IT & Open Source Questions Answered · Johannesburg & Remote
Questions South African Businesses Ask Before Making the Switch
Everything you need to know about open source migration, POPIA compliance, cybersecurity, and what working with Imbertech actually looks like.
Open Source Software
How much can South African businesses save by switching to open source?
Most SA businesses running 10-50 users save R200,000-R1,200,000 per year by replacing Microsoft 365, Salesforce, Adobe, and similar tools with self-hosted open source alternatives. Use our Software Savings Calculator to get a ZAR estimate for your specific stack.
Is open source software reliable enough for business use?
Absolutely. Linux powers over 90% of the world's servers. PostgreSQL runs at NASA and Apple. LibreOffice is used by millions of government agencies worldwide. Open source software is battle-tested, peer-reviewed, and actively maintained. Often more so than proprietary alternatives whose roadmaps are driven by shareholder returns rather than user needs.
How long does migration take?
Simple migrations (e.g., swapping Zoom for Jitsi, or Dropbox for Nextcloud) typically complete in 1-2 weeks including staff onboarding. Complex migrations involving ERP, database, or infrastructure changes run 4-12 weeks depending on data volume and custom integrations. Imbertech provides a scoped timeline upfront. Contact our team for a free assessment.
What happens to our data during migration?
Data never leaves your control. We perform full backups before any migration begins, migrate in a staged environment, verify data integrity before cutover, and keep rollback snapshots for 30 days post-migration. POPIA-compliant handling is included as standard on all Open Source migrations.
Can we get professional support for open source software?
Yes. Imbertech provides ongoing support contracts covering system updates, security patches, configuration changes, and helpdesk escalation. You get enterprise-grade support without enterprise-grade licensing fees. The savings go back into your business, not into a vendor's licence revenue.
What's the difference between downloading open source yourself vs Imbertech implementing it?
The software is free either way. The difference is the implementation quality and ongoing security posture. A misconfigured Nextcloud or Jitsi server is a liability, not an asset. Imbertech handles hardening, POPIA-compliant configuration, backups, monitoring, and staff training so your investment actually works.
Does open source software receive security updates?
Yes, and often faster than proprietary vendors. Because the code is public, security researchers worldwide find and report vulnerabilities promptly. Projects like Linux, PostgreSQL, and Nextcloud have dedicated security teams and patch release processes. Imbertech's managed service includes automated patch management so you're always current.
POPIA & Compliance
Is open source software POPIA compliant?
The software itself doesn't determine POPIA compliance. The configuration and data handling practices do. Self-hosted open source solutions are often the best path to POPIA compliance because data stays on servers you control, in South Africa. Imbertech configures all migrations with POPIA requirements as standard. Learn more about our Compliance service.
Why is self-hosted software better for POPIA compliance?
POPIA requires you to know where personal information is stored and who has access to it. With SaaS tools like Salesforce or Google Workspace, your data sits on foreign servers under foreign jurisdictions. Self-hosted software puts data on South African infrastructure you own, with access controls you define. That makes it far easier to demonstrate POPIA accountability to the Information Regulator.
What is a POPIA Information Officer?
Every South African organisation that processes personal information must appoint an Information Officer (IO), typically the CEO or a designated senior employee. The IO is responsible for POPIA compliance, must register with the Information Regulator, and is personally accountable for breaches. Imbertech helps you establish the role, document responsibilities, and build the policies and procedures the IO needs.
What are the penalties for POPIA non-compliance?
The Information Regulator can issue fines up to R10 million and/or impose prison sentences of up to 10 years for responsible parties. Beyond regulatory penalties, data breaches require mandatory notification to affected parties. The reputational damage often exceeds the direct fine. Proactive compliance implementation is far cheaper than breach remediation.
Do I need ISO 27001 certification?
ISO 27001 is not legally required in South Africa, but it's increasingly required by enterprise clients, government tenders, and international partners as a condition of doing business. It also provides a structured framework that satisfies most POPIA technical safeguard requirements. Imbertech can assess your current posture and advise whether certification is worth pursuing for your specific market.
What does Imbertech's compliance service include?
Our Compliance service covers POPIA gap analysis, Information Officer setup and registration, policy and procedure documentation, privacy notice drafting, data mapping and processing records, staff awareness training, and ongoing compliance monitoring. We scope each engagement to your organisation's size and risk profile.
Specific Software Replacements
What open source software replaces Microsoft 365?
LibreOffice (documents, spreadsheets, presentations), Nextcloud (file sharing, cloud storage, calendar, contacts), OnlyOffice (collaborative editing), and Roundcube or Sogo for email. Used together, these cover 95% of Microsoft 365 use cases at a fraction of the cost. See pricing comparisons in our Savings Calculator.
