jakeschaaf.com

What It Is

jakeschaaf.com is not a standard cybersecurity product website. It is the personal operator page of Jake Schaaf, introducing three companies he is currently running or incubating. The most cybersecurity-relevant one is Atticus Rowan: a managed IT and cybersecurity company based in Tiffin, Ohio, serving regulated industries such as financial services, legal, and private equity portfolio companies.

Core Capabilities and Protection Scope

Based on the crawled content, Atticus Rowan is positioned more as an MSP/MSSP-style service provider than as a standalone security software vendor. It publicly emphasizes SOC 2 readiness, HIPAA, PCI DSS, and the operational discipline required for “real compliance projects.” This suggests a focus on compliance-driven security operations, managed IT, cybersecurity consulting, and ongoing management. However, the page does not disclose specific modules such as endpoint protection, EDR, MDR, vulnerability management, SIEM, backup and disaster recovery, or identity security. It also does not describe a management console, alerting mechanisms, or response SLAs.

Deployment, Integration, and Compliance

The deployment model is not specified. It may be delivered through managed service engagements, but this cannot be confirmed from the text. On compliance, the site mentions support for SOC 2 preparation, HIPAA, and PCI DSS, but these are not statements of the company’s own certifications. In terms of integration, the related company Slate Meridian provides IT due diligence, post-merger integration, and technology decision support affecting EBITDA for private equity firms. This indicates potential fit for post-investment IT governance in PE environments, though no specific APIs, platforms, or third-party security tool integrations are disclosed.

Pricing and Commercial Transparency

The page provides no pricing, packages, payment methods, or contract term information. As a result, its cost-effectiveness cannot be assessed. It should be viewed as a typical localized professional service that requires a consultative quote. For customers with a defined budget who want to compare quotes quickly, the level of transparency is limited.

Pros, Cons, and Best Fit

Its strengths are that the founder has more than 20 years of managed IT experience and has long served regulated industries, giving the business a clear positioning. It also speaks the right language for organizations under heavy compliance pressure, such as finance, legal, and PE portfolio companies. The downside is that the website is very high-level, lacking verifiable case studies, technology stack details, service boundaries, response capabilities, and pricing. It is better suited to small and midsize regulated businesses in the U.S. or North American market, as well as PE portfolio companies that need compliance-oriented IT outsourcing.

Access from China and Alternatives

Access from China cannot be determined from the available text, so it should be marked as unknown. If Chinese companies need similar capabilities, they would typically prioritize local compliance and security service providers such as DBAPPSecurity, Venustech, NSFOCUS, or Qi An Xin, or choose a local MSSP familiar with MLPS, the Data Security Law, and PIPL requirements. Cross-border procurement would also require additional assessment of network connectivity, payment, contract jurisdiction, and cross-border data transfer issues.