SME Service Model

SME Service Model

Does this sound familiar?

You are a Small- or Mid- Sized organization. You use Information Technology. Your data is sacrosanct. You know that if anything happens to your IT, especially your data, your business will get shaken or come to a standstill. Meanwhile, your customers require you to implement some standards. Further, the government has some laws and regulations that you need to comply with.

Sure, you have taken care of the basics. You already have a Firewall/ UTM device, an Anti-Virus, etc installed. You probably have conducted some audits or some VA/PT tests. You take back-ups. However, these don’t seem to stop incidents or attacks taking place. You worry what happened to an organization next to you or like you can happen to you as well.

Meanwhile, you have a business to run. You don’t have the bandwidth or the resources to expend on activities which are not your area of expertise. Nor can you find resources to add to your team to do all of this.

The Arrka Solution:

We at Arrka understand this scenario well. We have seen many customers struggle through these very same challenges. Which is why we have designed a special service – for Small and Mid-Sized organizations – to help take on their Information Risk challenges. Whether it is Cybersecurity, Information Security, Data Privacy, Disaster Recovery, Compliance, Managing incidents & attacks – we have it all figured out under one comprehensive, integrated model.

We are vendor-neutral. So we work with whatever products/ solutions you may have deployed. We put it all together for you. Add on the necessary policies, processes, activities – basically whatever it takes – so that you are free to run your business while we take care of your Information Risks.

So What Exactly do we do?

We first come in and see what you already have in place. We then do an assessment and figure out what else needs to be done vis-a-vis your industry, your business requirements, your client demands, your compliance compulsions and your budgets. Then we go about help you address these gaps, one step at a time.

In the process, we establish a framework. We believe that, however small you are, a basic framework is a must. It helps as you scale. We design and implement policies and processes. We set up basic metrics and dashboards. We see what products you have already implemented – and how to maximise their usage and align them with your policies. We figure out with you what else you may need – and establish a roadmap for their procurement and implementation based on your business constraints. We help you deal with your vendors and service providers. We figure out how you will monitor and manage everything from a risk standpoint. For eg, we set up a regular review of your logs and reports from your various devices and solutions. If you have an IT team, we enable them to handle certain activities on a daily/ weekly/ monthly basis. The rest, our team handles. We help you create and sustain awareness amongst your end-users – so that they don’t do things that can compromise the risk posture of your organization.

We conduct tests and audits periodically/ based on whatever your compliance requirements may be. Should there be an incident, we help you deal with it – quickly and efficiently.
In short, we take on your risk management challenges so you are free to run your business.
And we do all this remotely.
Want to know more? Drop us a mail at