What replaces Salesforce?
SuiteCRM is the leading open source Salesforce alternative. Full CRM with leads, opportunities, accounts, contacts, campaigns, and reporting. It's used by thousands of businesses globally and runs on infrastructure you own. Imbertech handles migration of existing Salesforce data and configures custom workflows to match your sales process.
What replaces VMware vSphere after the Broadcom price increases?
Proxmox VE is the leading open source hypervisor replacement. It provides full KVM virtualisation, LXC containers, clustering, live migration, high availability, and a full web UI. Zero licensing cost. Many South African businesses are migrating to Proxmox after Broadcom's acquisition of VMware resulted in 3-10x price increases. Our Open Source migration team specialises in VMware-to-Proxmox transitions.
What replaces Microsoft SQL Server?
PostgreSQL handles the vast majority of SQL Server workloads, including stored procedures, triggers, full-text search, JSON, partitioning, and replication. For simpler workloads, MariaDB is another strong option. Both are production-ready, ACID-compliant, and actively maintained. Imbertech manages schema migration, query optimisation, and application compatibility testing.
What replaces Zoom for SA businesses?
Jitsi Meet (self-hosted) provides HD video conferencing with screen sharing, recording, and breakout rooms. No per-host or per-participant licensing. For organisations needing POPIA-compliant video communications, self-hosted Jitsi on South African infrastructure is significantly better than any US-based SaaS alternative.
What replaces FortiGate firewall?
pfSense CE and OPNsense are enterprise-grade open source firewalls with stateful packet inspection, VPN (IPsec, OpenVPN, WireGuard), IDS/IPS, traffic shaping, and VLAN support. Both are actively maintained and widely deployed in business environments. Hardware appliances range from small offices to data centre deployments.
What replaces SolarWinds / Datadog for monitoring?
Zabbix combined with Grafana provides full network and infrastructure monitoring: autodiscovery, SNMP polling, alerting, dashboards, and long-term metrics storage. No licensing cost. For log management and SIEM, Wazuh (open source) covers what Datadog's security products do. See our Cybersecurity service for managed monitoring options.
Cybersecurity
What should I do if my business has been hacked?
Isolate affected systems immediately. Disconnect from the network but do not power off (this preserves forensic evidence). Contact Imbertech's incident response team via our contact page. Do not attempt to clean systems yourself; this can destroy evidence needed for insurance claims or legal action. POPIA requires notification to the Information Regulator within a reasonable timeframe if personal information was compromised.
What is EDR and does my business need it?
Endpoint Detection and Response (EDR) is advanced security software that monitors endpoints (laptops, servers, workstations) for malicious behaviour in real time. It goes far beyond traditional antivirus. If your business handles financial data, personal information, or has remote workers, EDR is now considered baseline security. Imbertech deploys Wazuh, an open source EDR platform that matches commercial tools like CrowdStrike at a fraction of the cost. Learn more on our Cybersecurity page.
What is a vulnerability assessment?
A vulnerability assessment systematically scans your IT environment (servers, workstations, network devices, web applications) to identify known security weaknesses before attackers do. Imbertech uses OpenVAS / Greenbone for authenticated internal scanning and delivers a prioritised remediation report with business-risk context, not just a raw CVE list.
How does Wazuh compare to paid EDR like CrowdStrike or SentinelOne?
Wazuh provides comparable threat detection capabilities to commercial EDR platforms: log analysis, file integrity monitoring, vulnerability detection, active response, and SIEM integration. The difference is cost. CrowdStrike runs R500-R1,500 per endpoint per month. Wazuh is open source with no per-agent licensing. For most South African SMEs and mid-market businesses, Wazuh properly configured and monitored delivers equivalent protection at 80-90% lower cost.
What does a penetration test involve?
A penetration test (pentest) simulates a real attacker trying to compromise your systems. Imbertech's process: scoping call to define targets and rules of engagement, reconnaissance, vulnerability identification, controlled exploitation, evidence collection, and a detailed report with findings ranked by business impact plus remediation guidance. We offer network, web application, and social engineering assessments. Contact us for a scoping conversation.
What is digital forensics?
Digital forensics is the process of preserving, acquiring, and analysing electronic evidence. Typically after an incident, data breach, employee misconduct investigation, or legal dispute. Imbertech's Forensics service follows chain-of-custody procedures admissible in South African courts. We handle disk imaging, memory analysis, email forensics, log analysis, and expert witness reporting.
Artificial Intelligence
What is RAG and why should I care?
