Skip to main content
Our work

What it delivers,
in practice.

A selection of our work, from mid-sized organisations to global multinationals. Most of it stays between us and the client.

Detection & responseGlobal industrial multinational · ± 27,000 workplaces

Detection that sees more, for less money.

A global industrial multinational ran a SOC that missed attacks while the SIEM bill climbed. In 12 weeks we built a cost-efficient multi-SIEM architecture that sees more, with the same team.

More coverage, lower cost, the same team
Co-managed Detection & ResponseLarge association · ± 2,200 workplaces

See attacks coming, around the clock.

A large association detected only once something had already broken, with no coverage outside office hours. We brought 24/7 co-managed detection and response on an open-XDR foundation, with senior expertise alongside their team.

24/7 proactive detection, control kept in-house
Security ArchitectureLarge association · ± 2,200 workplaces

From patching to a foundation that moves.

Successive mergers and years of symptom-fixing left an unmanageable, insecure landscape that ground to a halt. We designed a new, secure cloud foundation and lead the transition, with security by design.

A designed, secure foundation; debt coming down
Managed baseline securityLarge association · ± 2,200 workplaces

The basics in order: every attack path covered.

Endpoints unmanaged, email and web unfiltered, no proactive layer. We covered every attack path, endpoint, email, web and cloud access, on a zero-trust architecture, and have managed it ever since.

Every attack path covered, proactive and managed
Endpoint hardening · reviewEuropean institution · Tightly sealed, on-premise

From installed to configured to defend.

At a high-confidentiality European institution the endpoint protection had quietly drifted from best practice. We exposed about 28 findings, prioritised them, and delivered a hardened design, fully on-premise.

Protection locked, enforced and demonstrable
Email security · health checkInternational offshore contractor · 8 domains, millions of messages/month

From catching a lot to stopping the right things.

An international offshore contractor caught millions of messages a month, but not every email layer was sharp and DMARC enforced nothing. We tested all eight domains and every layer, and pointed the way to enforcement.

DMARC enforced, every layer sharp
Web security · zero trustDrinking-water utility (critical infra) · 17-year legacy estate, multiple sites

To a cloud web gateway, without downtime.

A drinking-water utility had run web traffic through an on-premise proxy for 17 years. We lifted it to a cloud secure web gateway with zero trust, phased and without downtime for a vital process, and manage it ever since.

Cloud SWG, zero trust, no downtime
IT assessment · BIAAdvisory and engineering firm · Mid-size, diverse application landscape

One honest answer to: are we on the right track?

At a mid-size engineering firm, business-critical apps went down now and then while the IT supplier fought symptoms. We independently assessed the whole IT estate, with a business impact analysis, and gave the board a decision-ready answer and a roadmap.

Substantiated answer + roadmap, decision-ready

Get started

Curious what this means for your situation?

One 30-minute conversation with a senior who also works in delivery. No pitch, we ask the questions.

Schedule a conversation

30 minutes with a senior, no pitch.

Speak with an architectCall directly088 - 163 23 25