Do you offer a free cybersecurity audit in Ireland?

Yes. Intellix offers a free, non-intrusive 3–5 page external cybersecurity audit for SMEs and mid-market organisations in Ireland and the UK. Delivered in 7 working days. Covers DNS, DMARC/SPF/DKIM, TLS, security headers, application surface and Business Email Compromise readiness. Mapped to GDPR Art. 32, NIS2 and MITRE ATT&CK.

How much does a paid cybersecurity audit cost?

Paid tiers start at €1,500 for the Deep-dive Report (the report most clients hand to their insurer or board — internal scan, cloud configuration review, MFA audit and risk register), €5,000 for the Full Security Assessment (external penetration test, phishing simulation, vendor coordination, retest), and €8,000 for the NIS2 Readiness Programme (gap analysis against all ten Article 21 measures, policy drafting, board briefing, CISO/DPO scorecard). For ongoing coverage: €500/quarter Quarterly Monitoring and from €1,800/month Managed Cybersecurity Oversight. Every scope is fixed-price and confirmed before work starts.

Do you build custom software in Ireland?

Yes. Custom software development is one of our core service lines. We build B2B portals, internal operational tools, ERP-grade production systems (Keystone), integrations across Shopify / Akeneo / Sage, and customer-facing platforms. Same team delivers the code, the cloud infrastructure and the long-term support. UK + Ireland delivery, EU data jurisdiction.

Do you build AI and machine-learning software?

Yes. We build applied AI and ML systems for serious operators — retrieval-augmented (RAG) assistants on private data, computer-vision pipelines for production lines, document automation, demand forecasting, fraud and anomaly detection, and LLM integration into existing software. Delivery is product-engineering-grade with evaluation, observability, cost control and EU data residency.

Can you help us comply with NIS2 in Ireland?

Yes. We deliver NIS2 readiness assessments and remediation for in-scope Irish and UK SMEs. Findings are indexed against the eight NIS2 control families (governance, supply-chain, vulnerability management, incident handling, cryptography, access control, asset management, business continuity) with a CISO/DPO scorecard. Optional ongoing oversight available.

Are you a Netgate pfSense partner?

Yes. Intellix deploys and supports Netgate pfSense for hotels, hospitality groups, food producers and B2B portal operators across Ireland and the UK. We handle the firewall design, captive-portal guest WiFi, VLAN segmentation, VPN and ongoing change management.

Do you provide DMARC, SPF and DKIM setup?

Yes. Email authentication setup is one of the highest-impact cybersecurity controls for any organisation. We configure SPF mechanisms, DKIM selectors, DMARC policy enforcement (move from p=none to p=reject safely), MTA-STS and TLS-RPT — and validate the changes via reporting. Included in the Deep-dive Report and as a standalone engagement.

Do you support hospitality WiFi and hotel IT in Ireland?

Hospitality is a core wedge for us. Hotels handle guest data, PCI scope, captive-portal WiFi, PMS / POS integrations, and 24/7 uptime obligations. We deliver hospitality-grade WiFi (Ubiquiti, pfSense), Microsoft 365 security hardening, backup and ransomware readiness, vendor coordination and ongoing managed cybersecurity oversight — built around the operational rhythm of a hotel or restaurant.

All field notes

Hospitality

Hotel guest WiFi checklist before peak season

Asif Khan 16 May 2026#Hospitality#WiFi#pfSense

Peak season is the worst time for your guest WiFi to fail — and the most likely time for it to fail. Here are twelve things to check before the May bank holiday rush.

Network design

Guest VLAN is fully isolated. No route to back-office, PMS, POS, CCTV, or staff devices. Test it by trying to ping your PMS server from a phone on guest WiFi. If you get a reply, you have a problem.
Bandwidth caps per device. One guest streaming 4K at 25 Mbps shouldn't ruin the night for the other 47. We typically set 8 Mbps down / 4 Mbps up per device with burst.
DNS isn't pointing at your router. Your router shouldn't be the recursive resolver for guests. Point them at Cloudflare (1.1.1.1) or Google (8.8.8.8). This avoids the cache-poisoning issue that took down half of Irish independent hotels in August 2024.
Captive portal works from every access point. Test by walking through every public area with a fresh device. Reception. Bar. Restaurant. Each bedroom floor. Garden seating. The 'fresh device' part matters — a phone that's already been on the network will skip the portal.

Compliance & guest experience

GDPR T&C banner with consent capture. Required since 2018. Most captive portals we inspect haven't been updated since.
Email-on-portal opt-in is genuinely optional. Ticking a 'consent to marketing' box can't be required to access the WiFi. We see this wrong in 60% of hotels we audit.
Connection-log retention set deliberately. Irish guidance is 12 months for B&B / hotel guest authentication logs, automatically purged thereafter. Set the retention in the captive portal config, don't leave it at infinity.
Session timeout is reasonable. 24-hour sessions for hotel guests. Not 'forever'. Not '30 minutes' (the second-worst experience).

Resilience

4G/5G failover is configured and tested. Most Irish hotels have a backup SIM that nobody has ever actually failed over to. Test it. The day a JCB cuts your fibre is too late.
Access point firmware is current. Schedule firmware updates outside the August rush. We've seen properties go to peak season with 18-month-old firmware containing known vulnerabilities.
One person knows the captive-portal admin password. And it's not the GM, who's on a beach in Lanzarote. We're surprised how often a guest WiFi outage at 9pm becomes a 2am scramble because the credentials are locked in someone's head.

The big one

You know who you'd call at 11pm on a Sunday in August. Your broadband provider doesn't take responsibility for the captive portal. Your captive-portal vendor doesn't answer at 11pm. We do. Get hospitality IT on a retainer.

More field notes

Something here resonate? Talk to us →