Hire Us
Security expertise that speaks both engineering and business
We are a team of cybersecurity professionals with deep technical roots and a genuine ability to communicate across the boundary between complex engineering and business outcomes. Whether you need hands-on security architecture, a code-level assessment, or someone to help your leadership team understand real risk — we bridge both worlds.
What We Do
Our expertise spans several interconnected areas of cybersecurity — all grounded in research and shaped by real-world delivery.
Identity & Access Management. From architecture design to hands-on implementation and ecosystem security reviews — covering authentication, federation, authorization, secrets management, and standards such as OpenID Connect, OAuth 2.0, FAPI, and WebAuthn/FIDO2.
Application Security. In-depth assessments of web, API, and mobile applications. We go beyond automated tooling — our background includes offensive security research on complex, large-scale systems and academic work on real-world vulnerability classes.
AI Security Research. We work at the intersection of artificial intelligence and cybersecurity — assessing the security risks of AI-integrated products, designing AI-based threat detection systems, and researching how AI is used by attackers. Our work covers areas such as conversational AI security, voice fraud, LLM abuse, and adversarial threat intelligence. This work has been published at peer-reviewed venues and recognised by national intelligence and industry bodies.
Security Research & Advisory. Our research has been published at leading academic venues including Usenix, IEEE DevSec, and PETS. We help organisations evaluate emerging technologies, understand privacy and security trade-offs, and turn research-grade findings into decisions that engineering teams can act on.
Security Education & Training. We have designed and delivered accredited cybersecurity courses at university and national workforce levels. We offer custom training for engineering and security teams — from IAM fundamentals to hands-on labs, DevSecOps practices, and AI security awareness.
Why Work With Us
Deep technical credibility. Our expertise includes published research at leading venues such as Usenix, IEEE DevSec, and PETS, covering real vulnerabilities in FIDO2, WebAuthn, and authentication systems in production use.
Recognized in the field. We have been awarded the OpenID Foundation Kim Cameron Award for outstanding contributions to the identity community, and have spoken at major industry events including Identiverse and OWASP.
Vulnerability discovery at the source. We have found and responsibly disclosed critical vulnerabilities in widely used browser infrastructure — earning recognition from major technology vendors.
Business translation, not just technical output. We understand that findings need to drive decisions — not just fill a report. We tailor our communication to technical teams and leadership alike, making security legible at every level.
Experience across the full delivery spectrum. From early-stage startups to large enterprises and government-adjacent bodies, we have operated in environments of every complexity — delivering results under regulatory, commercial, and research constraints.
Academic foundation, practical focus. Our PhD-level research on privacy-enhancing technologies for identity and access management ensures that our recommendations are grounded in both theory and hard-won production experience.
Let’s Talk
Not sure if your problem is in our wheelhouse? Start with a free 30-minute exploratory call — no commitment, no pitch. Just an honest conversation about your security challenges.