Everything you need to know before signing up.

SentinelSMB is a 24/7 cybersecurity monitoring service for small businesses. We connect to your Microsoft 365 and Google Workspace accounts (plus AWS and Cloudflare on Pro) and continuously scan for threats that antivirus software cannot detect — account takeovers, forwarding-rule hijacks, OAuth abuse, admin escalations, and more.

Any small business that cares about security. SentinelSMB works standalone for businesses without a dedicated IT team, and also works as a 24/7 monitoring layer on top of an existing IT provider or MSP. Priority verticals include law firms, CPA practices, construction companies, insurance agencies, real estate firms, RIAs, nonprofits, trades, and any business handling sensitive client data — but the service works for anyone on Microsoft 365 or Google Workspace.

Antivirus watches your laptop for malware. SentinelSMB watches your cloud accounts for account-level threats — stolen credentials, unauthorized access, suspicious forwarding rules, OAuth consent grants, and admin changes. These are the attacks antivirus will never see, and they are where most small-business breaches actually start today.

No. SentinelSMB monitors account activity logs — who logged in, what rules were created, what permissions changed. We look at audit events and metadata, not email content. Our Privacy Policy explains this in detail.

Our 36 engines are grouped into 7 categories: Core Platform (14 engines — IP threat enrichment, BEC kill chain, ransomware pattern detection, AI triage, compliance mapping, and more), Identity (7 engines — impossible travel, credential stuffing, MFA bypass), Data Protection (2), Email Security (3 — BEC, phishing infrastructure, inbox rule anomalies), Cloud Configuration (4 — OAuth abuse, config drift, admin escalation), Network Security (3 — DNS tampering, SSL monitoring), and Threat Intelligence (3 — HIBP breach exposure, multi-source threat scoring, threat actor attribution). See our Detection Engines page for the full list.

Every five minutes — 288 scans per day, over 8,600 per month. Each scan runs all 36 detection engines across your connected accounts.

You receive a plain-English alert via email, SMS, Slack, or Microsoft Teams explaining what happened, how serious it is, and exactly what to do next. Critical threats trigger immediate notifications across every channel you have enabled.

Yes. We use read-only API connections with minimal permissions. Your credentials are encrypted at rest using AES-256-GCM with a separate key-encryption-key, and in transit using TLS 1.3. We are a registered North Dakota LLC with $1M per claim / $2M aggregate E&O insurance. Every customer account is protected by mandatory multi-factor authentication.

Starter plan is $299/month (any 2 of the 4 platforms). Pro plan is $599/month (all 4 platforms, up to 250 users and resources). No per-user charges, no tier creep as you grow. See our pricing page for full details.

Yes — 7 days, full access, all features. Credit card required up front so there is no gap in coverage. Cancel anytime before the trial ends and you will not be charged.

Yes. Cancel from your dashboard in one click at any time. No contracts, no cancellation fees. Your monitoring continues until the end of your current billing period.

Microsoft 365, Google Workspace, AWS, and Cloudflare. The Starter plan includes any two of these. The Pro plan includes all four monitored simultaneously.

Under 10 minutes. You connect your account via OAuth (read-only access) for Microsoft and Google, or via scoped API keys for AWS and Cloudflare, and monitoring begins automatically. No software to install, no hardware required, no IT work.

No. SentinelSMB is designed for businesses without dedicated IT security staff, AND also works as a 24/7 monitoring layer on top of an existing MSP or IT provider. Every alert includes step-by-step response guidance in plain English.

SentinelSMB maps your monitoring to ABA Model Rule 1.6, IRS Publication 4557, FTC Safeguards Rule, SEC Reg S-P, NAIC Model Law 668, CMMC 2.0, GLBA, NIST 800-171, NY DFS 23 NYCRR 500, and state breach notification laws. See our Compliance Overview for the full mapping.