Skip to content
Limestone AI Labs
Remote-first Infrastructure & security

We build it. We secure it.
Then we prove it.

We design and build infrastructure around your environment — identity, network, endpoints, and Microsoft 365 — then harden it to a recognized framework and keep watch. Custom work for organizations of any size, wherever you are. Fixed fee, evidence-backed, no help desk.

Start an SB 2610 audit See the work
Frameworks
NIST CSF 2.0 · CIS
Engagement
Fixed-fee outcomes
Base
Fort Worth, Texas
Instruments & frameworks
  • Microsoft 365
  • Microsoft Entra
  • Microsoft Defender
  • Cloudflare
  • FortiGate
  • Intune
  • Jamf
  • NIST CSF 2.0
  • CIS
Front door Texas SB 2610

Get SB 2610 ready.

Texas SB 2610 rewards small businesses that adopt a recognized security framework. We start with an audit, hand you evidence, then do the remediation. Readiness and proof, not a certificate.

32.73°N, 97.36°W · Fort Worth, Texas

Request a readiness scan
  1. 01

    Lite Readiness Scan

    $2,500

    Automated review of your Microsoft 365, identity, and security exposure, returned as a plain report you can hand to a board or an insurer.

  2. 02

    Full Readiness Assessment

    $4,000–$7,500

    Evidence-backed gap report mapped to NIST CSF 2.0 and CIS, plus an executive remediation roadmap. The findings are sourced, not asserted.

  3. 03

    Remediation Sprint

    $7,500–$25,000

    We implement it: MFA, Conditional Access, Defender, Intune, logging, and immutable backup. You end with posture you can prove, not a slide deck.

Final pricing depends on tenant condition, identity complexity, mail flow, device management requirements, compliance evidence needs, and cutover timing. Fixed-fee proposals are issued after discovery.

Services By category

Fixed-fee work across the whole stack.

Every engagement is built for your environment — no templates, no packaged tiers. Most start with an audit, turn into a build or remediation project, and settle into monitoring. Each piece is scoped and priced before it starts.

Who it's for

Teams that have outgrown winging it.

Not an MSP, not a help desk. A single operator who shows up, fixes the thing, writes it down, and hands you the evidence.

Size
Five seats or five thousand

From a one-location shop to a multi-site operation. The common thread isn't headcount — it's real identity, real data, and a real reason someone would come after it.

Stack
Microsoft-first

Teams that live in Outlook, Teams, SharePoint, and Entra. We also migrate teams off Google Workspace and aging on-prem AD.

Trigger
A deadline or a scare

An SB 2610 question from an insurer or board, a failed assessment, a near-miss, or an acquisition. Something made security urgent.

Reach
Remote-first, anywhere

Based in Fort Worth, working remotely with teams across the country — Texas, Wisconsin, and beyond. On-site when a cutover or a network actually needs hands.

How it goes

Audit first. Change second. Evidence always.

The AI is leverage, not magic: it does the reading, the drift-watching, and the report-writing so one operator can cover real ground. You get the output, not the busywork.

  1. 01
    Discovery

    A short scoping conversation and a read-only look at your tenant. No agents installed, no changes. We learn the terrain before quoting it.

  2. 02
    Readiness audit

    The SB 2610 scan or full assessment: an evidence-backed gap report mapped to NIST CSF 2.0 and CIS, with a remediation roadmap you can hand to a board.

  3. 03
    Remediation

    A fixed-fee sprint that implements the roadmap: MFA, Conditional Access, Defender, Intune, logging, immutable backup. Scoped before it starts.

  4. 04
    Monitoring

    The Tenant Security Toolkit watches for policy drift, re-scans on a schedule, and exports evidence continuously. A quarterly risk report keeps leadership honest.

Client portal

Your evidence, in one place.

Audit findings, remediation history, exported compliance evidence, and documents. When an insurer or auditor asks, the answer is a link, not a scramble. Sign in with an email code, no password to lose.

Open the portal
Questions

The ones worth answering up front.

Are you an MSP?
No. There is no help desk, no per-seat plan, no ticket SLA. Limestone sells scoped, fixed-fee outcomes: an audit, a remediation project, or a posture-monitoring subscription. If what you need is a 24/7 break-fix desk, we will say so and point you to one.
What is Texas SB 2610, and can you certify us?
SB 2610 is a Texas law that limits certain liability for small businesses that adopt and maintain a recognized cybersecurity framework. No one can hand you a certificate or guarantee safe harbor. What we provide is readiness, remediation, and evidence: a gap report, the fixes, and a continuously-exported record you can show a court or an insurer.
Are you only for small businesses?
No. SB 2610 readiness is aimed at smaller Texas teams, because that is who the statute protects. The rest of the work — identity, network, Microsoft 365, and posture monitoring — scales from a five-person shop to a multi-site enterprise. The larger you are, the more the framework work is about evidence and control than about size.
Do you only work in Texas?
No. I am based in Fort Worth and work remote-first with teams across the country — currently Texas, Wisconsin, and elsewhere. SB 2610 readiness is Texas-specific because it is a Texas law; the build and security work is not geo-bound. On-site visits happen when a cutover or a network actually needs hands.
Do you publish an hourly rate?
No. Hourly billing rewards slowness. We quote fixed fees against a defined outcome after a short discovery, so you know the number before the work starts and we both share the risk of the estimate.
What frameworks do you map to?
NIST CSF 2.0 and CIS Controls, which are the recognized frameworks SB 2610 points at. The audit findings are mapped to specific controls so the remediation roadmap is concrete, not a vibe.
Do you only do security?
Security is the front door, but the main work is modernization: Microsoft 365 and Entra baselines, AD-to-Entra and Intune migrations, FortiGate and Cloudflare network projects. Most security gaps close as a side effect of doing the infrastructure right.
Are you really one person?
Yes. The audits, drift detection, and reporting run on AI underneath, which is how one operator covers ground that used to need a team. A human scopes the work, makes the calls, and owns the outcome. The leverage is in the reading and writing, not the judgment.
Get in touch

Start with a scan.

Email is the front door. Tell us your headcount, your main cloud, and what made security urgent. You get a written reply from a real person within one business day, and an honest read on whether we are the right fit.

If we are not, we will say so and point you somewhere useful.

Email
hello@limestoneailabs.com See the SB 2610 funnel
Existing clients
Sign in to the client portal →