Professional Services
Identity, device policy, and secure remote access for Pacific Northwest accounting practices, consultancies, and advisory firms with distributed teams.
Client data in three systems. A team working from four states. An IT person who just left, and an environment held together by tribal knowledge. For a firm that sells judgment and discretion, a data incident or a compliance gap isn’t an IT problem, it’s an existential one. The work is identity management, device policy, and access control that hold up when the team is everywhere and the client data can’t be.
Tell us what’s breaking →The departed employee whose accounts stayed active for six weeks because nobody owned the offboarding checklist. The client file that went out through a personal email because the approved channel was too slow that day. The busy-season crunch where the remote access solution fell over with forty people on it and the fix was “come into the office.” The compliance questionnaire from your biggest client that took two weeks of archaeology to answer. The password spreadsheet. Everyone has the password spreadsheet.
If any of that sounds familiar, we’ve worked through it before.
The Craftwork Group is a young entity. The people doing the work aren’t. Our team brings more than a hundred years of combined IT experience, doing this work since 1999, across the operational profiles professional firms actually face: client-confidential data, distributed teams, and the vendor ecosystems professional practices live in.
The deepest of that experience is in legal. Members of our team served as the de facto in-house IT for a regional Pacific Northwest law firm for twelve years, and we hold active managed services engagements with Pacific Northwest law firms today. The disciplines that work transfers directly: access scoped to the matter or the engagement, walls between clients when conflicts require them, onboarding at hire speed, and offboarding where data control is the highest-risk moment in the relationship. If your firm is a law practice specifically, we wrote a page for you: IT for law firms.
What working with us actually looks like. Helpdesk opens at 6:30 AM and runs until 5:00 PM, with on-call coverage after hours. Standard SLA is one-hour response; in practice, most calls get answered live as they come in. We treat phone calls as priority because if you’re calling, it’s urgent. The only thing that bumps a live call is a monitoring alert flagging a system down or under attack. We’re often the ones who tell you something broke before you noticed. Often we have it fixed before you’d have called.
A note on the rest of the field. We’ve spent the last few months calling MSPs posing as a buyer to see how the market actually operates. Over seventy-five percent never picked up the phone. None returned the sales inquiry. If you’ve shopped for IT support before, that probably tracks. We don’t work that way.
One identity per person, everywhere: Entra ID as the spine, single sign-on across the systems your firm actually uses, MFA enforced without daily friction, and conditional access that distinguishes the partner’s laptop from an unknown device in another country. When someone leaves, access ends in one place, at one moment, completely.
Before any of the niche depth matters, the standard MSP work has to be solid. Workstation and server monitoring. Microsoft 365 management. Enterprise-grade firewalls, switching, and Wi-Fi. Backup and disaster recovery with documented recovery drills, not the kind nobody runs until something breaks.
Remote access that holds up in busy season, built without the VPN complexity that makes people route around it. Device management and endpoint policy that cover firm machines and the personal devices reality says people will use anyway, with the firm’s data walled off either way. The approved path has to be the easy path, or it won’t be the used path.
Client data mapped, classified, and access-controlled by engagement, so who-can-see-what is a policy, not a folder-permissions accident. Audit logging that answers a client’s security questionnaire in an afternoon. Walls between clients when conflicts require them, and a written record that the walls were standing.
The honest wins respect the confidentiality boundary: indexing the firm’s own knowledge base and templates so institutional memory survives turnover, engagement-document classification on infrastructure you control, and reconciliation between time-tracking, billing, and the document trail. Hours back every week, with client data never leaving your perimeter.
What we won’t do: pipe client-confidential material into a public AI tool, or promise AI will do the advisory work your clients pay your people for. The right deployment eliminates administrative reconciliation. The wrong one creates a confidentiality incident with a chat interface.
Your model choice. Your API keys to OpenAI, Anthropic, or whoever you pick. Your data on infrastructure you own. We configure, deploy, and operate; you keep the keys and the option to take it all elsewhere.
No phone tree. No demo deck. A real conversation about what’s breaking in your firm, what you’ve already tried, and whether there’s a path where we’d actually be useful. If we’re not the right fit, we’ll tell you and point you somewhere honest.
If we are a fit, the next step is an operations audit. A half-day on-site, a written assessment of what we’d do and what it would cost, no obligation past that point.
Book the 30-minute call →The Craftwork Group provides IT infrastructure and documentation systems; professional-responsibility and compliance obligations remain with your firm and its counsel.