Taking new clients · Orange County, CA · remote nationwide

One consultant for all of it. Network, security, cloud, and the systems your business runs on.

Managed IT and cybersecurity for small and mid-sized businesses, with deep healthcare expertise when you need it. Fixed-fee quotes in writing. No long-term contracts. No account managers between you and the person doing the work.

15 yrs in IT 1,000+ system integrations 24/7 monitoring available
Sound familiar?

Most clients come to me with one of these

"Our IT guy left and nothing is documented."

No passwords, no network map, servers nobody understands. I inherit messes like this all the time. First step is an audit, then a plan.

"We got a cyber insurance questionnaire and can't answer it."

MFA everywhere? Backups tested? Logs monitored? I get your environment to a state where you can answer yes honestly.

"Our systems don't talk to each other."

Lab to EMR, ordering to billing, analyzer to LIS. I've built over 1,000 of these connections. Data should move by itself.

"We're paying an MSP and still doing IT ourselves."

Ticket queues, escalations, a different tech every time. With me you get one person who knows your whole environment.

If one of these is you, describe it in the form below and I'll come back with a plan and a fixed price.

Services

What I handle

Everything below is quoted as a fixed fee before work starts. Ongoing support runs on a flat monthly retainer you can cancel anytime.

🖥️

Managed IT & support

Your outsourced IT department. I keep everything running so your staff can do their actual jobs.

  • Server, workstation, and network management
  • Microsoft 365 / Google Workspace administration
  • Backups with tested restores, not just "backups exist"
  • Vendor wrangling: ISP, phones, printers, software
  • Flat monthly retainer, no per-ticket billing
🛡️

Cybersecurity

Real security work with written findings, priced flat so you know the cost before you commit.

  • Security risk assessments with HIPAA-ready reports
  • Web application and network penetration testing
  • SIEM deployment and 24/7 log monitoring
  • MFA rollout, hardening, cyber insurance readiness
  • Incident response when something already went wrong
🔗

Healthcare integration

The specialty a typical MSP can't touch. Clinical systems, connected properly.

  • HL7 / FHIR interfaces on Mirth Connect
  • EMR, LIS/LIMS, and lab analyzer connections
  • Interface rescue when results stop crossing
  • Audits of inherited, undocumented Mirth servers
  • BAA signed before anything touches patient data
🌐

Network & cloud

Infrastructure designed, built, and documented so the next person can understand it.

  • Office network design, firewalls, VLANs, Wi-Fi
  • Secure remote access and VPN with MFA
  • Windows Server, Active Directory, remote desktop
  • Cloud migrations: Azure, AWS, Microsoft 365
  • New office buildouts and moves
⚙️

Custom tools & automation

The stuff nobody sells off the shelf. If your team does it by hand every week, it can probably be automated.

  • Custom dashboards and monitoring tools
  • Data pipelines between systems that were never meant to connect
  • Report automation and document generation
  • Small internal web apps built for your exact workflow
📋

Compliance

Paperwork that holds up when someone audits you.

  • HIPAA security risk analysis
  • Policy and procedure documentation
  • Cyber insurance questionnaire support
  • Plain-English findings your leadership can actually read
Who I work with

Too big for "the owner's nephew," too small for an IT department

🏥

Medical practices & labs

Where I've spent most of my career. EMRs, lab systems, HIPAA, and the reality of a 7am interface failure before the morning draw.

🏢

Professional offices

Law, accounting, real estate, insurance. Client data that can't leak, email that can't go down, and compliance questions from carriers.

🍽️

Restaurants & retail

I own a restaurant myself, so I know what a dead POS on a Friday night costs. Networks, POS, cameras, guest Wi-Fi.

🏗️

Growing companies

You just hired employee number 15 and IT is now a real problem. I build the foundation properly so you're not redoing it at employee 50.

Recent work

Real projects, real numbers

Client names withheld because most of this work sits under NDA or BAA. References available on request.

Security · multi-server client

From zero visibility to a monitored environment

File server, domain controller, integration engine, LIMS. None of it monitored, no audit logging, remote access wide open. I deployed a SIEM with role-based agent groups, tightened Windows audit policies, and locked remote access down to the office firewall's static IP.

39,000+security events indexed and searchable in the first week
Integration · toxicology lab

Manual insurance lookups eliminated at the interface layer

Incoming orders carried free-text insurance names that never matched the billing system, so staff fixed every order by hand. I built a transformer that normalizes and matches carriers automatically and routes true unknowns to one review queue.

Every orderused to be touched by hand. Now only genuine unknowns are.
Infrastructure · remote workforce

Secure remote desktop for 50 users, three layers of auth

Designed and built a Windows remote desktop environment where a connection needs a device certificate, an MFA push, and domain credentials before anyone sees a login screen. Every phase documented so it survives staff turnover.

50 usersworking remotely without exposing a single port to password guessing
Lab systems · analyzer interface

New analyzer talking to the lab system, both directions

A new immunoassay analyzer arrived with no working LIS connection and vendor support going in circles. I decoded the middleware configuration, corrected the order record format field by field, and got barcoded orders downloading and results uploading reliably.

