A private cybersecurity, governance and privacy practice run by a working CISO — not a brochure. Two decades of building, breaking and defending systems, distilled into a small set of services for organizations that can't afford to get security wrong.
What we actually do. Every line below is backed by real engagements — security leadership, regulated environments, and live incidents handled under pressure.
CISO-as-a-Service: security programs, policies and annual plans built around your real risk profile, with senior ownership rather than a checklist.
Risk management, business impact analysis and regulatory alignment. ISO 27001 / 27035 / 22301 — taken all the way to certification.
Real-time handling of cyber incidents and crises: investigation, forensics, coordination and remediation — led personally, not delegated.
Data protection governance and DPO services under both Israeli privacy law and the GDPR, with direct experience working alongside national privacy authorities.
Security-by-design across servers, networks and applications — bridging R&D, DevOps and operations instead of bolting security on at the end.
Security for connected devices, control systems and embedded platforms — from the perspective of someone who has built them, not just audited them.
Technology advisory grounded in a CTO background — architecture, modernization and digital transformation guided by security from day one.
Bringing AI into the organization without opening new attack surface — applied use, governance and the risks most teams discover too late.
Speaking on cybersecurity, risk and the reality of the CISO seat — for teams, leadership and professional audiences. Technical when it needs to be.
The letters behind the work — held, not borrowed. Tailored security still has to stand up to standards.
CISSP and CISM are independently verifiable on Credly.
Behind the practice sits applied research — tools and systems we develop for the security, automation and connected-device problems we keep running into. Some becomes client work. Some stays in the lab a while longer.
Real-time telemetry and monitoring for IoT fleets — eyes on devices that usually run unwatched.
High-availability system design with anomaly detection tuned to each environment, not a generic baseline.
A management portal for sensitive medical registries — built where privacy and uptime both matter.
Automation that analyzes existing portals and CRM systems and rebuilds them, tailored to the organization.
Location and long-range telemetry over GPS and LoRa — tracking and sensing where conventional networks don't reach.
Pinpointing the origin of a sound from sensor arrays — turning raw audio into a position on a map.
A series of cyber puzzles is on the way — for the curious, the stubborn, and anyone who reads the things most people scroll past. Solve them, and you'll find your way in.
Great technology and sharp cyber, measured to your needs and cut to fit your organization — never off-the-rack. We take on a small number of clients at a time; tell us what you're protecting.