Kildaris

Service 05

Security you can actually verify.

Detection, response, and evidence. Plus a written statement of what is covered and what is not, because a security program you cannot describe accurately is not one you can rely on.

What the security stack covers

The stack covers five areas: endpoint detection and response, vulnerability management, email security, awareness training with phishing simulation, and a written incident response plan. Every one produces evidence you can show an auditor, an insurer, or a customer who asks.

  • Endpoint detection and response. Behavioral detection on every device, with automated containment that runs continuously.
  • Vulnerability management. Authenticated internal scanning plus external checks against known exploited vulnerabilities, on a monthly cycle.
  • Email security. Anti-phishing, impersonation protection, and safe links, usually through licensing you already own.
  • Awareness and phishing simulation. Regular simulated phishing with training that follows a click, not an annual video nobody finishes.
  • Incident response plan. Written before an incident, naming who calls whom, in what order, with what authority.

What we are honest about

We are not a 24/7 staffed security operations center, and we will not describe ourselves as one. Building a real SOC costs millions to stand up and millions more each year to staff. What we run is automated detection and response operating continuously, with human triage during defined business hours and a named escalation path outside them. That distinction goes in writing in the service agreement.

Why this matters to you. A provider who blurs that line is either overcharging you for coverage they do not have, or setting up a dispute for the day something happens at 2am.

Cyber insurance questionnaires

Most cyber insurance renewals now hinge on a technical questionnaire, and answering it wrongly can void a claim later. MFA coverage, backup immutability, endpoint detection, and privileged access are the questions that carry weight. We help you answer them accurately, and where the honest answer is currently "no," we tell you what it would take to change that.

Where this connects to AI

AI tools widen the blast radius of a permissions problem, which is why AI governance and security are the same conversation now. An over-shared folder used to be a latent risk. With an AI assistant indexing it, it becomes a searchable one.

Questions

Common questions

Do you provide 24/7 security monitoring?

Automated detection and response runs continuously. Human triage happens during defined business hours, with a named escalation path outside them. We state this explicitly in the service agreement instead of implying round-the-clock staffing we do not have.

Can you help with our cyber insurance questionnaire?

Yes. We help you answer it accurately, which matters because an inaccurate answer can affect whether a future claim is paid. Where the honest answer is no, we scope what changing it would take.

How often do you run vulnerability scans?

Monthly authenticated internal scans plus external checks against known exploited vulnerabilities. Findings come with a prioritized remediation plan, not a raw export.

Do you offer phishing simulation?

Yes, with training that triggers when someone clicks, not as an annual compliance exercise. Reporting shows trend over time by department.

What happens if we have an incident?

The incident response plan written during onboarding defines who is called, in what order, and with what authority. Dedicated incident response retainers are contracted separately, and we will tell you plainly what is and is not included.

Next step

Thirty minutes, and you will know where you stand.

No pitch deck. We look at what you are running, tell you what we would do first, and you decide whether that is worth paying for.