Frequently Asked Questions

We are a U.S.-based, security-forward Managed Service Provider (MSP) located in Livonia, Michigan. With over two decades of experience, we deliver advanced cybersecurity solutions and reliable IT services, including managed security, risk assessments, penetration testing, incident response, and compliance support. We also offer general IT services, including server management, patching, software support, Microsoft 365 administration, and desktop maintenance.

As a Managed Service Provider, we take responsibility for managing your IT environment so your team doesn't have to. Our Managed IT Services are an ongoing subscription for IT support, maintenance, and security. Instead of hiring and managing a full internal IT team, your organization partners with STACK Cybersecurity to keep systems running, support your staff, and reduce risk over time.

Our CSRA is an in-depth, multi-week evaluation designed to identify, analyze, and pinpoint potential threats and weaknesses that could impact your sensitive data and IT systems. It includes six key components: an RMM Evaluation, SaaS Threat Evaluation, Vulnerability & Network Scan, Phishing Simulation, Password and PII Vulnerability scan, and a Dark Web Scan. Our assessment also helps with ensuring compliance with various regulatory standards, including SOC 2 Type 2, CIS, NIST, CMMC, and PCI.

We support a wide range of compliance frameworks. As a CMMC Registered Practitioner Organization (RPO) with SOC 2 Type II certification, we provide guidance across CMMC 2.0, SOC 2, NIST, HIPAA, PCI DSS, GDPR, and custom compliance programs. Our compliance platform also offers real-time compliance monitoring, quick reporting, framework cross-walking, gap identification, and remediation strategy development.

We offer two primary levels of managed IT services. Our Managed Service Core is designed for organizations that need dependable day-to-day IT operations and foundational protections, including unlimited support for managed workstations, endpoint protection, email security, and dark web exposure monitoring. Our Managed Service Advanced includes everything in Core, plus advanced security operations such as managed detection and response (MDR), 24×7 security operations monitoring, vulnerability scanning, MFA management, and firewall administration — designed for organizations with elevated risk, sensitive data, or compliance expectations.

We address phishing threats in two ways. As part of our CSRA, we run a phishing simulation that mirrors real-world scenarios — creating lifelike phishing emails to assess how well your employees recognize and respond to them, then identifying areas for improvement. We also offer an ongoing Phishing Simulation Platform as a comprehensive solution that tests and trains your employees against phishing attacks, since phishing is one of the most common and effective cyberattacks that can compromise your organization's security and reputation.

Yes. Our Dark Web Scan service actively monitors hidden areas of the internet — including hacker forums and illicit marketplaces — to detect if your company's data has been exposed. Upon discovery, we promptly notify you and offer strategic advice on preemptive measures to protect your business. Our ongoing Dark Web Monitoring covers passwords, credentials, intellectual property, customer data, and financial data.

Yes. We are SOC 2 Type II Certified, a CMMC Registered Practitioner Organization (RPO), Generative AI Certified, and a BBB Accredited Business. These certifications mean we hold ourselves to the same compliance standards we help our clients achieve, giving your business added confidence in our partnership.

Yes. Multi-factor authentication (MFA) is a security method that requires users to provide two or more pieces of evidence to verify their identity before accessing a system or application. MFA can prevent unauthorized access and protect sensitive data, even if passwords are compromised. Our MFA solutions are compatible with existing authentication technologies such as biometrics, email, text, and voice call, and we leverage the FIDO2 standard, which provides the highest level of security and privacy.

The best first step is scheduling a Cybersecurity Risk Assessment with our team. We'll meet you where you are today, review your environment and risks, and recommend a path that fits your budget and risk tolerance. You can reach us by phone at (734) 744-5300, email us at info@stackcyber.com, visit our office at 33131 Schoolcraft Rd, Livonia MI 48150, or submit a request through our contact form.