Cybersecurity Services.
From Finding to Fix.

Every service exists because Swiss SMEs need it. Not because we wanted to pad our portfolio.

Security Audits & Compliance

Regulatory pressure is rising: nDSG since September 2023, ISG reporting obligation since April 2025, NIS2 through the EU supply chain. We assess your IT security against these requirements and deliver an action plan that actually gets implemented in your organisation.

Learn more Request an Audit →

CHF 5,000–15,000

Price depends on scope and regulatory environment. Includes report, action plan and 90-day retest.

● Critical 1● High 14● Medium 1128 Backlog

Example from a real engagement (anonymised)

Penetration Testing

Automated scanners find the obvious. We find the rest. Every engagement is manual-first: we map your application logic, identify trust boundaries and exploit them, the way a motivated attacker would.

Learn more Plan a Pentest →

CHF 5,000–15,000

Manual, per OWASP/PTES. Price depends on scope and complexity. Includes report, debriefing and retest.

CISO as a Service

Most SMEs with 50 to 250 employees don't need a full-time CISO, but someone to coordinate security strategy, board reporting and incident response. From two days per month.

Learn more View CISO Model →

CHF 2,500–5,000/month

From two days per month. Price depends on company size and scope. Cancellable monthly.

CISO Assistant: Analytics Summary mit Controls, Compliance und Risk

CISO Assistant GRC platform (demo data)

SIEM & Cloud Security

Open-source SIEM on Swiss infrastructure. Your logs stay in the country, your alerts reach you directly. Full control over every layer, no vendor lock-in.

Learn more Evaluate SIEM →

Wazuh SIEM: Threat Hunting Dashboard mit 378 Alerts

Wazuh SIEM: open-source, Swiss infrastructure (demo data)

Attack Simulations & Training

Most successful attacks start with people, not technology. We conduct realistic attack simulations that expose human vulnerabilities, and train the gaps.

Learn more Plan simulation →

Methodology

Four Phases. Full Clarity.

Every engagement follows the same methodology. From scoping to retest.

⌕

Scope

Define the attack surface, capture compliance requirements, establish rules of engagement.

nDSG | NIS2 | ISG

⚠

Test

Penetration tests, code audits, architecture reviews. Every finding manually verified and reproducibly documented.

OWASP | PTES | NIST

⚒

Remediate

Prioritised report with reproduction steps, remediation guidance and architecture recommendations.

90-Day Retest

▣

Monitor

SIEM deployment on Swiss infrastructure. Continuous detection and automated alerting.

Swiss DC

Cybersecurity Services.From Finding to Fix.