Your Offense and Defense Security Provider

We at UnderDefence are dedicated to supporting organizations around the world in planning, building, managing, and running successful security operations programs, meeting and maintaining compliancy regulations and exceeding organizations abilities to run their businesses securely and confidently.   

UnderDefenses team of talented and professional cyber security experts partner with enterprise-class organizations to provide a full package of Cyber Security engineering services and solutions including Experts, Security Assessments, Compliance audits, Product Advisory Services, Threat and Vulnerability Management, Incident Detection & Response, Network and Security architecture and implementation, and much more.

We don’t just do; we think, innovate, and create new security capabilities to combat tomorrow’s threats today.

 
$5,000+
 
$25 - $49 / hr
 
50 - 249
 Founded
2016
Show all +
Lviv, Ukraine
headquarters
  • UnderDefense
    Heroiv UPA 73 k.38
    Lviv 79014
    Ukraine
other locations
  • UnderDefense
    375 Park Avenue, Suite 2800,
    New York, NY 14607
    United States

Portfolio

Key clients: 

Small and Medium Businesses 

Information Security Vendors

Security Research Centers

MSSPs

Reviews

Sort by

Cybersecurity Policies for Software Company

“They were great communicators and assiduous workers who strived to deliver perfect results.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
Confidential
 
Jan. - May 2018
Project summary: 

UnderDefense developed a robust incident response plan and process playbooks for the AWS environment. They also trained an internal team on their use.

The Reviewer
 
201-500 Employees
 
Ukraine
Mykola Zaika
Head of IT, Symphony Solutions
 
Verified
The Review
Feedback summary: 

The IR plan and playbooks fortified cybersecurity and boosted staff confidence. UnderDefense’s solid communication and meticulous approach fostered a positive engagement.

BACKGROUND

Please describe your company and your position there.

I am the head of IT for a company that provides software engineering, IT, and consultancy services. We have offices in four different countries, with over 500 employees globally.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We hired them to help us with incident analysis, detection, and response. We needed to build an incident response (IR) plan.

What were your goals for this project?

wanted to be ready to fight cyberattacks and detect anomalies in the Amazon b Services environment.

SOLUTION

How did you select this vendor?

received a referral from a close friend.

Describe the project in detail.

UnderDefense guided us through the first steps of risk management. Initially, we collected logs from our Amazon account. Then, their analysts helped us build an IR plan and process policies playbooks. Using common exercises, we could analyze an entire activity, conduct forensics, and analyze logs.

What was the team composition?

We worked with two IR analysts.

RESULTS & FEEDBACK

Can you share any outcomes from the project that demonstrate progress or success?

We had a fruitful collaboration. Thanks to UnderDefense, the people in our company are more aware of the cyberthreats and risks. We are now ready to investigate and respond to cybersecurity incidents.

How effective was the workflow between your team and theirs?

UnderDefense’s engineers communicated effectively with our employees and did a great job of training them. They provided excellent support.

What did you find most impressive about this company?

They were great communicators and assiduous workers who strived to deliver perfect results.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 5.0 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer

Incident Response Training Program for IT Company

"Our clients were happy with the content and said it provided good insights."

Quality: 
5.0
Schedule: 
5.0
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
Less than $10,000
 
Mar. - Apr. 2018
Project summary: 

UnderDefense wrote the script and created a training program for how to detect and respond to information security incidents.

The Reviewer
 
11-50 Employees
 
Malta
Trevor Axiak
Director, Kyte
 
Verified
The Review
Feedback summary: 

The training program has received positive feedback from key stakeholders. UnderDefense kept the project moving through efficient communication. On time production of high-quality deliverables was the hallmark of their work.

BACKGROUND

Please describe your company and your position there.

I’m director and founder of Kyte. We conduct IT audits within the gaming, financial technologies, and cryptocurrency industries.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We needed help developing an incident response training program for our staff and clients.

What were your goals for this project?

We needed a partner with the expertise and knowledge to train our staff and clients in Information Security practices, especially detecting and responding to incidents.

SOLUTION

How did you select this vendor?

UnderDefense was introduced to us by a partner. They came highly recommended.

Describe the project in detail.

They created a presentation that could be converted to an e-learning unit. They also provided the entire script of the training program.

What was the team composition?

Two security engineers were assigned to the project.

RESULTS & FEEDBACK

Can you share any outcomes from the project that demonstrate progress or success?