RAG stands for Retrieval-Augmented Generation. In plain terms: instead of an AI guessing at answers, it searches your actual documents first and answers based on what it finds. Your policies, manuals, contracts, knowledge base - all searchable in natural language. Staff ask a question, get the right answer with a link to the source document. No hallucinations. No outdated information. Learn more on our AI page.
Can AI run on our own servers without sending data to OpenAI?
Yes. We deploy private LLMs using Ollama, vLLM, or cloud instances you control. Your data never leaves your network. This is especially important for businesses handling sensitive information - financial data, medical records, legal documents, or anything covered by POPIA. Full AI capability with zero data leakage.
We tried a chatbot and nobody uses it. What went wrong?
Probably one of three things: it was trained on generic data (not yours), it hallucinated answers and lost trust, or it wasn't integrated into existing workflows. A chatbot that sits on your website answering generic questions is a novelty. A chatbot trained on your actual knowledge base, embedded in your support system, and connected to your ticketing - that's a tool people use because it saves them time.
How much does AI integration cost?
It depends entirely on what you're automating. A RAG pipeline over your document library might be R25-50K setup with R2-3K/month hosting. An AI agent that automates a multi-step workflow could be R50-100K depending on complexity. We always start with a free assessment and proof of concept so you see real results before committing to a full build. Get a free AI readiness assessment.
What's the difference between an AI chatbot and an AI agent?
A chatbot answers questions. An agent does work. A chatbot tells you what's in an email. An agent reads the email, extracts the data, updates your CRM, generates a response, and flags exceptions for human review. Agents execute multi-step tasks autonomously. We build both, but the real ROI is in agents.
Websites & Web Development
Why not just use WordPress or Wix?
You can. But here's what happens: WordPress needs constant plugin updates, gets hacked regularly if not maintained, and loads slowly without expensive hosting. Wix locks you into their platform - you can't export your site. Both are fine for a personal blog. For a business that needs performance, security, and the ability to grow, custom code on modern frameworks (React, Next.js) is a better investment. You own everything and nobody can raise your prices.
How much does a website cost?
A landing page or marketing site: R15-30K. A full company website with multiple pages, contact forms, and SEO: R30-60K. A web application (customer portal, dashboard, booking system): R50-150K depending on complexity. E-commerce: R40-100K depending on product count and integrations. We quote per project, not per hour. You know the cost before we start.
Do you build e-commerce stores?
Yes. Self-hosted stores using Medusa, Saleor, or WooCommerce. Full product management, inventory sync, payment gateways (Payfast, Peach, Stripe), and order management. The difference from Shopify: no monthly platform fee, no percentage per transaction, full customisation, and you own the codebase. Your margins stay yours.
Will you maintain the site after launch?
Yes. We offer monthly maintenance plans covering hosting, SSL certificates, uptime monitoring, backups, security patches, performance tuning, and content updates. We don't build it and disappear. Most of our clients stay on a maintenance plan because it's cheaper than fixing things after they break.
Can you migrate our existing website?
Yes. WordPress, Wix, Squarespace, whatever you're on. Full content migration, SEO preservation (redirects, meta data, sitemaps), domain transfer, and email continuity. Zero downtime if we plan it properly. Your Google rankings carry over. Get a free website audit.
IT Vetting & Recruitment
How is technical vetting different from a normal interview?
A normal interview tests whether someone can talk about technology. Technical vetting tests whether they can actually use it. We run live coding challenges, infrastructure troubleshooting scenarios, and security assessments using real-world problems. The candidate who interviews brilliantly but can't debug a DNS issue under pressure - we catch that. Learn more about our vetting process.
What roles can you vet?
Software developers (frontend, backend, full-stack, mobile), cybersecurity engineers, IT operations/infrastructure, cloud engineers, DevOps, data engineers, and technical leads. Every assessment is tailored to the specific role, seniority level, and tech stack you're hiring for. We don't use generic tests.
How long does a vetting assessment take?
The candidate assessment itself takes 2-4 hours depending on the role complexity. You get the detailed report within 48 hours. The full process from brief to report is typically 1 week. For urgent hires, we can expedite to 3 business days.
What do we get in the report?
A detailed skills matrix with scoring across all assessed areas. Code samples and review notes (for dev roles). Specific strengths and gaps identified. Training recommendations for areas that need development. Our honest assessment of seniority level vs what was claimed. Screenshots and evidence for every finding. Enough information to make a confident hiring decision.
Can you sit in on our interviews?
Yes. We provide technical interview support where we join your interviews (in person or remote) and handle the technical questioning. We know what to probe, what to skip, and how to tell the difference between rehearsed answers and genuine experience. Your HR team handles the culture fit. We handle the technical validation.
