+1 888-774-9244
IT Built For Firms That Build the World.
Protecting Revit central files, keeping AutoCAD running across job sites, and securing client project data — without touching your design workflows or slowing your team down. When a generic MSP sees a Windows ticket, we see a design deadline.
Reliable IT Support Right Here in the Bay Area
IT Solutions Designed to Fit Your Needs.
Freeing Your Time and Maximizing Your Resources.
AEC Firms Hit by Ransomware
Average Cost
Average Downtime
The Challenges We Solve
Your IT Environment Is Unlike
Any Other Industry.
Most MSPs treat Revit like Microsoft Word. We don’t. AEC firms run on project deadlines, multi-gigabyte design files, and distributed teams that need reliable access from office, home, and job site. Your IT partner needs to understand that before touching anything
Revit Central File Performance
Slow Sync with Central kills productivity and risks model corruption. We design and maintain the NAS, 10GbE switching, and SMB configuration that Revit worksharing actually requires — not guess at it.
Project File Security & Ransomware
Months of billable work live in your Revit central files and AutoCAD project folders. A ransomware event mid-project isn’t just an IT problem — it’s a missed permit deadline and a potential E&O claim.
Field & Remote Access
Project managers on job sites, architects working from home, contractors needing file access — secure, fast access without the VPN headaches that slow large drawing files to a crawl.
Backup You Can Actually Trust
Your NAS backup has probably never been tested. We implement Veeam + offsite immutable storage, run monthly restore tests, and document the results — because an untested backup is not a backup.
Workstation Lifecycle & Spec
We coordinate with your Autodesk reseller for application support while we own the infrastructure, network, endpoints, and identity layer. Clear boundary, documented in your SOW, no gaps.
Cloud Migration Readiness
Moving Revit worksharing to Autodesk Construction Cloud? We plan the migration, handle the M365 integration, and make sure your data governance and backup posture keep up with your platform changes.
AEC Tool Architecture
We Know Exactly where
Every Tool Lives.
The most common AEC IT mistake is not knowing which applications run on the workstation, which live on the server, and which are pure cloud — and configuring infrastructure that doesn’t match. We do.
This matters because Revit’s performance depends entirely on the file server being fast enough, the workstation having the right CPU and GPU, and the network being 10GbE between the two. Generic MSPs spec the wrong hardware because they don’t understand this dependency challenge.
Everything an AEC Firm Needs From a Managed IT Partner.
Purpose-built service tiers combining deep AEC infrastructure knowledge with enterprise-grade security and IT management — tailored for 20–200 seat design and construction firms.
Managed IT
AEC Infrastructure Management
Full lifecycle management of your file server, NAS, network, and endpoint fleet — proactively monitored so Revit sync errors and XRef breaks are caught before your team feels them.
- NAS monitoring, RAID health, and drive alerting
- 10GbE network management and documentation
- Workstation deployment via Intune Autopilot
- Patch management — Windows + third-party apps
- Drive mapping and UNC path governance
Security
Project IP & Client Data Protection
Security layered around your most valuable assets: active project files, client drawings, and confidential bid documents. Controls that protect without disrupting design workflows.
- EDR on all workstations — Defender for Business
- Email security — anti-phishing, BEC protection
- DMARC / SPF / DKIM enforcement
- M365 Purview DLP — protect PII in proposals
- DNS filtering — Cloudflare Gateway
Backup & Recovery
Project File Continuity
Your Revit central files represent months of billable work. We treat backup as a verified, tested, documented system — not a checkbox. Monthly tested restores with written results.
- Veeam + Wasabi immutable offsite backup
- M365 backup via Spanning (email + SharePoint)
- Monthly documented restore test
- Ransomware rollback capability validated
- RTO / RPO defined and tested annually
Identity
Identity & Access Governance
Entra ID with MFA and Conditional Access across all staff — including enforcement on remote connections from job sites, home offices, and personal devices via Intune.
- Entra ID + MFA enforced firm-wide
- Conditional Access — compliant device checks
- Intune MDM for laptops and mobile devices
- Keeper Security password management
- Automated onboarding/offboarding
Cloud
Hybrid Cloud & M365 for Design Teams
M365 deployed and configured for AEC workflows — SharePoint for project document libraries, Teams for subconsultant coordination, and OneDrive with folder redirection so nothing lives only on a laptop.
