The most common route into an SME network is not a sophisticated attack — it is a firewall setting that was wrong from the start, or that drifted over time. Nicholas Broderick explains how benchmarking against CIS standards turns assumption into accountability.
When a business changes IT provider, the handover document is rarely the whole picture. Rudie de Vries explains what a thorough estate assessment actually uncovers — and why the gap is almost always larger than anyone expected.
A travel consultancy contacted Si Futures because they could not send or receive email — not because of anything they had done wrong, but because their hosting provider had been compromised. This is the DNS security risk most businesses never think about: the infrastructure you rely on sits in someone else’s hands, and their security posture becomes yours by default
A Johannesburg financial services business experienced a security incident. Si Futures offered a security assessment rather than a sales pitch — and spent ten months earning the contract. Here is why the consultative approach is the only one we know.
A major investment management firm asked Si Futures to register 250 domains. We arranged a specialist meeting instead. Here’s what genuine brand protection looks like — and why homoglyph attacks are the threat most businesses haven’t considered.
The UK Cyber Essentials scheme gets significantly stricter on April 27. Si Futures examines what the changes mean for UK SMEs, why certification is increasingly the price of entry in the UK market, and what businesses need to do before the deadline.
Si Futures shares what a decade-long PRTG-to-Zabbix monitoring platform migration really revealed — why alert calibration matters more than alert volume, and what every IT leader should know before committing.
After thirty years managing networks across the UK and South Africa, Si Futures examines why business connectivity resilience consistently fails — and the five questions every IT leader should be asking before their next board meeting.
An expired SSL certificate on a Friday afternoon shouldn’t be a surprise. Automated monitoring with tiered 30/14/7 day notification thresholds replaced manual tracking, while REST API integration opened firewall policy hygiene analysis — identifying dead rules that create unnecessary security gaps across client estates.