Working with Imbertech
Where is Imbertech based?
Imbertech is based in Johannesburg, South Africa, and serves clients nationally and internationally.
Do you work remotely or only in Johannesburg?
Both. Most of our work (migrations, security assessments, compliance engagements, monitoring setup) is performed remotely. We travel to client sites in Johannesburg, Pretoria, and across Gauteng for hands-on infrastructure work, physical security assessments, and on-site training. For clients in Cape Town, Durban, and elsewhere in South Africa, remote delivery is the default with site visits scheduled when required.
What industries do you work with?
Professional services (legal, accounting, consulting), financial services, healthcare, logistics, manufacturing, retail, government, and technology companies. Any South African business that pays for software licences and wants to reduce costs without sacrificing capability is a fit. We've worked with teams from 5 to 500 users.
How quickly do you respond to emergencies?
For clients on a managed service or retainer, initial response to P1 (critical) incidents is within 2 hours, 24/7. For new clients contacting us after an incident, we aim to respond within 4 business hours and begin remote triage the same day where possible. Contact us directly for urgent situations.
How are services priced?
We charge per project phase, not per hour. Here's why: hourly billing rewards slow work and punishes efficiency. If we solve your problem in two hours instead of ten, you should pay less, not more. Every project is broken into phases. You pay for Phase 1, we deliver it. Once you're happy, you pay for Phase 2. If scope changes, we re-quote before moving forward. Managed services like monitoring and support are monthly retainers scaled to your environment. You're never locked into the full cost upfront. Request a free cost savings audit and we'll give you concrete numbers.
Process, Costs & Change Management
What costs should I expect beyond the quoted project price?
We quote all-in where possible. Typical extras to budget for: hosting (R500-R3,000/month for a self-hosted server), a support retainer if you want ongoing help (scoped to your size), and staff training time. We list these upfront in every proposal. No surprise invoices after go-live.
What happens if the migration fails or we need to roll back?
We run new systems in parallel with your existing setup until you're confident in the switch. Full snapshots are taken before every cutover, and we maintain rollback capability for 30 days post-migration. If something doesn't work, we roll back and fix it. You're never stuck.
How do you handle staff resistance to new software?
It's the most common risk in any migration and we plan for it. We use phased rollouts (start with one team, not the whole company), identify champion users who train their peers, and run hands-on training sessions using your actual data and workflows. Not generic demos. Adoption is part of the project scope, not an afterthought.
Are we locked into Imbertech after migration?
No. Open source software has no vendor lock-in by design. The code is free and the data is yours. We provide full documentation, admin credentials, and knowledge transfer. If you want to bring IT in-house later or switch providers, you can. We'd rather earn your ongoing business than trap you into it.
How long until the migration pays for itself?
Most open source migrations pay for themselves within 3-6 months through eliminated licence fees alone. Use our Software Savings Calculator to see the numbers for your specific stack. Automation projects vary more, typically 6-12 months depending on the complexity of what's being automated.
What size businesses do you work with?
Our sweet spot is 5-200 users. That's where the savings are biggest relative to cost and where a single consultancy can genuinely know your business. We're honest about our limits. If you need 24/7 on-site support for 500+ seats, a larger MSP is a better fit. We'll tell you that upfront.
Do your team members hold security certifications?
We lead with tool expertise and methodology rather than certification letters. We deploy and manage Wazuh, OpenVAS, pfSense, and Suricata daily. The same open source tools used by organisations worldwide. Our approach: demonstrate competence through the 200+ product calculator we built, the methodologies we publish on every service page, and the free assessments we offer before you spend a cent.
Why choose a small consultancy over a large IT services company?
You get direct access to the person doing the work, not a junior who was assigned your account last week. Our cost structure is lower (no corporate overheads passed to you), our response time is faster (no ticketing queues), and we're accountable by name. The trade-off: we don't have 50 engineers on standby. For most SA SMEs, that's the right trade-off.
Who maintains systems after implementation?
Three options: we maintain it on a monthly retainer (most common), we train your team to maintain it themselves (full knowledge transfer included), or a mix of both. Every project includes documentation and admin handover regardless. You're never left holding a system nobody understands.
Will my business experience downtime during migration?
We design every migration to avoid business-hours downtime. New systems run in parallel during testing, cutovers happen on weekends or after hours, and we use staged approaches (one department at a time) for larger rollouts. Zero-downtime isn't always possible for every component, but we'll tell you exactly what to expect and when before we start.
Still Have Questions?
Get a free cost savings audit. We'll analyse your current software stack, calculate your potential savings in ZAR, and tell you exactly what migration would look like for your business.