

Flagged

Accounts payable

Updated bank details for invoice 4471

Flagged

Jess (Finance)

Re: Friday team lunch

Clean

0 security score

Illustrative example, not real client data

See where you stand

Most businesses jump the furthest from the cheapest fixes.

We start with a health check, score where you are, then show you the handful of changes that move the needle most. No guesswork, no upsell.

Multi-factor authentication100%

Patching & updates92%

Backup & recovery88%

Email & account protection95%

Why it costs less

Good security shouldn't be a luxury.

Big consultancies price for big budgets. We removed the parts you were paying for but never needed.

Practitioner-led

You work directly with someone who runs security for a living, not a layer of account managers.

Microsoft-native

We secure the licences you already own instead of selling you another stack to maintain.

Fixed pricing

Clear prices on every engagement. No open-ended day rates, no surprise scope.

Right-sized

You get exactly what a business your size needs today, and nothing you can grow into later.

Always-on monitoring

Someone is watching, so you don't have to.

We keep an eye on sign-ins and threats around the clock. When a login appears from somewhere it shouldn't, we see it and act, before it becomes a breach.

24/7

coverage

Real-time

threat alerting

190+

countries watched

How we work together

Three simple ways to start.

Begin with one project, move to ongoing support when you are ready, or just deploy the product.

Project

One-off & fixed-price

A defined piece of work with a clear price and a clear finish line.

From £POA / project

Cyber Essentials or CE Plus
Security health check
M365 security review
Risk assessment or DPIA

Scope a project

Partner

Ongoing security partner

Your virtual CISO plus monitoring, on a simple monthly retainer.

From £POA / month

Virtual CISO & board reporting
Ongoing monitoring & response
Certification upkeep
Phishing simulation & training

Talk to us

Product

Rex, self-serve

Post-delivery email security and account monitoring for M365.

£7 / user / month

Mailbox & SOC sign-in monitoring
AI threat grouping & triage
Bulk remediation
Live in minutes

Explore Rex

Get started

Book a free 30-minute security review.

Tell us where you are and we will tell you, plainly, what is worth doing first. No jargon, no pressure.

hello@groundworksecurity.co.uk

UK based · remote across the UK

Replies within one business day

Your name

Company

Work email

What do you need?

Anything else?