For nonprofits & small teams on Google Workspace
Stop Auditing Security Once a Year.
Continuous SaaS Security Posture Management — Without the Enterprise Price Tag
Most small organizations don't lose data because they ignored security — they lose it because settings drift, staff connect unvetted apps, and no one is watching between annual reviews. Marsh IT LLC closes that gap. Using Google's own admin APIs and lightweight automation, we continuously check your Workspace configuration, inventory every third-party app with access to your data, and flag risky changes — then help you fix them. The result is a documented, defensible security posture you can show to funders, auditors, and insurers.
Proof
From Real Engagements
Onboarding/Offboarding Automation
-
Manual onboarding/offboarding depended on memory. HR + IT weren’t reliably notified. Welcome packet delivery was inconsistent.
-
Manager-led intake forms, routing, automated notifications, and a new-hire welcome email + guide link.
-
A standardized workflow where every request triggers the same handoffs and communications.
Endpoint Protection Rollout
-
No device management, endpoints are unprotected, and installations require manual assistance.
-
Remote 1:1 guided installs, console verification, policy enforcement, and visibility baseline.
-
43 of 49 devices onboarded in 1.5 weeks (remaining scheduled).
Choose the level of support your organization needs
SaaS Security Posture Snapshot
We review your configuration against the CIS Google Workspace Benchmark, inventory every third-party app connected to your data, check identity and admin settings, and deliver a prioritized, plain-language remediation roadmap mapped to the NIST Cybersecurity Framework.
Best for: organizations that have never had a real security review.
Starts at $1500
Continuous Monitoring
Starts at $750/month
We don't audit once and leave. Each month we monitor your Workspace for configuration drift, review new third-party app connections, run access reviews, triage alerts, and send you a posture report you can hand to your board or funder. Always-on protection of your settings, not a once-a-year snapshot.
Best for: organizations that want ongoing oversight without hiring IT staff
Security Policy & Compliance
We build the written policies funders and insurers ask for: acceptable use, a third-party app approval process, data handling aligned to NY's SHIELD Act "reasonable safeguards" standard, and an incident response plan. Documentation your organization actually follows — not a template that sits in a drawer.
Best for: organizations facing a grant, audit, or insurance renewal.
Starts at $2000
Marsh IT LLC shifts your organization from manual, reactive security checks to automated, continuous monitoring of your Google Workspace and the apps connected to it .
What we can give you
A live inventory of every third-party app with access to your Workspace data
Early warning when security settings drift from your baseline
Documented proof of your security posture for grants, audits, and insurance
Fewer manual reviews — the monitoring runs continuously
Workflow Automation
We build the everyday workflows that remove manual busywork — onboarding/off-boarding with automatic access provisioning and removal, recurring-task automation, and Google Sheets/Gmail/Drive builds via Apps Script. Because access removal is a security control, this pairs naturally with your monitoring plan.
Starts at $1,000
Continuous, not once-a-year
✴︎
Know every app touching your data
✴︎
Posture you can prove to funders
✴︎
Built for nonprofit budgets
✴︎
Clearer internal communication and “one place to go” systems
Continuous, not once-a-year ✴︎ Know every app touching your data ✴︎ Posture you can prove to funders ✴︎ Built for nonprofit budgets ✴︎ Clearer internal communication and “one place to go” systems
How We Work
Security Snapshot
We assess your Workspace configuration, connected apps, and access against CIS and NIST baselines.
Remediate + Automate
We fix the priority gaps and set up continuous monitoring so problems surface as they happen.
Document + Report
You get the documentation, admin ownership, and recurring posture reports for your board and funders.
Need everyday tasks automated too?
Many clients start with security and stay for the automation — onboarding/offboarding workflows, recurring-task automation, and Google Workspace builds that remove manual busywork.
Ask about bundling automation with a monitoring plan.
Stop guessing whether your data is exposed.
If your team connects new apps, shares files externally, and changes settings every week — and no one is checking — Marsh IT LLC gives you continuous visibility you can trust and prove.