Skip to content

Case studies

Cybersecurity projects for critical infrastructure, financial services, and manufacturing organizations.

Banking & Finance

CS.101

Secure Retail Banking Migration to AWS Cloud

Supporting a retail bank in secure migration to AWS cloud - risk analysis, data classification, and KNF regulatory compliance verification.

Systemically important retail bank

CS.102

AI Deployment Risk and Compliance Analysis in Banking

Comprehensive risk analysis of AI solution deployment (Microsoft 365 Copilot, Azure AI, AWS AI) at a systemically important bank.

Nationwide systemically important bank

CS.103

Business Continuity Recovery Capability Assessment

IT readiness assessment for a retail chain's disaster recovery - workshops, procedure audit, and operational resilience improvement plan.

Rapidly growing retail chain, one of the most recognized brands in its sector in Poland

45%

CS.105

Identity and Access Management System Testing

Penetration testing and configuration analysis of Active Directory, ADFS, and PKI at a critical infrastructure organization.

Critical infrastructure organization of strategic importance to national security

CS.106

Adversary Emulation Security Testing

APT attack emulation against a bank in critical infrastructure - 7 scenarios, SOC collaboration, and 2-day training workshops.

Bank in the critical infrastructure sector in Poland

7

CS.111

NIS2 Compliance Analysis for a Critical Infrastructure Operator

How we helped a key service operator identify NIS2 compliance gaps and prepare a practical implementation roadmap - with minimal impact on the client's team.

Leading key service operator in Poland of strategic importance to critical infrastructure

6

CS.112

Cyber Risk Management in Strategic Investments

Supporting the general contractor of a U.S. military base construction in Europe in meeting CMMC 2.0 and RMF requirements for building automation systems.

General contractor of a U.S. military base construction in Europe (U.S. DoD, USACE, NAVFAC contract)

0

CS.119

Cybersecurity Program Management

Security and business continuity policy update as part of a cybersecurity management program.

Large organization

Energy

CS.104

Advanced Red Team Testing in the Energy Sector

Multi-vector attack simulation against an energy company - from OSINT and social engineering to privilege escalation and Purple Team workshops.

Critical infrastructure energy company

3-5

CS.107

Comprehensive Approach to AMI System Security

Supporting an energy operator in AMI security management - from risk analysis to device reverse engineering.

Energy distribution system operator in Poland

CS.109

CSIRE System API Security Testing

Comprehensive security testing of the Central Energy Market Information System - penetration, configuration, and production verification.

Leading entity in the Polish energy sector

7

CS.110

IT and OT Device Security Testing

Device security testing across 3 industrial sectors - 50+ reported vulnerabilities, 17 official CVEs.

IT/OT device manufacturers and operators in the mining, energy, and industrial automation sectors

17

CS.113

Comprehensive OT Technology Network Security Audit

Multi-phase TAN audit of an energy operator - from IT/OT segmentation testing to physical access attempts and retesting within 90 days.

Critical energy infrastructure operator

7

CS.114

Physical Security Audit of a Transmission Operator's OT

Physical security assessment of transmission facilities in the context of hybrid threats - at the intersection of physical security and ICS/SCADA systems.

Leading national transmission system operator (thousands of km of pipelines, hundreds of facilities - compressor stations, valve stations)

CS.115

Enhancing OT and IT Incident Response

Integration of IT and OT incident response procedures for an energy operator - from process review to tabletop exercises and ready-to-use playbooks.

Energy infrastructure operator

CS.117

OT Security of Renewable Energy Farms

OT security assessment of distributed wind and photovoltaic farm infrastructure.

Wind and photovoltaic farm operator

CS.118

Preparing a SCADA System for IEC 62443 Certification

Supporting a SCADA manufacturer in preparing for IEC 62443 certification - development processes (4-1) and component requirements (4-2).

SCADA system manufacturer

2

CS.120

Polish AMI Device Security Standard and Certification

Development of the Polish AMI device security standard and preparation of manufacturer products for certification.

AMI device manufacturer

Manufacturing

CS.108

OT Installation Security Management

OT asset inventory, vulnerability management, and architecture alignment with IEC 62443 at an industrial manufacturing company.

Industrial manufacturing company

CS.116

IEC 62443 Audit in Chemical Manufacturing

OT security audit per IEC 62443 at a chemical plant - conducted without a single second of production downtime.

Chemical manufacturing company

0

We'll discuss scope, methodology, and timeline.

Book a consultation

Free consultation, no strings attached.