DEFINED-SCOPE IT WORK
Focused IT Projects
Defined Projects. Clear Outcomes.
WHERE THIS FITS
Practical Help When You Need a Specific Outcome
Focused IT Projects are built for organizations that already know something needs attention, but do not need a full fractional IT leadership engagement.
These projects are smaller, defined and outcome-based.
You know what is being reviewed, created, documented, or managed. You know what the deliverable is. And you know when the work is complete.
This is a good fit when leadership needs practical help closing a gap without turning it into a major consulting engagement.
SECURITY FOUNDATIONS
Cybersecurity Policy & Awareness
Security does not only depend on tools alone. It depends on expectations, employee behavior, documented standards and leadership follow-through.
This project helps organizations create or improve the basic security policies and staff guidance needed to reduce avoidable risk.
Common work includes:
- Cybersecurity policy development
- Acceptable use policy language
- Remote work and data handling expectations
- Incident reporting procedures
- Security awareness training
- Phishing, social engineering and impersonation guidance
- AI-related data handling warnings for staff
What you receive:
A practical policy or training deliverable written in plain language, designed for employees and leadership to actually use.
AI USE AND POLICY
AI Policy & Staff Guidance
Employees are already using AI tools to draft, summarize, analyze and automate work. The issue is whether leadership has clearly defined what is allowed, what is risky and what should never be shared.
This focused project helps organizations create practical AI use expectations without turning the process into a large governance engagement.
Common work includes:
- AI acceptable use policy
- Approved and prohibited AI use cases
- Guidance on what data should not be entered into AI tools
- Staff communication language
- Manager talking points
- Basic review of current AI concerns
- Recommendations for business-grade AI platforms where appropriate
What you receive:
Clear AI usage expectations your team can understand and leadership can enforce.
CONTINUITY PLANNING
Backup & Incident Response Planning
Most organizations assume they have backups and an incident response plan until the day they actually need them.
This project helps document what exists, clarify what is missing and give leadership a practical plan for disruption, outage, ransomware, wire fraud, or data exposure events.
Common work includes:
- Backup strategy review
- Recovery time and recovery point discussion
- Backup documentation review
- Incident response plan development
- Role and escalation mapping
- Vendor contact documentation
- Tabletop exercise planning
- Business continuity recommendations
What you receive:
A practical backup or incident response deliverable your leadership team, IT provider, or internal staff can use before a crisis occurs.
Incident response planning here follows NIST SP 800-61, the federal standard for incident handling. I also wrote a 4-part briefing series on how small and mid-sized businesses should handle the first 48 hours of an incident. [Start with Part 1 →]
OPERATIONS CLEANUP
M365, Tool Stack & IT Project Support
Technology environments get messy over time. Tools overlap. Licenses go unused. Microsoft 365 settings stay at defaults. Projects stall because nobody owns the process.
This project helps bring structure to specific operational issues that need attention.
Common work includes:
- Microsoft 365 health check
- License and configuration review
- SharePoint, Teams and OneDrive usage review
- Technology stack audit
- SaaS and subscription cleanup
- Tool consolidation roadmap
- IT project scoping
- Vendor coordination
- Project status reporting for leadership
What you receive:
A clear picture of what needs attention, what can be cleaned up and what practical steps should happen next.
NOT SURE WHERE THIS FITS?
Start with the Outcome You Need
Focused IT Projects are best when the desired outcome is specific.
- You may need a policy.
- You may need a plan.
- You may need a cleanup roadmap.
- You may need project leadership.
- You may need documentation that does not currently exist.
If the issue is broader than one deliverable, I may recommend a review, transition plan, or fractional IT leadership instead.
The first step is a practical conversation about what you are trying to accomplish.