Free 60-minute IT health check: what we’ll actually do in the hour

Most “free IT health checks” we hear about look like this: 20 minutes introducing the consultant’s company, 30 minutes asking what you’d like to improve, 10 minutes wrapping up with “we’ll get back to you with a proposal.” You learn nothing. They learn enough to size the quote.

That isn’t useful. So we don’t do that. When you book a Burika 60-minute health check, here’s exactly what happens.

The 7 things we check, in order

1. Patch posture (5 min, with a live scan)

We run a remote scan of your endpoints (with your permission and admin credentials) and pull the current patch level on Windows, M365 apps, browsers, and any major third-party software. You see a percentage. Anything below 95% gets flagged with which CVEs are exposed and how recent.

2. Backup integrity (5 min)

Not “do you have backups” — every business says yes. What we actually check: when was the last successful test restore? If the answer is “we haven’t” or “I’m not sure,” we mark backup as unverified. Untested backups have a roughly 30% failure rate when you actually need them.

3. M365 / Exchange license utilisation (8 min)

We log into your tenant admin and look at: how many licenses you’re paying for vs how many active users, which licenses are over-spec’d for the role, and (very common) whether you qualify for Microsoft 365 Education at near-zero cost but haven’t claimed it.

In about 60% of audits we run, this section alone uncovers R2k-R8k/month of wasted licensing.

4. MFA coverage on admin accounts (5 min)

We check: is multi-factor authentication enforced on every administrator account in M365, your domain controller, your firewall, your finance software, and your accounting platform? One missing account is one account too many. Microsoft’s own data says MFA stops 99.2% of automated account-takeovers.

5. SPF / DKIM / DMARC on your sending domain (10 min)

We query your DNS and grade it. SPF present and correct? DKIM signed by every legitimate sender? DMARC policy set to p=quarantine or p=reject, not p=none? Most SA businesses we audit are at p=none — which means anyone in the world can send email claiming to be from your domain, and your customers will receive it.

6. Endpoint AV / EDR status (8 min)

We sample a few endpoints (laptops, servers) and check: is Defender (or your alternative EDR) actually running, up to date, and reporting? In about a third of audits we find endpoints that think they’re protected but the agent stopped reporting 4-6 months ago. Silent failure is the worst kind.

7. Network topology & failover (10 min)

We sketch your current network on paper — fibre / LTE, firewall, switches, Wi-Fi, VPN. Then we ask: what happens if your fibre drops at 11am on a busy Tuesday? If the answer involves manual intervention, you don’t have failover. You have hope.

What you walk away with

A 1-page summary, by email, within 24 hours. Each of the 7 areas marked green / amber / red, with one specific next action per amber/red item. No obligation. No follow-up sales pitch unless you ask for one. Nothing locked behind a quote.

If you’d like us to fix what’s flagged, that’s a separate conversation. About a third of our health-check audits result in no engagement — the business sorts it themselves. Another third turn into project work. The remainder become RMM contracts. We’re fine with any of those outcomes.

What this isn’t

  • Not a sales pitch dressed up as a free service
  • Not 60 minutes of “interesting questions” — it’s a structured audit with deliverables
  • Not limited to existing Burika clients
  • Not a way to lock you into anything — you keep the report, no strings

How to book

Fill in the short form on our get-in-touch page and a senior engineer — not a salesperson — will respond within one business day to schedule the hour. Most assessments happen within a week of the request.

If you’d rather skip the form, WhatsApp us on +27 76 070 0133 with “Health check” and your company name. We’ll be back to you the same day.