Annual third-party penetration test (compliance-driven) - Endpoint detection and response (CrowdStrike Falcon) on corporate endpoints - Multi-factor authentication for VPN access - Security awareness training (quarterly phishing simulations) - SIEM (Splunk) monitoring with a two-person SOC during bu