01 · SOC
Security monitoring
A staffed center collects telemetry from your network, endpoints, and cloud, and reads it as one timeline. You receive triaged alerts and a monthly report written in plain language.
Discuss thisWhat we do
Security operations, run for you
Six core services and a set of add-on modules. Most clients start with monitoring and grow into the rest as their estate and obligations change. Nothing here is sold as a bundle you cannot understand.
02 · Readiness
Vulnerability review
Scheduled testing of applications and the network perimeter. Findings are ranked by exploitability and reachability, not by raw scanner severity, so you fix what matters first.
Discuss this03 · Response
Incident handling
A written response plan, a named contact, and rehearsed steps. When an event is confirmed we contain, advise, and document — then run a review so the same gap does not reopen.
Discuss this04 · Cloud
Cloud workload defense
Configuration review and runtime protection for AWS, Azure, and Google Cloud. We catch the open bucket and the over-broad role before someone else does.
Discuss this05 · People
Awareness training
Short, practical sessions in Portuguese for your staff. We focus on the handful of habits that stop most intrusions before any tool has to act.
Discuss this06 · Governance
LGPD advisory
Mapping where personal data lives, what protects it, and what you would report after a breach under Brazilian law. Built so an auditor can follow the trail.
Discuss thisHow an engagement runs
From first call to live monitoring in weeks, not quarters — and you see every step before it happens.
Phase 01
Discovery
We map what you run, who has access, and what would hurt most if it failed. You get a written picture of your current exposure.
Phase 02
Connection
We connect telemetry from your existing tools and tune detection to how your systems normally behave, reducing noise before go-live.
Phase 03
Operation
Monitoring goes active around the clock. You receive triaged alerts, a named analyst, and a monthly report you can take to your board.
Phase 04
Review
Each quarter we sit down, look at what changed, and adjust coverage. Security is a moving target; the plan moves with it.
Add-on modules
Attach what you need
Optional capabilities you can layer onto a monitoring engagement. We review each one with you before it goes live and remove it when it stops earning its place.
AD
Active directory auditing
Tracks privileged access and unusual group changes.DLP
Data-loss monitoring
Flags sensitive files leaving approved boundaries.EDR
Endpoint detection
Per-device behaviour analysis and isolation on demand.EML
Email threat filtering
Inbound message inspection against impersonation.VPN
Remote access review
Hardening of the gateways your remote staff use.BAK
Recovery readiness
Verification that your backups restore when needed.Pricing
How engagements are priced
We price by the size of your estate and the hours of coverage you need — not by a per-seat list. After discovery you receive a written scope and a fixed monthly figure, so there are no surprises on the invoice.
Monitoring — by estate size
Priced on the number of endpoints, cloud accounts, and network segments under watch. Most mid-sized companies land below the cost of two in-house security salaries, with full nights-and-weekends coverage included.
Project work — fixed scope
Vulnerability reviews and cloud assessments are quoted as fixed-scope projects with a defined deliverable and timeline. You see the figure before any work begins.
Add-on modules — monthly
Each module carries its own monthly figure and can be added or removed as your needs change. We will tell you when one is no longer earning its place.
Not sure where to start?
Most clients begin with a short assessment. It costs little, commits you to nothing, and tells you exactly which service to start with.