FAQs

Frequently Asked Questions about ShadowSafe's cyber security and IT services. Learn about our services, how we work, and why Brisbane businesses choose us.

Our Services

  • We’ve simplified the core aspects of cyber security down to 4 simple packages. Easy to understand and plug into your business. They are: EmailSafe, DataSafe, WorkSafe, and PeopleSafe.

    Each packaged solution targets a different layer of your business β€” your email, your data, your devices, and your people.

    We tailored everything to your business size and needs, and because we bill a per-user fixed price, you can grow your business with predictable IT costs.

  • EmailSafe secures your business email against phishing and ransomware. It includes a Microsoft 365 Business Premium licence, advanced cloud-based email filtering, daily backups of your Microsoft 365 emails and data, and endpoint ransomware protection for devices. It's built for businesses running on Microsoft 365 and keeps your team's inbox from becoming your biggest security risk.

  • PeopleSafe is built around the fact that most cyber incidents involve a human decision somewhere. It includes a Human Risk Management program, periodic phishing simulations to test and train your team, centralised policy management, and active dark web monitoring to check whether your business credentials have been exposed in a known data breach.

  • WorkSafe protects your team's devices. It includes malware protection, ransomware protection, password management, and website filtering. It's designed for teams working across different locations or devices. DataSafe focuses on your business data: daily backups, device encryption, application whitelisting, and secure website hosting. Together they cover your devices and your data.

  • Yes. ShadowSafe provides managed IT services that cover your full technology setup: computers, servers, networks, and Microsoft 365 cloud services. We also offer cloud phone systems that let your team take and manage business calls from anywhere. We provide IT services exclusively to clients who engage us for cyber security, because we believe in safe and secure technology.

Working with us

  • The quickest way is to book a Comprehensive Risk Assessment. We analyse your current IT systems, ask about your team and how you work, and identify where you're most exposed to risks. From there we give you a clear picture of where to focus to increase your cyber resilience.

    We charge a fee for this assessment, based on the number of staff in your business, and there’s no obligation to proceed with our services. This fee is credited to you if you do proceed with our packaged solutions.

    You can book at shadowsafe.com.au/connect or email info@shadowsafe.com.au

  • Our average onboarding process is 10 business days. In this period, we focus on implementing the most important security measures first. Your onboarding experience is designed to have as little impact on your day-to-day operations as possible.

  • There’s no tech jargon with us. We explain things simply – we avoid acronyms and β€˜techspeak’. We tell you what's happening plainly, why it matters, and what we're doing about it. If something doesn't make sense, ask us to explain it differently.

  • Clients on our new monthly support-included plan get priority response, predictable monthly costs with no separate billing for support requests, and regular check-ins to make sure your security is keeping pace with your business. If you're not on a monthly plan, support requests are handled on an as-needed basis, though priority access goes to monthly plan clients first.

  • Yes. Most clients begin with what's most urgent and build their security stack over time. There's no requirement to take everything at once. As your business grows or your situation changes, we can adjust your services accordingly.

How we’re different

  • ShadowSafe emerged as a disaster recovery business off the back of the devastating Brisbane 2011 floods. We helped businesses rapidly recover their IT operations from fire, flood, theft and hardware failures.

    While physical disasters remained a concern, the threat landscape quickly expanded to digital and we naturally transitioned into a cyber security company.

    Today, ShadowSafe combines our disaster recovery expertise with advanced cyber defence capabilities to protect businesses from both physical and digital threats. Our aim is to give business owners confidence and peace of mind to grow online.

  • Our team is based primarily in Brisbane. James Bartrop, our founder, has over 20 years of experience helping businesses use technology strategically. We have a local team made up of technical specialists, project managers, client and administrative support. We also have assistance from overseas specialists for allocating support requests and general non-technical administration.

  • When you’re a client of ShadowSafe, you can expect regular check-ins (for monthly plan clients), prompt responses when you reach out to our service desk, and plain-language explanations of what we're working on and why it matters. We don't send vague updates, quite the opposite: we regularly send out helpful guides and insights to inform you of important changes and tips to protect your identity and privacy.

  • Yes. We work with professional services firms, trade businesses, healthcare practices, retail, and more. With every business we assess how your people work day-to-day and whether there are specific compliance requirements. We take the time to understand your business before recommending anything.

Cyber Security for Australian Businesses

  • More often than most realise. The Australian Signals Directorate received over 87,000 cybercrime reports in a single year – roughly 1 every 6 minutes. Small businesses are frequently targeted because they're seen as easier to breach than larger organisations. The average cost of a cyber incident for a small Australian business is around $46,000, and that doesn't include the time lost getting back to normal, or the long term reputation damages.

  • Most cybercrime originates from outside Australia. Criminal groups operating across borders, often from countries where enforcement is difficult. Your business doesn't need to be well-known or valuable to be a target. Automated tools scan for weaknesses constantly. If you have a weak email configuration, an old password, or unpatched software, you're on a list.

  • The Essential Eight is a set of baseline security controls developed by the Australian Cyber Security Centre. It covers things like keeping software updated, restricting who has admin access, and running regular backups. It started in government but is increasingly relevant to any business that wants a solid security foundation. ShadowSafe helps clients understand where they sit against the Essential Eight and what's worth improving. E8 is a practical framework, not just a compliance checkbox.

    shadowsafe.com.au/e8

  • A phishing email is designed to look like it came from someone you trust (e.g. your bank, the ATO, a supplier, or a colleague). It's targeted and convincing, often with logos, correct names, and a sense of urgency. The goal is to get you to click a link, enter login details, or approve a payment. This is the starting point for most ransomware attacks. We periodically run phishing simulations for clients that are specifically designed to train your team to catch phishing emails before they cause damage.

  • Yes, it’s worth considering, especially if you hold client data, process payments, or would struggle to operate if your systems went down for several days. Policies vary significantly in what they cover and what's excluded, so the fine print matters. In our experience, we see businesses with stronger security controls can sometimes negotiate  lower premiums and have fewer complications when making a claim. If you want to understand your risk exposure first, book a Risk Assessment with us.

Cyber Security Services In Brisbane

  • Yes. We're based in Norman Park, Brisbane, and have been since 2012. Our technical team is primarily Brisbane-based, and we serve clients across South East Queensland and nationally. Our address is 5 McIlwraith Avenue, Norman Park QLD 4170.

  • When something goes wrong, you want to speak to someone who knows your business β€” not navigate a call centre or wait for an overseas team to come online. ShadowSafe has built its reputation in Brisbane over more than a decade. That gives us something to protect. A provider on the other side of the country doesn't have the same stake in the relationship.

  • Yes. While most support is handled remotely, we come on-site when needed. For Brisbane clients, that's a straightforward arrangement. We have team members across Brisbane who can respond when on-site work is required. We also service clients across Sydney and Melbourne.

  • Mostly small and medium businesses with 10 to 250 employees across a range of industries. The common thread is businesses that rely on their IT to operate and can't afford extended downtime or a data breach. If that sounds like you, and you value quality service and support, then we're worth talking to.

  • Call us on 07 3185 1777 or visit shadowsafe.com.au/connect to book a Risk Assessment.