Our Onboarding Process - North Star IT
North Star IT
Free Assessment
HomeProcess
Process

A real onboarding,
not a checklist sprint.

A clear, dated sequence: discovery, baseline, hardening, monitoring, first report. Each phase has deliverables you can point to. Nothing is invented to fill time.

Phases

Six phases. Ninety days.

Most environments are stabilized in 60 days and fully running in 90. Larger environments take longer. The phases stay the same.

Phase 01 - Week 1-2

Discovery.

We map your environment: users, devices, M365 tenant, on-prem hardware, line-of-business apps, vendors, and contracts. Output is a written environment baseline.

Phase 02 - Week 2-4

Baseline.

We deploy our standard tooling: RMM agents, EDR, password manager, MFA enforcement, backup. We document every change in a runbook.

Phase 03 - Week 3-5

Hardening.

We close the obvious gaps: M365 security baseline, identity hygiene, patch lag, exposed services, weak credentials. Tracked as a remediation list with owners and dates.

Phase 04 - Week 4-6

Monitoring.

Alerts, ticketing, and reporting go live. Helpdesk channels open. Your team learns how to submit and how we respond.

Phase 05 - Day 60

First report.

Your first monthly report covers what we found, what we fixed, what's still open, and a 90-day plan. You'll get one every month after that.

Phase 06 - Day 90

Quarterly vCIO.

First quarterly business review. Roadmap, budget, risk register, and a 12-month plan. Repeats every quarter.

What you walk away with

Documents and tooling you actually own.

Even if you fired us tomorrow, you'd leave with a real environment baseline. We don't believe in keeping clients in the dark.

Doc

Environment baseline.

Written inventory of every user, device, app, vendor, contract, and shadow IT account we found. Living document.

Doc

Runbook.

Every standard procedure your environment needs, written down. Onboarding, offboarding, password reset, backup test, incident response.

Plan

Remediation list.

Every gap we found, ranked by risk, with owner and target date. Reviewed monthly until cleared.

Report

Monthly health report.

Tickets, patches, backups, security events, and recommendations. One PDF per month.

Plan

Quarterly roadmap.

12-month rolling roadmap with budget, risk, and key dates. Reviewed every quarter.

Trust

Open documentation.

All of the above lives in a shared knowledge base your team can read whenever they want. No vendor lock-in.

Want to see what your first 90 days would look like?

Book a 30-minute call and we'll walk through the process with your environment in mind.

Get a Free Assessment Read the playbook