The incident response training has been successfully included in our suite of training programs on our e-learning platform. Clients were happy with the content and said it provided good insights.

How effective was the workflow between your team and theirs?

Communication was efficient. We typically relied on email to stay in touch.

What did you find most impressive about this company?

They delivered the exact resources that were required for the project and delivered them on time.

Are there any areas for improvement?

No. The project was straight forward, and the deliverable was received as expected.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 5.0 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer
    I’ve already recommended them to clients.

Staff Augmentation for Cybersecurity Firm

“They went above and beyond what was asked and showed strong ownership of the work we gave to them.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
$50,000 to $199,999
 
May 2017 - Ongoing
Project summary: 

UnderDefense provides staff augmentation for a number of development projects (e.g., web, Python, PowerShell, Bash, virtual appliance).

The Reviewer
 
11-50 Employees
 
Dallas, Texas
Brian Kellogg
VP of Engineering, LEO Cyber Security
 
Verified
The Review
Feedback summary: 

Product quality and turnaround times have improved substantially thanks to UnderDefense’s support. The team is adaptable and technically skilled, leveraging their extensive cybersecurity background to provide constructive feedback.

BACKGROUND

Please describe your company and your position there.

I’m the VP of engineering at LEO Cyber Security. We provide vCISO and cybersecurity monitoring programs.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We approached UnderDefense for multiple projects, spanning web, Python, PowerShell, Bash, and virtual appliance development.

What were your goals for this project?

We wanted resources who could deliver a practically applicable, extensible, and supportable solution for our customers’ needs.

SOLUTION

How did you select this vendor?

It was imperative for us to find a vendor that could execute and think independently. We required an agency that would push back with their own ideas, not one that would only deliver exactly what was asked. They needed to think outside of our box by applying their own cybersecurity experience to the projects.

Can you go into detail about the services they provided and the scope of the project?

Due to our organic nature, scope and requirements often evolve quickly. The personnel assigned have always been flexible, responding well to a fast-paced environment.

What was the team composition?

The team changed depending on the project’s technical requirements. However, we usually worked with at least two people.

RESULTS & FEEDBACK

Can you share any information that demonstrates the impact that this project has had on your business?

We viewed them as an extension of our internal team. They helped us deliver solutions quicker and in a more comprehensive manner than we could have on our own. The relationship has been excellent, and we highly value their contributions.

How was project management arranged and how effective was it?

In most of our projects, we shared the project management. UunderDefense worked well to accommodate changing customer requirements due to shifting circumstances.

What did you find most impressive about this company?

I strongly value their willingness to push back against ideas they see as incomplete or lacking in any way. They were always willing to offer ideas for improvement. They went above and beyond what was asked and showed strong ownership of the work we gave to them. I can't stress the value of that quality enough.

Are there any areas where they can improve?

No, nothing comes to mind. Any issues we ran into were due to how busy my internal team was and not communicating enough. Despite that, UnderDefense worked through these challenges very well.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 5.0 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer

Security Services for Real Estate App

“We were impressed with their knowledge of the subject matter.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
4.0
Willing to refer: 
5.0
The Project
 
Less than $10,000
 
Mar. - May 2018
Project summary: 

Working with an outsourced development team, UnderDefense designed and implemented security measures for a real estate mobile app. They also performed a security audit.

The Reviewer
 
1-10 Employees
 
London, United Kingdom
Paul Carse
CTO, FirstHomeCoach
 
Verified
The Review
Feedback summary: 

UnderDefense helped create a secure prototype within three months, thanks to their technical expertise. They collaborated well with both internal and third-party resources and offered practical advice.

BACKGROUND

Please describe your company and your position there.

I am the CTO of a financial technologies startup. We are building a product called FirstHomeCoach, which guides users through the entire process of buying a house. Step by step, we help clients figure out how much they can afford and all the costs involved in buying their dream home. Our trusted advisers can assist with things like mortgage, insurance, and legal paperwork. The great thing about the app is that the whole journey is personalized. Plus, it’s completely free.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We hired UnderDefense to design our security, check it had been implemented correctly, and then perform a security audit.

What were your goals for this project?

Since our product stores personal data, its infrastructure needed to be secure.

SOLUTION

How did you select this vendor?

The outsourced development house we used to build the product had worked with UnderDefense before and recommended them. I reviewed them based on my previous experience with other security firms.

