About Johnston Governance Group

Johnston Governance Group was created with a simple mission: to help small businesses take control of their technology with clarity, confidence, and practical guidance. Founded by Brent Johnston—IT governance consultant, author of IT Governance for Small Business, and long‑time advocate for accessible, no‑nonsense technology management—we specialize in making complex topics simple, actionable, and achievable for any organization.

Small businesses don’t need enterprise‑level bureaucracy to stay secure. They need clear policies, practical controls, and a partner who understands their reality. That’s why our services are built around the same principles found in Brent’s book: straightforward frameworks, one‑page policies, real‑world case studies, and step‑by‑step tools that owners and small teams can put to work immediately.

Whether you need help assessing risk, building essential IT policies, improving cybersecurity practices, or creating a governance foundation that grows with your business, we provide guidance that’s grounded in experience and tailored to the way small businesses actually operate. Our goal is to empower you—not overwhelm you—so you can focus on running your business with confidence.

Contact info :

Email Brent.johnston@yahoo.com

Phone 785 448 7155

Please also check out my book on amazon Amazon.com: IT Governance for Small Business: A Simple, Practical Guide to Staying Secure eBook : Johnston, Brent: Kindle Store

Services for Small Business Owners

Many small businesses want to improve their security and governance but don’t have the time, staff, or experience to do it alone. The services below are designed to give owners practical, affordable support without the complexity or cost of traditional consulting. Each option is built for small teams, clear outcomes, and predictable pricing.

If you’d like help putting the ideas in this book into action, you could reach me directly: If you purchased my book, you could call me for a 30-minute complimentary consultation.

Email: Brent.johnston@yahoo.com Phone: 785‑448‑7155

1. Governance Starter Package

A fast, done‑for‑you setup of the essentials.

Includes:

  • Simple, business‑friendly risk assessment

  • One‑page policies customized to your business

  • MFA rollout guidance

  • Backup and recovery recommendations

  • A 60‑minute walkthrough session

Cost: $500 one‑time Best for: Businesses starting from scratch and wanting a clean, simple foundation.

2. Policy & Documentation Bundle

Professional, customized governance documents tailored to your operations.

Includes:

  • Acceptable Use Policy

  • Password & Authentication Policy

  • Data Protection Policy

  • Access Control Policy

  • Backup & Recovery Policy

  • Policy acknowledgment forms

Cost: $500 (or $100 per policy) Best for: Businesses that need documentation for clients, insurers, or compliance requirements.

3. Risk Assessment & Roadmap

A deeper look at your risks with a clear 12‑month improvement plan.

Includes:

  • Full risk assessment

  • Threat and vulnerability review

  • Control gap analysis

  • Prioritized 12‑month roadmap

  • Executive summary for leadership or your board

Cost: $800 Best for: Businesses preparing for growth, audits, or insurance renewals.

4. Access & Identity Cleanup

Fix access sprawl, remove old accounts, and tighten controls.

Includes:

  • Access review across systems

  • Removal of unused or risky accounts

  • Role‑based access recommendations

  • MFA enforcement plan

  • Quarterly review template

Cost: $400 Best for: Teams with shared logins, old accounts, or unclear access rights.

5. Incident Response Playbook

A simple, actionable plan for handling “bad day” scenarios.

Includes:

  • One‑page incident response plan

  • Roles and responsibilities

  • Communication templates

  • Post‑incident review checklist

  • 30‑minute training session

Cost: $250 Best for: Businesses that want to be prepared without overcomplicating things.

6. Monthly Governance Support (Subscription)

Ongoing help to keep your business secure and compliant.

Includes:

  • Monthly governance health check

  • Quarterly access review

  • Backup verification

  • Policy updates

  • Priority email support

Cost: $750/month (cancel anytime) Best for: Businesses that want governance handled without hiring staff.

7. Client Security Questionnaire Support

Help responding to security questions from clients, partners, or vendors.

Includes:

  • Review of questionnaire

  • Drafted responses

  • Guidance on evidence collection

  • Recommendations for future readiness

Cost:

  • $200 for questionnaires under 50 questions

  • $400 for larger questionnaires

Best for: Agencies, SaaS companies, and service providers selling to larger clients.

8. Pre‑SOC 2 Readiness Lite

A lightweight version of SOC 2 preparation for small teams.

Includes:

  • Control mapping

  • Evidence folder structure

  • Logging and monitoring recommendations

  • Change‑management basics

  • 60‑minute readiness review

Cost: $2500 Best for: Startups or service businesses that want to look “audit‑ready” without the full SOC 2 investment.