FORGE One-time
Custom build sprint · One-time Forge
Four-week custom development sprint.
Fixed-scope custom build on a Web Application, Salesforce, or Zoho. Engineering-led, MSP-style — we do not resell licenses or take vendor commissions.
Outcome You ship code you own, not config you cannot maintain.
- Spec workshop (90 min, recorded)
- Three engineering weeks against a written scope
- Code reviewed against the same security bar as Probe
- Production-ready deploy + handoff doc
- 30-day post-ship bug retainer
CONDUIT One-time
MCP audit · One-time Conduit
Universal-adapter audit for AI agent systems.
Map every tool an agent can reach. Scope per role. Prove the boundary holds under prompt-injection and adversarial-tool attacks. Built for MCP / A2A agent stacks.
Outcome You sleep before the auditor asks the question.
- Tool-surface enumeration across all MCP servers
- Per-agent permission scoping recommendations
- Prompt-injection adversarial pass
- Replay audit of last 30 days of agent trajectories
- Hardening playbook tailored to your roster
LATTICE One-time
Audit · Fixed-scope Lattice
Snowflake + Sigma data-pipeline audit.
RBAC review, lineage validation, and data-exposure mapping across your warehouse and BI layer. Find what your dashboards reveal — before a curious analyst (or attacker) does.
Outcome You know what your dashboards reveal — before it leaks.
- Snowflake role hierarchy and grant review
- Sigma workspace + dataset governance audit
- Lineage tracing for sensitive joins
- Anomaly hunt across query history
- Hardening recommendations with priority scoring
PROBE One-time
Pentest · One-time Probe
Two-week offensive security pentest.
A focused offensive engagement against a single application, API, or agent system. We attack the way an outsider would, then ship the report alongside the engineer who would write the patches.
Outcome You ship the patches alongside us, not after we leave.
- Threat-model briefing (90 min, recorded)
- Active testing window — 8 working days
- Findings ranked CVSS + business-impact
- Patch-ready remediation guidance
- Re-test of fixes within 30 days
SENTINEL Subscription
Subscription · Monthly retainer Sentinel
Continuous vulnerability monitoring. SOC 2 aligned.
Automated control validation that runs against your stack on every deploy — not on an annual schedule. Regressions caught the day they ship, with the same engineers on call to fix them.
Outcome You stop accumulating evidence debt between audits.
- Continuous SOC 2 / ISO 27001 control validation
- Daily vulnerability scans across apps, APIs, agents
- Slack / Teams alert routing
- Quarterly evidence package for auditors
- Monthly executive summary
LEDGER Build
Build · 90-day delivery Ledger
Custom SIEM with automated regulatory reporting.
A native SIEM built around your stack — not a bolt-on fix. Auto-emits SOC 2, ISO 27001, GDPR, and CMMC 2.0 reports straight from your event stream. Yours to keep, ours to support.
Outcome You hand auditors evidence on demand, not on deadline.
- Architecture against your data sources (cloud + on-prem)
- Detection ruleset tailored to your threat model
- Automated control validation + evidence collection
- Dashboards for SOC + executive view
- 90-day handoff with paired engineering
ATLAS Subscription
Fractional CISO · Monthly Atlas Retainer
Security posture leadership without the full-time hire.
A senior CISO sits in your room when it matters — board reviews, vendor diligence, audit prep, incident response. Coverage that scales from "we have one" to "we have a function."
Outcome You have a CISO in the room when the board asks.
- Quarterly board-ready posture review
- Vendor + acquisition security diligence
- Audit prep for SOC 2 / ISO 27001 / CMMC 2.0
- Incident-response coordination on call
- Direct line into the engineering + remediation team