Describe the project in detail.

UnderDefense was involved in the project from the beginning, helping design the overall architecture and recommending solutions. They also validated that the build matched the design and then completed an external audit of the systems. They will continue to work on the project as our security consultant.

What was the team composition?

Initially, we worked with a senior security architect. Later, two security engineers conducted the audit.

RESULTS & FEEDBACK

Can you share any outcomes from the project that demonstrate progress or success?

Within three months, we had built a prototype of the system that enabled us to move forward with the main build.

How effective was the workflow between your team and theirs?

The UnderDefense people integrated themselves well with our development team. They provided practical solutions with the right amount of advice and control. Our communication was good and fast.

What did you find most impressive about this company?

We were impressed with their knowledge of the subject matter.

Are there any areas for improvement?

There is always room to improve, but no specific areas spring to mind.

5.0
Overall Score They provide great service with a personal touch.
  • 5.0 Scheduling
    ON TIME / DEADLINES
    They were part of the planning process and delivered on time.
  • 4.0 Cost
    Value / within estimates
    They provided competitive rates.
  • 5.0 Quality
    Service & deliverables
    They delivered excellent work on time.
  • 5.0 NPS
    Willing to refer
    I would be happy to recommend them.

Cybersecurity Consulting for SaaS Product

“It’s nice to know we have someone to rely on if anything goes wrong.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
$10,000 to $49,999
 
May 2017 - Ongoing
Project summary: 

UnderDefense provides ongoing cybersecurity support and consulting services. Specific duties include infrastructure testing. They helped integrate security and privacy tools with an existing software product.

The Reviewer
 
11-50 Employees
 
New York, New York
Eugene Vyborov
CoFounder/CTO, YayPay
 
Verified
The Review
Feedback summary: 

UnderDefense developed and maintains a sophisticated cybersecurity system. Their data privacy policies impress even experienced compliance officers. They proactively look for issues and are forthcoming with actionable solutions. This communicative approach facilitates a smooth engagement.

BACKGROUND

Introduce your business and what you do there.

I’m the co-founder and CTO of YayPay. We’re a software as a service (SaaS) provider of a cloud-based solution that leverages machine learning and automatic payment communications to accelerate collections.

OPPORTUNITY / CHALLENGE

What challenge were you trying to address with UnderDefense?

I was looking for a firm that could provide services related to data privacy and security. We needed a consultant to help us set up a secure development process that’s compatible with our software.

SOLUTION

What was the scope of their involvement?

UnderDefense helps us with all tasks related to application security. This includes application and infrastructure penetration testing. They hold workshops to train our engineers in cybersecurity and compliance. Working collaboratively with our development team, they established proper security practices and tools. The software tools include vulnerability scanners, file system integrity scanners, and security logins. The security policies they put together detail concepts like risk assessment, vulnerability, vulnerability management, and password strength. Currently, they monitor our system and respond to cybersecurity incidents.

What is the team composition?

Their project manager oversees most of the activities that take place within our system. He’s the contact that communicates with my team. Beyond that, they allocate different groups of engineers as needed. For example, they assigned four engineers during penetration testing.

How did you come to work with UnderDefense?

I was introduced to them by one of our investors. They came highly recommended to us.

How much have you invested with them?

We spent $40,000 thus far.

What is the status of this engagement?

We started working together in May 2017 and the engagement is ongoing.

RESULTS & FEEDBACK

What evidence can you share that demonstrates the impact of the engagement?

Our compliance officer noted our systems and processes as one of the more advanced ones for the companies at our stage. That couldn’t have been achieved without the help of UnderDefense. Their presence makes me and my team feel comfortable from a security perspective. It’s nice to know we have someone to rely on if anything goes wrong.

How did UnderDefense perform from a project management standpoint?

I have no complaints regarding communication. We interact via email, Slack, and Zoom.

What did you find most impressive about them?

They’re productive and never wait until we ask them to do something. They proactively reach out to us about topics that require our attention. We have a complicated app and their team knows it inside and out. This understating informs where they search for potential problems.

Are there any areas they could improve?

They need to keep growing their team and increase their availability. Overall, they’re doing an excellent job.

Do you have any advice for potential customers?

