Remote IT administration for small organizations, churches, and nonprofits: security checkups, email migrations, and automation. Everything happens over email and in writing, and documentation is included by default. No jargon, no sales calls, no retainer.
Email me what's broken Watch real work →Three productized services with transparent pricing. Custom work quoted in writing after a short email exchange — never a discovery call.
Unedited screen recordings of the actual tools used in engagements. Real domains, real machines, live queries. Nothing is staged.
Want to see what you'd actually receive? Sample deliverables: Security Checkup Report (PDF) · Migration Cutover Plan (PDF) · Automation Delivery Pack (PDF)
Real work, shown honestly: one contracted client engagement (name withheld by agreement) and the production systems I design and operate myself.
A signed engagement, end to end: on-site assessment of a campus running on consumer-grade gear, findings including factory-default credentials on the production gateway, zero network segmentation, un-isolated guest WiFi, and a switch at capacity — delivered as an 8-part written report suite (executive summary through equipment pricing) with tiered remediation options quoted at $9,900–$10,700. Leadership acted on the findings and commissioned a full infrastructure upgrade. My role was the assessment, the report, and the remediation plan. The installation was done by a vendor of their choosing.
Staged MFA for every staff account with zero lockouts, Microsoft Defender onboarding across all endpoints, least-privilege Graph automation, and conditional access designed around real workflows. Staff were told what was coming before anything was enforced.
SPF, DKIM, and DMARC misconfigurations found and fixed on live production domains. Three sending systems share one domain without breaking each other. The audit script does in 30 seconds what used to take an hour by hand.
A FastAPI application mounting around 240 API routers, three-tier JWT auth, a full single-page admin portal, Docker deployment behind a zero-trust tunnel, and a 17-phase automated browser verification suite. I designed it, built it, and run it. It is in production today.
Cloud log analytics, metric alerts, and geo-IP enriched sign-in alerts posted to Teams. Built for a small organization budget: it costs less than $1 a month to run.
Alert analysis, threat intel, incident playbooks, case management, email analysis, and analyst training, all behind one login. 103 Python modules, built and run by one person. The documentation includes a full self-audit with findings and a remediation plan.
Built for a nonprofit with no software budget: a ticket portal staff actually use, an admin dashboard, FastAPI and Cosmos DB on Azure Container Apps. Deployed on free tiers, so the monthly hosting bill is close to zero. In production today.
A watchdog that catches production outages in under 5 minutes and only emails when the state changes, so there is no alert spam. Deploys happen with no console sessions, and a fleet health suite verifies every machine end to end.
Built for busy people who hate IT vendors.
One email. Describe the problem in your own words — "our wifi drops during services," "we got a phishing email that looked real," "nobody knows the admin password." I'll reply in plain English with what it likely is and what fixing it costs. No call, no pressure, no spam.
matt@coeustech.net