About Us

Our company specialises in delivering cutting-edge cyber security services, built on the extensive expertise and in-depth knowledge of our professional team. We are experts in providing comprehensive security solutions tailored to organisations of all sizes, from small businesses to large corporations with tens of thousands of employees and devices. Our experience spans a wide range of critical industries, including critical infrastructure, healthcare, banking, and tourism.

The acronym TBD (To Be Done) underscores our belief that cyber security is an ongoing endeavour—never truly complete, but a continuous process of improvement and adaptation. This philosophy reflects our commitment to ensuring that security measures remain current and aligned with the latest threats and technological advancements.

For us, this approach translates into more than just regular updates and innovations to our services and solutions. It also embodies our dedication to the continuous education and professional growth of our experts, equipping them to tackle the most pressing challenges in cyber security. Our commitment to TBD signifies our pledge to excellence, perpetual improvement, and delivering top-tier protection for our clients.

Who we are

Our belief

Cybersecurity is accessible to everyone, ensuring individuals and businesses of all sizes and industries can navigate the digital world with confidence and robust protection.

Our Vision

Securing Tomorrow, Today.

Our Goal

To become a trusted partner for every company by providing reliable cybersecurity hygiene and comprehensive services.

Employees

We value our employees as partners. We believe that satisfied employees lead to a thriving, successful company.

Client

We prioritise delivering the best solutions for our clients, regardless of our own gain. 'Impossible' is not in our vocabulary.

Open company, no BS

Encouraging transparency, honesty, and directness in communication. Acting with integrity and honesty in all business dealings.

Our values

Build with heart and balance

Creating services thoughtfully, ensuring a balance between quality, user needs, well-being and fun.

We care

Taking active steps to support the community.

Expertise

Vulnerability management and prioritisation, Security consultant, Network management and monitoring, Project management, Security awareness training, Linux, Microsoft, Qualys, XM Cyber, AlgoSec, Tufin, Firemon, Logmanager, Skybox Security, Python, General programming, Penetration testing, Cybersecurity manager, Audits, Impact and risk assessments, Creation and review of security documentation, Information security management system.

Certifications

Certified Information Systems Auditor (CISA), ISMS Lead Auditor, BPMN 2.0 Foundation, ISO/IEC 27001:2022 Lead Auditor, CompTIA Security+, Certifikovany auditor kybernetickej bezpecnosti, FIRST CVSS v4.0, NUKIB – Kurz pro manažery kybernetické bezpečnosti, eCPPT (eLearnSecurity Certified Penetration Tester), eWPT (eLearn Security Web Application Penetration Tester), PNPT (Practical Network Penetration Tester), CSIL-COA (Certified OSINT Analyst), eJPT (eLearnSecurity Junior Penetration Tester), CRT-ID (Certified Red Team Infra Developer), MCRTA (Multi-Cloud Red Teaming Analyst), DANTE (HackTheBox), APISEC (API Penetration Testing), OSWP (Offensive Security)

Vendor Certifications

Qualys certifications of all modules, XM Cyber: Certified User & Exposure Management Expert, AlgoSec System Administration, Tufin TCSE3, Firemon 201 SE, Skybox SCPS+, Palo Alto (PSE), Cisco CCNA, Microsoft MS-900 and Microsoft SC-900, Skybox SCPS+, Tenable, Zabbix ZCU and ZCS, Elasticsearch, Logmanager System Expert, 1Password, KnowBe4

Our presence

Corporate Insurance

Professional indemnity insurance for damages caused in connection with the provision of IT services: €2 million

ČSOB Pojišťovna, a. s.

Significant Experience

Lead Consultants and Experts in Vulnerability Management
- Providing services to various clients, including leading technology companies, critical infrastructure, and airports in the Czech Republic, United Kingdom, the Netherlands, France, Denmark, and the UAE.
- Expertise in working with Qualys, Tenable, and Rapid7 platforms.
- Implementation and management of integrations between Information Security Management Systems (ISMS) and other tools, including ticketing systems.
Firewall Management and Monitoring Experts
- Supporting clients in the technology sector in the Czech Republic, United Kingdom, and United Arab Emirates.
- Comprehensive firewall management with monitoring and monitoring of internal infrastructure.
- Ensuring continuous system availability, early detection of issues, and automated notifications in case of anomalies.
- Integration with ISMS and automated ticket creation for relevant teams to ensure rapid incident resolution.
Skybox Consulting and Support:
- Lead technical consultants for a German research and development company.
- Consultants and engineers for UK banks.
- Oversight of the primary Skybox engineer on a project for a Dutch global financial institution.
Cyber Security Awareness Training and Testing
- Delivering foundational and advanced cyber security hygiene training to strengthen organizational resilience against threats.
- Conducting phishing and smishing simulations, including user testing and results evaluation.
- Supporting processes for effective incident reporting and enabling rapid threat response.
Service and Project Leadership: Overseeing services and projects such as vulnerability management, firewall monitoring, and training.
Technology Integration: Implementing advanced technologies into operational workflows.
Microsoft 365 Security Specialists: Ensuring secure implementation and use of the Microsoft 365 suite.
Penetration Testing Expertise:
Providing penetration testing services for high-profile institutions and projects, including:
- Czech Statistical and Telecommunication Office
- NAKIT
- Ministries (Environment, Culture, Interior)
- Critical projects such as Smart Quarantine, COVID vaccination registration, and the Czech presidential election system
- Rescue systems, 1st Certification Authority, and municipalities in Prague
- Toyota, České dráhy, Zlín Regional Authority, Colsys, Europasta, and many more.
Risk Management and Cyber Security Leadership:
Notable roles in risk management and cyber security leadership include:
- Raiffeisenbank: Consulting on IT risk management in compliance with ENB, NÚKIB, RBI, and ISO standards, including policy, template, and process design.
- Senate Office: Full responsibility for managing cyber security and implementing an Information Security Management System (ISMS).
- NAKIT – CMS 2.5 Project: Ensuring cyber security for the creation of critical information infrastructure.
- Other Organisations: ČEPRO, Czech Industrial Health Insurance, Slovak Railways, and more.
Collaboration with MSIC (Moravian-Silesian Innovation Centre)
- Acting as a Cyber Security Expert.
- Delivering expert consultancy and support for regional companies in protecting against cyber threats.
- Cyber Security Kickstart Program – introducing essential security measures, raising employee awareness, and supporting the implementation of long-term data protection strategies.