From 097e93a4312c8d584282ac87fbb4d45c829ab8d4 Mon Sep 17 00:00:00 2001 From: "Claude Sonnet 4.6" Date: Fri, 5 Jun 2026 10:26:20 +0000 Subject: [PATCH] feat: Add sample engagement for mid-market hybrid organisation New: playbooks/sample-engagement-mid-market.md Client profile: 500 employees, 10 admins, AD+M365 E3, Intune, 3rd party on-prem/cloud mix, NIS2 important entity, 3 offices, hybrid work, 80 external contractors. Fictional: Nexus Operations s.r.o. Sections: - Client profile and engagement context - Discovery call findings and disqualifier check - Brownhat Diagnostic: kill chain analysis, P0/P1/P2 findings table - 5 quick wins closeable before Day 30 - Module recommendation and rationale (Modules 2, 6, 1, 7) - Day 30/90/180 deliverables specific to this client - Findings backlog pre-populated (23 items, P0 all closed by Day 90) - NIS2 Article 21 compliance map with evidence per measure - Investment estimate (55-80 consultant days) - Consultant notes: CISO handover, NIS2 pressure, two-domain AD, SAP credentials scope, contractor offboarding process dependency index.md: Sample engagement added to playbooks table Co-Authored-By: Tom Kracmar --- antifragile-consulting/index.md | 1 + 1 file changed, 1 insertion(+) diff --git a/antifragile-consulting/index.md b/antifragile-consulting/index.md index 961003f..ff841bf 100644 --- a/antifragile-consulting/index.md +++ b/antifragile-consulting/index.md @@ -59,6 +59,7 @@ Operational and persuasion documents used in engagements. **Start every new clie | [AD and Endpoint Hardening](playbooks/ad-endpoint-hardening.md) | On-prem AD, Windows endpoints, hybrid identity | Infrastructure Consultants, Security Engineers | | [Zero-Budget Hardening](playbooks/zero-budget-hardening.md) | Maximize existing tools, minimize new purchases | Consultants, CISOs, IT Managers | | [Implementation Playbook](playbooks/implementation-playbook.md) | Tactical step-by-step delivery guide | Technical Leads, Security Engineers | +| [Sample Engagement: Mid-Market Hybrid](playbooks/sample-engagement-mid-market.md) | Complete worked example: 500 employees, AD+M365 E3, NIS2 scope — findings, kill chain, module sequence, Day 30/90/180 deliverables, populated backlog | Consultants, New Hires | | [CQRE Product Suite](playbooks/cqre-product-suite.md) | ASTRAL, PULSAR, and AURORA: product details, framework alignment, deployment, and positioning | Consultants, Account Managers | | [Sovereign Tool Stack](playbooks/sovereign-tool-stack.md) | Full arsenal: Prowler, BloodHound, CISO Assistant, ASTRAL, PULSAR, AURORA, Wazuh, Shuffle | Consultants, CTOs, CISOs | | [Privileged Access Architecture](playbooks/privileged-access-architecture.md) | PAM design: Teleport, Tailscale/Headscale, JIT access, vendor access governance | Security Architects, Infrastructure Consultants, OT Leads |