I highly recommend establishing clear expectations from the start. Make sure both sides can provide what the project requires.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 5.0 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer

Managed Security Services for Telecom Company

“The UD team showed excellent communication skills and a high level of flexibility.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
4.5
Willing to refer: 
5.0
The Project
 
$10,000 to $49,999
 
July 2017 - May 2018
Project summary: 

UnderDefense conducted a security assessment to determine gaps in a data company’s privacy system. The team provided a working security operations center and trained internal staff to handle threats.

The Reviewer
 
1,001-5,000 Employees
 
Kyev, Ukraine
Volodymyr Dubei
CIO, Datagroup
 
Verified
The Review
Feedback summary: 

UnderDefense’s efforts resulted in a reliable security operations center, reduced investigation, detection, and response times and more effective internal prioritization. The team’s consistent communication and flexible approach to the partnership contributed to the success of the engagement.

BACKGROUND

Please describe your company and your position there.

I am a CIO at DataGroup. We are a national Ukrainian telecom provider.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We decided that we needed to constantly monitor our systems to provide high-quality service for our customers. We wanted to protect the privacy and confidentiality of our clients and our system.

What were your goals for this project?

We wanted to assess our current and future security level, monitor it with Splunk Enterprise Security and configure intrusion prevention system (IPS) for The Payment Card Industry Data Security Standard (PCI DSS) environment.

SOLUTION

How did you select this vendor?

Our CEO met the UnderDefense (UD) CEO at the New York Stock Exchange (NYSE) and asked him to offer a bid. Their team showed great potential and we chose them for our project.

Describe the project in detail.

The UD team helped us with our first two goals.

Initially, we created a new security roadmap and detailed the steps for its implementation. We conducted the project in several phases, starting with gap analysis. Once we had an idea of what needed to be fixed, UD improved our processes and developed a more efficient security flow.

Second, the team provided a security operations center (SOC) service. Their security experts configured Splunk as a security information and event management (SIEM) system in the Amazon Web Services (AWS) cloud. Then, they trained our team in basic analysis and response practices.

Additionally, UD brought more visibility and transparency to our internal forensics processes and helped us build a solid prevention mechanism. Their deep analysis helped us highlight any advanced persistent threat (APT) behavior.

What was the team composition?

We worked with a team of eight SOC analysts. Each member was a Splunk certified engineer.

RESULTS & FEEDBACK

Can you share any outcomes from the project that demonstrate progress or success?

UD provided us with a running and effective SOC. We reduced our security investigation time from weeks to hours, and decreased our detection and response times. Now, we can prioritize our internal operations more efficiently and cost-effectively. Their efforts generated more consistency and accountability within our organization. We can confidently provide our customers with a guarantee that their data is secure with our business.

How effective was the workflow between your team and theirs?

The UD team showed excellent communication skills and a high level of flexibility.

What did you find most impressive about this company?

I was impressed by their knowledge of industry best practices. They were very supportive.

Are there any areas for improvement?

They could reduce their costs.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 4.5 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer

Penetration Test for iOS and Android Mobile Payment App

“What makes the company different is their strong, motivated team.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
Less than $10,000
 
Jan. - Feb. 2015
Project summary: 

UnderDefense performed a series of backend penetration tests for iOS and Android mobile payment app. They delivered a security report as well as code samples to show how a hacker might breach the system.

The Reviewer
 
11-50 Employees
 
Frankfurt Oder, Germany
Igor Kantor
CTO, 5Pro Software
 
Verified
The Review
Feedback summary: 

Beyond identifying significant security issues with the app, UnderDefense provided a unique perspective that highlighted the system’s vulnerability in a realistic setting. The team kept in constant communication and delivered an outstanding report.

BACKGROUND

Please describe your company and your position there.

I am the CTO at a mobile development and security company called 5Pro Software.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We engaged UnderDefense to support us with our client’s iOS and Android mobile payment app. They did the backend penetration and security testing.

What were your goals for this project?

The key objective was to verify the security level of the payment process to ensure that the app couldn’t be hacked. We also wanted to demonstrate how secure other existing mobile payment apps were.

SOLUTION

How did you select this vendor?

I knew their CEO from previous projects and trusted him. Moreover, unlike other companies that only delivered a formal audit report, UnderDefense also demonstrated real security weaknesses in the system from a hacker’s perspective.

Describe the project in detail.

It was a typical penetration testing project that lasted for approximately four weeks.

What was the team composition?

They assigned a project coordinator and two penetration testers.

RESULTS & FEEDBACK

Can you share any outcomes from the project that demonstrate progress or success?

