CYBERWHITE Blog
Australian Cybersecurity, Honestly Written
Plain English writing on Essential 8, SMB1001, SOC 2, and the compliance decisions facing Australian businesses. Founder-led, no marketing fluff.
- Essential 8··14 min read
Essential 8 Audit: What Auditors Check and How to Prepare
Essential 8 audit guide for Australian businesses: what assessors check at ML1, ML2, and ML3, the evidence they require, common failures, and how to prepare faster.
By Vikram Kukreja
- SMB1001··10 min read
SMB1001 Maturity Levels: Bronze to Diamond for Australian SMBs
SMB1001 maturity levels run from Bronze to Diamond across five tiers. This guide explains what each level requires, how they build on each other, and how to choose where to start.
By Vikram Kukreja
- SMB1001··10 min read
SMB1001 Certification in Australia: Bronze, Silver, Gold and Beyond
SMB1001 certification in Australia: the five tiers from Bronze to Diamond, who needs certification, what evidence each tier requires, and how self-assessed tiers differ from independently audited ones.
By Vikram Kukreja
- Essential 8··14 min read
Essential 8 Patch Management: ACSC Requirements at ML1, ML2 and ML3
Essential 8 patch management covers two controls: patch applications and patch operating systems. Learn the ACSC timelines, what changes at each maturity level, and the common gaps Australian SMBs miss.
By Vikram Kukreja
- Essential 8··11 min read
Essential 8 Application Control: ML1, ML2 and ML3 Requirements Explained
Essential 8 application control stops unapproved code from running. Learn ML1, ML2 and ML3 requirements for Australian SMBs on Microsoft 365.
By Vikram Kukreja
- SMB1001··8 min read
SMB1001 Bronze Checklist: How an Australian SMB Reaches Bronze in 30 Days
A practical SMB1001 Bronze checklist for Australian small businesses: what Bronze covers, the fastest sensible order to do it, the evidence to keep, and a 30-day plan.
By Vikram Kukreja
- Essential 8··9 min read
Essential 8 ML1 Checklist: What an Australian SMB Actually Needs to Pass
A control-by-control essential 8 ml1 checklist for Australian SMBs: exact ACSC patch timeframes, MFA, macros, backups, and the failures that fail audits.
By Vikram Kukreja
- Essential 8··9 min read
Essential 8 MFA Requirements: What Counts, What Doesn't, and Phishing-Resistant MFA
Essential 8 MFA requirements explained by maturity level: which methods satisfy ML1, ML2 and ML3, why SMS is discouraged, and how to enforce phishing-resistant MFA in Microsoft 365.
By Vikram Kukreja
- Essential 8··9 min read
Essential 8 Maturity Levels Explained: ML1 vs ML2 vs ML3 (and Which You Need)
A plain-English guide to the essential 8 maturity levels (ML1, ML2, ML3): what each level mitigates, why they are cumulative, and which one your business needs.
By Vikram Kukreja
- MSP Insights··9 min read
Delivering Essential 8 as an MSP: Turning Compliance into Recurring Revenue
A practical playbook for essential 8 for msps: productise multi-tenant assessment, evidence, and remediation into a recurring managed compliance service.
By Vikram Kukreja
- SMB1001··5 min read
Essential 8 vs SMB1001: Which One Should an Australian SMB Start With?
Honest breakdown of Essential 8 and SMB1001 for Australian SMBs. When to start with Bronze, when to jump to ML1, and how the two standards work together.
By Vikram Kukreja