cqrenet/antifragile
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Add sample engagement for mid-market hybrid organisation

Browse Source 
New: playbooks/sample-engagement-mid-market.md
  Client profile: 500 employees, 10 admins, AD+M365 E3, Intune,
  3rd party on-prem/cloud mix, NIS2 important entity, 3 offices,
  hybrid work, 80 external contractors. Fictional: Nexus Operations s.r.o.

  Sections:
  - Client profile and engagement context
  - Discovery call findings and disqualifier check
  - Brownhat Diagnostic: kill chain analysis, P0/P1/P2 findings table
  - 5 quick wins closeable before Day 30
  - Module recommendation and rationale (Modules 2, 6, 1, 7)
  - Day 30/90/180 deliverables specific to this client
  - Findings backlog pre-populated (23 items, P0 all closed by Day 90)
  - NIS2 Article 21 compliance map with evidence per measure
  - Investment estimate (55-80 consultant days)
  - Consultant notes: CISO handover, NIS2 pressure, two-domain AD,
    SAP credentials scope, contractor offboarding process dependency

index.md: Sample engagement added to playbooks table

Co-Authored-By: Tom Kracmar <tom+claude@cat6.cz>
This commit is contained in:
Claude Sonnet 4.6
2026-06-05 10:26:20 +00:00
parent 10f9a9bded
commit 097e93a431
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
antifragile-consulting/index.md
+1
View File
@@ -59,6 +59,7 @@ Operational and persuasion documents used in engagements. **Start every new clie
| [AD and Endpoint Hardening](playbooks/ad-endpoint-hardening.md) | On-prem AD, Windows endpoints, hybrid identity | Infrastructure Consultants, Security Engineers | | [AD and Endpoint Hardening](playbooks/ad-endpoint-hardening.md) | On-prem AD, Windows endpoints, hybrid identity | Infrastructure Consultants, Security Engineers |
| [Zero-Budget Hardening](playbooks/zero-budget-hardening.md) | Maximize existing tools, minimize new purchases | Consultants, CISOs, IT Managers | | [Zero-Budget Hardening](playbooks/zero-budget-hardening.md) | Maximize existing tools, minimize new purchases | Consultants, CISOs, IT Managers |
| [Implementation Playbook](playbooks/implementation-playbook.md) | Tactical step-by-step delivery guide | Technical Leads, Security Engineers | | [Implementation Playbook](playbooks/implementation-playbook.md) | Tactical step-by-step delivery guide | Technical Leads, Security Engineers |
| [Sample Engagement: Mid-Market Hybrid](playbooks/sample-engagement-mid-market.md) | Complete worked example: 500 employees, AD+M365 E3, NIS2 scope — findings, kill chain, module sequence, Day 30/90/180 deliverables, populated backlog | Consultants, New Hires |
| [CQRE Product Suite](playbooks/cqre-product-suite.md) | ASTRAL, PULSAR, and AURORA: product details, framework alignment, deployment, and positioning | Consultants, Account Managers | | [CQRE Product Suite](playbooks/cqre-product-suite.md) | ASTRAL, PULSAR, and AURORA: product details, framework alignment, deployment, and positioning | Consultants, Account Managers |
| [Sovereign Tool Stack](playbooks/sovereign-tool-stack.md) | Full arsenal: Prowler, BloodHound, CISO Assistant, ASTRAL, PULSAR, AURORA, Wazuh, Shuffle | Consultants, CTOs, CISOs | | [Sovereign Tool Stack](playbooks/sovereign-tool-stack.md) | Full arsenal: Prowler, BloodHound, CISO Assistant, ASTRAL, PULSAR, AURORA, Wazuh, Shuffle | Consultants, CTOs, CISOs |
| [Privileged Access Architecture](playbooks/privileged-access-architecture.md) | PAM design: Teleport, Tailscale/Headscale, JIT access, vendor access governance | Security Architects, Infrastructure Consultants, OT Leads | | [Privileged Access Architecture](playbooks/privileged-access-architecture.md) | PAM design: Teleport, Tailscale/Headscale, JIT access, vendor access governance | Security Architects, Infrastructure Consultants, OT Leads |