Cybersecurity

Our security work is done by engineers who run the platforms in production, not auditors recommending tools from a slide. We've built and operated firewall fleets, SIEM/XDR stacks, MFA rollouts, and vulnerability management programs at scale.

Where we operate

• Next-generation firewall fleet engineering -- high availability, segmentation, VPN overlays, and policy review across multi-vendor estates.
• Vulnerability management programs -- scanner deployment, agent rollouts, scan policy design, and coverage-gap reporting integrated with inventory tooling.
• SIEM and XDR detection engineering -- detections, scheduled alerts, syslog ingest pipelines, and dashboards on-call actually opens.
• Endpoint security administration -- exclusion design, IOC investigation, and integration with the rest of the security stack.
• MFA and SSO rollouts -- gating VPN, admin access, and IdP-fronted application chains.
• Identity hardening -- LDAPS, certificate trust chains, service-account least privilege, and SSO integration.
• TLS and cryptography audits across the asset estate, with remediation plans the network team can execute.