FAQ
Common questions answered.
Everything you need to know about working with SecureLoop, our pricing, and how cloud security and AI automation actually works.
Working with SecureLoop
How is SecureLoop different from a general IT provider?
Most general IT providers manage your systems for availability and ease of use. Security hardening — closing the gaps attackers exploit — requires a different lens. SecureLoop focuses exclusively on cyber security and AI automation. We don't manage your helpdesk or provision laptops. We assess your risk, harden your environment, and build automations that save you time. Your existing IT provider stays in place.
Do I need to be in Brisbane to work with SecureLoop?
No. While our team is based in Brisbane, we work with businesses across all of Australia remotely. Cloud security work is conducted entirely through your cloud administration portals — no one needs to be on-site. Brisbane clients also have the option of in-person sessions.
How long does a typical engagement take?
Security audits: 2–3 days. Cloud security consulting: 3–5 days. AI automation projects: 1–2 weeks depending on complexity. Everything is scoped upfront so you know exactly what to expect before we start.
What happens after the project is delivered?
You receive complete documentation — configuration records, risk reports, remediation roadmaps, or automation handover guides depending on the engagement. For automation projects, we provide 30 days of post-launch support. There is no lock-in to ongoing services.
Can I use my existing IT provider alongside SecureLoop?
Yes. We work alongside existing IT providers regularly. We deliver the security assessment or automation build, document everything clearly, and your IT provider implements or maintains it going forward. We are happy to brief your IT team directly.
Pricing & contracts
Are your prices fixed or hourly?
Fixed price. Every engagement is priced upfront and that price does not change. You will never receive an invoice larger than the agreed amount.
Are there ongoing fees?
No ongoing SecureLoop fees. After delivery, your only costs are any third-party platform fees for tools your automation uses — typically $15–80/month and billed directly by those platforms, not by us.
Do you offer payment plans?
Yes. For projects over $1,500 we offer a 50/50 structure — 50% at project start, 50% on delivery. Contact us to discuss.
Is there a minimum engagement size?
Our smallest engagement is a security audit from $900. There is no minimum beyond that.
Cloud security
What does a cloud security audit actually cover?
We assess your Microsoft 365 tenant configuration, Azure or AWS environment, identity and access controls, device management, and email security against the ACSC Essential Eight framework. You receive a risk report with findings prioritised by impact, a maturity level score for each control, and a plain-English remediation roadmap.
Do we need to be on Microsoft 365 for you to help us?
Most of our cloud security work involves Microsoft 365 because it is the most common platform for Australian small businesses. We also work with AWS and Azure environments. If you are on Google Workspace, contact us to discuss scope.
What's the ACSC Essential Eight and why does it matter?
The Essential Eight is the Australian government's recommended baseline for cyber security. It covers eight controls across three maturity levels. For most small businesses, reaching Maturity Level 1 blocks over 85% of common attacks. It is increasingly required by insurers and larger clients doing supplier due diligence.
My IT provider already manages M365. Why do I need a security review?
Most IT providers configure M365 for availability and ease of use — not security hardening. Legacy authentication protocols, external sharing settings, admin privilege scope, and mail forwarding rules are rarely reviewed unless specifically requested. Most businesses we audit have 3–8 significant misconfiguration issues despite having an active IT provider.
AI automation
What systems does AI automation connect to?
We connect to Xero, MYOB, QuickBooks, Salesforce, HubSpot, Microsoft 365, SharePoint, Teams, Slack, and most systems with an API. If your business uses it, we can almost certainly automate it.
Is the automation secure?
Yes. Every automation uses least-privilege access — it only connects to the specific data it needs. Your data stays within your approved cloud environment and is never sent to third-party servers or used to train AI models. We build with the same security controls we apply to security consulting.
What happens if the automation breaks after we go live?
All automation projects include 30 days of post-launch support. Every automation includes monitoring and alerting — if something fails, the right person is notified immediately. After 30 days, most automations run without intervention, but we are available for support if needed.
Do we need new software for AI automation to work?
In most cases, no. We build using tools you already pay for — Microsoft 365, Power Automate, and the APIs in your existing Xero or CRM accounts. Occasionally a small additional platform fee applies (typically $10–40/month), which we will tell you about upfront.
NDIS fraud detection
Who is NDIS fraud detection designed for?
The system is built for registered NDIS providers, plan managers, and support coordinators who process NDIS billing. It works for organisations of any size — from a small support coordination business to a larger provider managing hundreds of participants.
Does NDIS fraud detection help with NDIS Commission compliance?
Yes. The audit trail and anomaly detection capabilities directly support compliance with NDIS Practice Standards for financial management. The system documents every transaction, every alert, and every decision — the forensic-quality records the Commission requires when reviewing provider financial controls.
Can it detect fraud across multiple participants?
Yes. The system is built for multi-participant environments. Each participant has their own baseline and budget monitoring. Alerts route to the relevant plan manager or support coordinator based on your organisational structure.
Still have questions?
Book a free 30-min call. We answer every question honestly — including whether you actually need what you are asking about.