#security

Security zonder IT-afdeling

Choosing a password manager for your SMB: what really matters?

Choosing a password manager isn't a matter of taste — but it's not rocket science either. A practical guide for business owners without an IT department.

6 min · 08 Jun 2026

Security zonder IT-afdeling

Uptime monitoring for SMBs: don't hear about it from your customers

Your website is down and you find out from a customer. There's a better way. Here's how to set up uptime monitoring as an SMB without an IT department — without drowning in false alerts.

6 min · 22 May 2026

Security zonder IT-afdeling

Patch management for SMBs without MDM muscle

Patches need to go on. But how do you enforce that without Intune or Jamf? Here's the pragmatic minimum setup.

2 min · 28 Dec 2025

Toegangsbeheer

Shared passwords: how to manage them without the headache

That one admin login for the domain registrar, the social media accounts, the customer portal. Three people know those passwords, sharing them via a spreadsheet is asking for trouble — here's how to do it right.

2 min · 25 Dec 2025

AVG & privacy

Logging IP addresses under GDPR: pseudonymous, personal data, and what's allowed?

An IP address is personal data under GDPR. Security logs often need to retain them for weeks or months. How do you reconcile that with data minimisation principles?

2 min · 20 Dec 2025

Security zonder IT-afdeling

MFA for every SaaS tool, not just M365: catching up the stragglers

M365 and Google make MFA easy. So do Dropbox, Slack, GitHub, and Trello. But those other SaaS tools? MFA is often missing. Here's how to close the gap.

2 min · 20 Dec 2025

Security zonder IT-afdeling

Security awareness training: what works and what's a waste of time

An annual 60-minute security video is a waste of time. Quarterly 10-minute targeted sessions actually work. Here's the programme that gets results.

2 min · 12 Dec 2025

Security zonder IT-afdeling

Vendor risk management for SMBs: a practical framework

Every SaaS subscription is a slice of risk you're outsourcing. How do you decide which of your 30 vendors actually deserve closer attention?

2 min · 04 Dec 2025

Security zonder IT-afdeling

Guest network at the office: how to separate guests from your business network?

Visitors on your WiFi is perfectly normal. Them sitting on the same network broadcast as your NAS is not. Basic segmentation takes just 10 minutes to set up.

2 min · 26 Nov 2025

Security zonder IT-afdeling

Travelling safely with a company laptop: the travel checklist

Heading to an EU destination or further afield? Some countries have strict rules around encryption and device scanning. Here's what to watch out for.

2 min · 18 Nov 2025

Security zonder IT-afdeling

Social engineering: how to recognise CEO fraud and vishing?

Not every attack arrives via email. Phone, SMS, LinkedIn message — modern social engineering uses every channel. Three patterns and how to counter them.

2 min · 10 Nov 2025

Security zonder IT-afdeling

Laptop stolen: the first 30 minutes

Someone calls: laptop stolen from the car. The clock is ticking. Here are the 10 steps you MUST take in the first 30 minutes, in order.

2 min · 02 Nov 2025

Security zonder IT-afdeling

Incident response plan for SMBs on 2 pages

An incident response plan doesn't have to be a 50-page document. Two pages covering who does what and when is enough — as long as everyone knows it.

2 min · 25 Oct 2025

Toegangsbeheer

The least-privilege principle explained for business owners

Grant as little access as possible, for as short a time as possible. That might sound like a productivity hit — in practice, it saves you from a data breach that takes months to explain away.

2 min · 19 Oct 2025

Security zonder IT-afdeling

A Backup Strategy for SMBs That You Actually Test

A backup you've never tested isn't really a backup. The 3-2-1 principle, regular restore tests, and knowing which data matters most — the recipe for a plan that actually works.

2 min · 17 Oct 2025

Toegangsbeheer

Privileged access management for SMBs

Global Admin, AWS root, Salesforce system admin — these are the accounts that cause the most damage when compromised. Here's what you can do without buying an expensive PAM tool.

2 min · 13 Oct 2025

Security zonder IT-afdeling

Choosing a password manager for SMBs: 1Password, Bitwarden, or something else?

No security strategy works without a password manager. Here's a practical comparison of the three options most relevant to SMBs, with clear trade-offs to help you decide.

2 min · 09 Oct 2025

Microsoft 365 & Entra ID

Conditional Access for SMBs: what, when, how?

Conditional Access is the "if this, then that" of M365 security. Sounds complex — in practice it's 5 policies that cover 80% of your risks. Here's the minimum set.

2 min · 04 Oct 2025

PDF redactie

Why black bars in PDFs don't work (with example)

Two seconds of copy-paste makes the "redacted" text readable again. Here's the technical explanation with a concrete example — and what to do instead.

2 min · 04 Oct 2025

Security zonder IT-afdeling

Recognising phishing: what can you teach your team in 20 minutes?

Phishing is no longer a badly-spelled Nigerian prince. Modern phishing is personalised, tailored, and designed to look like it came from inside your own organisation. Here's what everyone needs to know.

2 min · 01 Oct 2025