excl. VAT
One full business day, at your location. Everything clear upfront.
Everything you need to truly understand your cybersecurity situation. In one day.
All 8 checks from the scope
Quick wins — fixes we can complete in one day (remove departed employees, stronger WiFi password, guest network setup)
Report in plain language, reviewed together at the table
Architecture diagrams of your cyber architecture with low, medium, and high-risk areas marked
NDA standard, European server, working copies deleted after 30 days
One business day, on-site at your location.
The complete scope — visible upfront, no surprises. These are the eight areas we evaluate and base our findings on.
We scan your network for open ports, outdated software, leaked passwords on the dark web, and DNS/email security (SPF/DKIM/DMARC). This gives a complete picture of your network exposure.
We check if MFA is enabled, roles are correctly configured, guest access is limited, suspicious forward rules are absent, and inactive accounts are cleaned up. This is critical for most SMEs.
We look for weak passwords, reused passwords, shared logins, and old employees who still have access. These are often the biggest holes in SME security.
We check up to 5 laptops for: updates, antivirus status, disk encryption, and unknown software. This gives insight into current protection status.
We ask three questions: Does a backup exist? Does it work? Can it actually be restored? This is the difference between preparation and disaster.
We send one simulated phishing email to your team and measure who clicks. You receive an anonymous report of what percentage is vulnerable so you can train accordingly.
We check data processor agreements, breach register, and cookie settings. This is not a full GDPR audit, but gives you an honest assessment of the basics.
We verify that backups are functioning, recovery time objectives are defined, and an incident response plan is in place. This ensures you have preparation, not panic, when problems occur.
Manual pentest of your own web applications — separate quote
Major repairs that don't fit in one day — we quote separately
Continuous monitoring — that's our partnership service
Your attention: you must be available for one day for access and decisions
We're transparent about it. Helps you choose better.
Separate quote?The Cybersecurity Inspection is a structured evaluation of your IT environment performed on-site in one business day. This includes: network security, MFA and authentication, cloud solutions (Microsoft 365), endpoint protection, backup and recovery, and security awareness. The inspection focuses on the ten critical security areas relevant to Dutch SMEs. Before the inspection, we align the scope based on your business situation so we work with precision.
The fixed price for the Cybersecurity Inspection is € 450. This price includes all evaluations, direct fixes on-site, verbal briefing, and digital report. Travel costs outside the Netherlands or beyond 75 km from Amsterdam are calculated separately and communicated transparently in advance. Invoicing takes place within 5 business days of completion with a payment term of 30 days. Payment by bank transfer or credit card.
The inspection is performed by a certified security professional from Korur at your location. Planning takes place at least 3 weeks in advance. We require: full administrator rights for one person, uninterrupted access to your IT environment, and a quiet space for the end-of-day briefing. Findings are discussed verbally with you on the same day. The written report (PDF) is sent to you by email within 2 business days.
Payment proceeds following invoicing with a net 30-day payment term. Acceptable payment methods are bank transfer and credit card. For international clients outside the EU, separate payment arrangements can be made. In case of non-payment after reminder, interest and collection costs may be charged in accordance with Dutch law.
Korur performs the inspection with professional diligence in accordance with industry standards. If a critical security flaw within our scope is missed, we will identify it at no cost and advise how to remediate it. This Care Guarantee applies for the first 30 days after the report. Korur is not liable for: indirect damage, loss of profits, data breaches outside our findings, or implementation errors by third parties of our recommendations.
All information Korur collects and processes is confidential. We always sign a standard NDA. Your report is stored on encrypted European servers and is only accessible to your designated contact person and our engineer. Working copies of sensitive data are deleted 30 days after the report. Data processing complies with GDPR. We never share data with third parties without explicit consent.
Cancellation up to 3 weeks before the scheduled date: full refund of the amount. Cancellation between 3 weeks and 1 week before the date: 50% of the costs is refunded to you. Cancellation less than 1 week before the date: you pay the full amount. In case of unforeseen circumstances (pandemic, security situation), Korur may propose postponement. This always happens with full transparency and the ability to request a refund.
These terms are governed by Dutch law. Both parties endeavor to resolve disputes amicably. If this fails, disputes fall under the jurisdiction of the courts in Amsterdam.
