Security.

We maintain a specialized security practice, from kernel filter drivers to key management. Built by engineers who understand the threat landscape from the inside.

FIPS · KMIP · PKCS OWASP · CWE Fortune 25
Development of security products

Forging resilience through innovative security solutions.

We help customers build security into the product rather than around it, from kernel-level controls to enterprise-grade key management.

01

Kernel components on UNIX and Windows

Profound knowledge of OS internals and the threat landscape, with contributions to Fortune 25 security solutions.

Expertise in
Storage filter drivers Layered file systems for data security Network filter drivers for attack prevention ARM-based processor encryption support
02

End-to-end key management, data discovery and data security

Our engineers contribute to on-prem, cloud, and containerized security solutions. We work with industry standards like FIPS, KMIP, and PKCS.

We excel in
Encryption Key management Data discovery Securing interfaces
Consulting on engineering best practices

Security baked into the SDLC, not bolted on.

Expert consulting for organizations developing and customizing software, or maintaining an online presence. We work alongside your engineering org.

Developer training

Sensitize the people writing the code.

We train developers and test engineers to think about security, so security issues are considered throughout the development life cycle, not patched at the end.

Audit processes

Audit the practice, not just the artifact.

Audit of software development and QA practices, source code handling, bug tracking systems, and vulnerability management.

Process improvement

Tools, due diligence, vendor obligations.

We suggest and implement specific tools to assess and report security quality of in-house software before deployment, plus due diligence and vendor obligations for off-the-shelf and customized software.

Independent security evaluation

Two perspectives. Insider and attacker.

We review the security of SaaS solutions from the perspective of an insider threat as well as a malicious attacker from the outside.

01

Deployment security

Assess the security of deployed servers, update and patching of software on the servers, and instantiate a regular scan of deployed servers for ongoing information security status auditing.

02

Penetration testing

Specific attacks of well-known vectors such as OWASP top 10 and CWE top 25, using appropriate tools and ad-hoc techniques.

03

Software audit

Software source code audit to identify insecure practices and potential vulnerabilities for open source and client-developed software. Software security audit for software deployed where the source code is not available.

04

Access control and separation

Separation of privileges for insider access to various server components and the data therein, separation of user data, assessing the secure storage of secrets across user groups, and architecture and deployment changes to ensure data access control.

What we’ve shipped

Selected work in security.

View all
Next

Have a security surface worth hardening?

Let’s talk See more case studies

We work with engineering leaders shipping software that has to hold up under attack, not just under audit.

Pune · Bangalore · Bay Area