All services
Support

Website Security

Security audits, hardening and incident response so your website is defended, monitored, and recoverable.

Overview

Every website is a target — automated bots probe millions of sites every day looking for the one that hasn't been patched. Our security engagements cover the full stack: audit, hardening, WAF configuration, patching, monitoring, and a tested incident response plan. And if the worst happens, we can get you back online.

What you get

The outcomes we're accountable for.

Full-stack audit

Application, hosting, plugins, dependencies and third-party integrations reviewed.

WAF configured

Enterprise-grade web application firewall with rules tuned to your platform.

Patch programme

Regular framework, plugin and dependency patching with test coverage.

Monitoring & alerting

Malware, uptime, SSL and DNS monitored 24/7 with alerting.

Backup & recovery

Off-site backups with documented restore procedure and periodic drills.

Incident response

Priority response and remediation if a site is compromised.

How we work

The process, step by step.

  1. 01

    Audit

    Full security audit against OWASP Top 10 and platform best practice.

  2. 02

    Harden

    Configuration, WAF, headers, TLS, authentication and access hardened.

  3. 03

    Monitor

    24/7 monitoring for uptime, malware, SSL and DNS changes.

  4. 04

    Patch

    Monthly patch cycle with automated testing where possible.

  5. 05

    Respond

    Documented incident response plan, tested annually.

Frequently asked

Answers before you have to ask.

Is my website really at risk?
Yes. Automated bots attack every internet-facing site daily. Small business sites are targeted more, not less, because they're often less defended.
Do you handle hacked sites?
Yes — incident response and site cleanup available on 24-hour turnaround for priority clients.
Do you do penetration testing?
Yes — application-level and infrastructure pen tests via our security partners.
Is this covered by a Care Plan?
Basic security monitoring and patching yes. Deeper audits and pen testing quoted separately.
What does security cost?
Audit from £950. Ongoing security monitoring from £75/month. Incident response from £950 per incident.
Where we deliver website security

Website Security across the UK.

Related services

Often paired with website security.

All services
Next step

Sleeping easy about your website's security?

Book a call and we'll scope the right level of protection for your business.