We are a think tank of cybersecurity consultants who understand the mechanics and business value of risk reduction.
We deliver objectively valuable insight through quantitative risk analysis, assessments and penetration testing.
To live out the golden rule in every interaction
Cybersecurity is, at the end of the day, about business risk reduction. We work to make all of our communication fit the audience and avoid ‘geek speak’ wherever possible.
From ‘proving’ the exploits/issues identified in a penetration test, to grounding our recommendations in referenceable and reputable sources, we steer away from offering unsupported ‘opinions’.
Our deliverables are not artificially tied to more services. Each deliverable contains all the information needed to address the issue without needing to pay us for more information.
We offer a 100% unconditional guarantee on all of our professional services. If, for any reason, you are not satisfied with the service we deliver, let us know and if we can’t make it right, we’ll mark ‘PAID’ on our last invoice.
Objective – One of our core behaviors is to provide insight that goes beyond ‘expert opinion’. While expert opinion is helpful, being able to reference statistical data, standards or repeatable penetration test results is more powerful.
Objective Value – Our customers have the final say in whether or not our services are valuable. Unless you agree that we’ve provided objectively valuable insight, you don’t pay. It’s written into our professional services agreement.