- M365 Business Premium deployment + management
- SharePoint project document library structure
- Teams channels configured per project
- OneDrive folder redirection via Intune policy
- External sharing governance for subconsultants
Help Desk
Design-Aware Technical Support
Business-hours support staffed by professionals who understand what a broken XRef path costs a project team. On-site Bay Area response when remote support isn’t enough.
- Business hours M–F support (8am–6pm PT)
- Understanding of AEC tool dependencies
- Bay Area on-site capability for critical issues
- Autodesk VAR coordination boundary respected
- Monthly IT health report to management
Security Stack
Enterprise-Grade Protection for AEC Project Data.
Every control selected and configured for environments where active project files, client IP, and bid-sensitive documents are the primary target — not generic enterprise security copy-pasted from a template.
Data Loss Prevention
Two-week review of your file server architecture, NAS configuration, network performance, M365 security posture, and backup integrity. Deliverable: prioritized roadmap with quick wins and risk gaps clearly identified.
Email Security
Defender for Office 365 with Safe Links, Safe Attachments, and anti-phishing policies. DMARC at reject policy to prevent domain spoofing — critical for firms handling large construction payments and change orders.
DNS Filtering
Cloudflare Gateway blocks malware, phishing, and command-and-control traffic at the DNS layer before a connection is made — covering office, remote, and job site connections via the WARP client.
Security Awareness Training
KnowBe4 phishing simulation and training — because the most sophisticated filter won’t help if a project coordinator clicks a fake DocuSign link. Monthly simulations tracked by role.
A Low-Risk Path from Assessment to Full AEC Partnership.
We earn trust through focused value. Most clients begin with a targeted assessment before scaling to ongoing managed services.
IT & Security Assessment
Two-week deep dive into your license infrastructure, identity posture, IP protection controls, and environment gaps. Deliverable: prioritized roadmap with quick wins
Targeted Project
NAS migration, 10GbE network upgrade, M365 build-out, or security hardening sprint. Fixed scope, fixed fee, measurable deliverable. Proves the relationship before any long-term commitment.
Co-Managed IT & Security
We augment your existing IT person or office administrator with AEC-aware monitoring, help desk, and security operations — expertise without replacing existing relationships.
Full Managed Services
End-to-end ownership of your IT infrastructure, security posture, and support under a single SLA — so your principals focus on design and project delivery, not IT issues.
Why Cipherex?
The Difference Between Generic IT Support and AEC-Native Expertise.
“Most MSPs see a slow computer. We see a Revit sync bottleneck that’s costing your team two hours of billable time per engineer per week“
Architecture and engineering firms at 20–200 seats are chronically underserved by IT. Too large for the break-fix guy who set up the original server, too small to attract enterprise MSPs who want 500+ seat contracts. You end up with generalists who learn your tools on your dime.
We built our AEC practice around this exact firm size — understanding the infrastructure your design tools require, the security posture your cyber insurer expects, and the support model that fits how your firm actually works.
Deep AEC Infrastructure Knowledge
We understand Revit worksharing, XRef path management, 10GbE NAS requirements, and why your workstations need a different spec than a generic office computer.
Bay Area On-Site Rapid Response
East Bay headquarters means we can be on-site within hours for critical failures — when a NAS goes down the morning a permit set is due, remote support is not enough.
Security Built Around Project IP
Client drawings, bid documents, and confidential design data are your most sensitive assets. We layer controls around those assets specifically, not generic enterprise policy.
Clear Autodesk VAR Boundary
We own the infrastructure, network, identity, and security. Your Autodesk VAR owns application support. Clear boundary documented in your SOW — no gap, no blame-shifting.
Proactive, Not Reactive
We monitor NAS health, drive temperatures, RAID status, and M365 alert queues continuously — resolving issues before your project team feels them, not after a deadline-day call.
Cipherex Inc.
Service Area
Bay Area, Berkeley, Concord, Freemont, Milpitas, Oakland, San Francisco
San Jose, San Mateo, San Ramon, Sunnyvale, Walnut Creek
Strategic Technology Solutions
Business Continuity & Disaster Recovery, CIS/NIST Compliance, Cloud & Data Center Migration, Cyber-insurance, Cybersecurity, Managed Infrastructure, Managed IT, Security Assesments, SMB & Enterprise Networking Solutions, SOC 2/CMMC Compliance, Supplement IT Teams
Contact Us
Phone: +1 888-774-9244
Email: [email protected]
Adress: 2010 Crow Canyon Place Suite 100 San Ramon, CA 94583 USA