2-wayorders and results flowing with no manual entry on either side
Windows ServerActive DirectoryMicrosoft 365AzureSonicWallWazuh SIEMMirth ConnectHL7 · FHIRAthenaCernerEpic · OCHINNextGenLabDAQ+ 30 more
Tools I've built

When the software you need doesn't exist, I write it

Off the shelf covers maybe 80% of what a business needs. These came out of the other 20%. Every one of them started as a real client problem.

LabBridgeAPI integration

For when two systems need to talk and one of them has no HL7 feed, just an API. LabBridge sits in the middle: it calls the API, runs custom lookups (patient demographics, insurance, eligibility, order codes), and hands clean data to the system that needs it. Real example: orders arrived with free-text insurance names that matched nothing in billing. LabBridge normalizes each name, looks it up against the insurance master, caches the result, and routes true unknowns to one review queue instead of every order landing on a human.

IntegriFlowMonitoring

A dashboard that watches interface engines around the clock. Channel status, message counts, error trends, and a permanent audit log. You find out a channel died from an alert, not from an angry phone call the next morning.

ACK TrackerHL7 reliability

Tracks acknowledgments for every HL7 message sent. When the receiving system quietly drops something, this catches it. "The lab never got the order" stops being a mystery and becomes a report.

HL7 QA AssistantTesting

Validates messages against spec before go-live. Catches the formatting problems that would otherwise fail silently in production, which is exactly where you don't want to discover them.

Steller PDFDocuments

A document toolkit for clinical and business workflows. Generates, merges, and processes PDFs automatically so nobody spends Friday afternoon doing it by hand.

HID Prox Token StudioPhysical access

Calculates access card token numbers for badge systems, with batch processing and export. Built for access control work, because security isn't only about what happens on the network.

Most of what I build never gets a name. It gets written for one client's exact problem and then quietly does its job for years. If your team does something painful by hand every week, that's usually a two-week build.

Clients

What it's like to work with me

"
We had four servers and honestly no idea what was happening on any of them. Within a couple of weeks we had monitoring, alerts, and for the first time an actual answer when someone asks about our security. He explains things without making you feel stupid.
Operations DirectorHealthcare services company, Irvine, CA
"
Our billing team was fixing insurance info on every single order by hand. Balwinder solved it at the interface level and it just stopped being a problem. A vendor had quoted us months. He did it in weeks.
Lab DirectorClinical toxicology laboratory, Orange County
"
The instrument vendor and the software vendor spent weeks pointing fingers at each other. He got in the middle, found the actual problem, and got the interface working in both directions. Then he documented it, which nobody had ever done for us before.
Laboratory ManagerClinical lab, Southern California
How it works

No risk to find out if I can help

Tell me what's going on

Use the form below. Describe the problem in your own words; you don't need to know the technical terms. I reply within one business day.

Written plan, fixed price

You get a one-page scope: what gets done, what it costs, and when. If I'm not the right fit, I'll say so and point you to someone who is.

Work gets done, documented

I do the work myself, test it, and hand over documentation you own. For ongoing clients, monitoring runs quietly in the background from then on.

Balwinder Singh, founder of SmaRTy Saini IT Consulting
Who you're hiring

Balwinder Singh

Founder, SmaRTy Saini IT Consulting · Orange County, CA

I've been doing IT for 15 years, most of it inside healthcare, where downtime has consequences beyond lost revenue. I currently run IT operations for a clinical laboratory, which keeps me honest: I don't recommend anything I wouldn't run myself at 7am on a Monday.

I also own a restaurant. That sounds unrelated until your point of sale dies during dinner service and your IT consultant actually understands why you're panicking. Small business is not an abstraction to me.

When you hire me, I'm the one doing the work. No handoffs, no offshore team, no account manager translating between you and a technician you'll never meet.

15 years in IT Certified Compliance & Ethics Professional (CCEP) B.S. Cybersecurity, Purdue Global HL7 & FHIR HIPAA / BAA standard
Common questions

Before you reach out

What kind of businesses do you work with?

Small and mid-sized organizations that need serious IT help without hiring a whole department. Medical practices and labs are my deepest specialty, but I work with professional offices, restaurants, and growing companies of every kind. If you have between 5 and 100 employees and IT is a headache, we should talk.

Do you work outside Southern California?

Yes. Most of this work is remote: monitoring, security assessments, cloud management, and system integration all happen without a site visit. On-site work is available across Southern California when a project calls for it.

How does pricing work?

Projects get a fixed fee in writing before work starts, so you know the number before you say yes. Ongoing support and monitoring run on a flat monthly retainer with no long-term contract. Cancel anytime.

Can you take over from our current IT provider?

Yes, and it's a common starting point. Undocumented networks, missing passwords, and half-finished projects don't scare me. The first step is an audit that maps what you actually have, then a prioritized plan for what to fix.

Do you sign Business Associate Agreements?

Always. Any engagement that touches patient data includes a signed BAA before work begins. If your compliance team wants to review one first, email me and I'll send it same day.

What if the problem turns out to be something you can't fix?

Then you get my findings in writing and the name of someone who can. I'd rather lose a project than burn your budget pretending.

Get a quote

Tell me what's broken, or what you want built

What happens next

You'll hear back within one business day with either a plan or a couple of clarifying questions. No sales sequence, no newsletter, no pressure. Your message goes to me, not a queue.

✉️ Emailcontact@smartysaini.com 💼 LinkedInlinkedin.com/in/smartysaini

Replies within one business day. Your info never gets shared or sold.

Request a quote