Access Control & Offboarding
Email Security
SPF, DKIM, DMARC — prevent domain spoofing and phishing.
1 services · Fixed price · 14-day warranty · Senior engineers only
Frequently Asked Questions
Will this break our existing email?+
No. We start DMARC in monitoring mode (p=none) to observe for 2 weeks, then recommend tightening to quarantine/reject. SPF and DKIM don't affect existing email delivery.
How long does the setup take?+
DNS changes take 5-15 minutes. Propagation takes 1-4 hours. Full verification typically completes same day.
Do we need this if we use Google Workspace?+
Yes. Google Workspace handles DKIM for Google-sent emails, but you still need SPF and DMARC configured in your DNS. Also, if you send emails from other services (Mailchimp, CRM, transactional email), those need to be in your SPF record too.
Does this count toward NIS2 compliance?+
Yes. Email security is part of NIS2 Article 21(2) security measures. Setting up SPF/DKIM/DMARC is one of the simplest NIS2 wins at $99.
What's DMARC monitoring and why start there?+
DMARC monitoring (p=none) lets you see who is sending email from your domain without blocking anything. This reveals legitimate services you forgot to include in SPF. After 2-4 weeks of clean monitoring, we recommend moving to quarantine/reject.
Also in Access Control & Offboarding
$5
Not Sure Where to Start?
Our IT Health Check finds every compliance gap in your infrastructure. 1 business day. You get a prioritized list of what to fix.
Not sure which service you need?