They found serious security bugs in the app and delivered a report with all known issues. Additionally, they developed proof-of-concept scripts and code snippets that demonstrated how to practically exploit those weaknesses.

How effective was the workflow between your team and theirs?

We had a daily follow-ups with the team as well as a few online video meetings.

What did you find most impressive about this company?

What makes the company different is their strong, motivated team.

Are there any areas for improvement?

That’s hard to say. The company is constantly improving.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 5.0 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer

Research and Development for Cybersecurity Company

“The engineering team takes initiative, and we appreciate their proactive approach.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
$50,000 to $199,999
 
Apr. 2017 - Ongoing
Project summary: 

UnderDefense augmented an existing cybersecurity team in researching new vulnerabilities in an existing system and creating tools to check for those vulnerabilities in the future.

The Reviewer
 
51-200 Employees
 
San Jose, California
Aviram Jenik
CEO, Beyond Security
 
Verified
The Review
Feedback summary: 

The UnderDefense team’s ability to work independently while continuing to prioritize transparency was key to the success of the project. An emphasis on open communication ensured thorough results. The team provides a high-quality service at a reasonable rate.

BACKGROUND

Please describe your company and your position there.

I’m the CEO and co-founder of Beyond Security, a cybersecurity vendor that helps businesses and governments improve their network and application security by finding and closing security vulnerabilities.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We needed talented security specialists to help us in researching new vulnerabilities and develop security checks with our flagship AVDS product, an automated security testing tool. The UnderDefense team has helped us research the latest exploits and vulnerabilities to develop new modules that detect these vulnerabilities.

What were your goals for this project?

We were looking to conduct ongoing research into the latest vulnerabilities and work with a team to develop new detection methods.

SOLUTION

How did you select this vendor?

They came highly recommended from a company we work with that had worked with them in the past.

Describe the project in detail.

The project’s scope included autonomous research and development, updating our common vulnerabilities and exposures (CVEs), building exploitation testing labs, and verifying new attack signatures. With open and transparent communication, we were able to augment our R&D team to quickly and efficiently overcome any bottlenecks in the process by allowing our customers access to high-quality vulnerability updates.

What was the team composition?

We are impressed by the team spirit that UnderDefense promotes. The they offer services are of high quality, and there were never delays in communication process. There were two security analysts involved into the development process and they proved themselves to be experienced professionals.

RESULTS & FEEDBACK

Can you share any outcomes from the project that demonstrate progress or success?

They’ve done a good job improving our product. It’s already more effective, and we’re constantly try to modernize and mitigate existing gaps and vulnerabilities in the system.

How effective was the workflow between your team and theirs?

They were easy to get a hold of when we had questions or concerns. They worked independently while maintaining transparency through open communication via Slack. The engineering team takes initiative, and we appreciate their proactive approach.

What did you find most impressive about this company?

The service that they provide sets them apart from other security companies. Everything was negotiable, which allowed us to find effective ways to collaborate. The team is full of new ideas and ways to improve themselves as professionals, and the benefits to our business have been tremendous. Their rates were surprisingly affordable for the scope of completed work, and was a great fit to our budget.

Are there any areas for improvement?

All in all, they did a great job. We appreciate that they continuously provide high-quality service and always work to improve the level of services they provide.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 5.0 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer

Cybersecurity Consulting for Software Firm

"We’ve been able to build our company’s profile as a security firm."

Quality: 
5.0
Schedule: 
4.5
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
$50,000 to $199,999
 
Aug. 2017 - Ongoing
Project summary: 

UnderDefense provided cybersecurity consulting services, working on the client's strategy, recommending infrastructure and services, and providing experts for security processes.

The Reviewer
 
51-200 Employees
 
Ukraine
Oleksandr Kernishniuk
Head of Security Center, Kromtech Alliance
 
Verified
The Review
Feedback summary: 

The collaboration has been smooth, producing good results in terms of the client's security profile and improving the brand's awareness. The team works effectively using a scrum methodology and is always responsive, dedicated, and careful in all their work.

BACKGROUND

Introduce your business and what you do there.

Kromtech Alliance Corp is, a software development company, focused primarily on the Mac OS platform. We're developing a variety of tools that can simplify the day-to-day usage of Mac computers. My role at the time of the project was VP of strategic alliances and partnerships. I’m currently the director of PR and communications and also head of the contact security center.

OPPORTUNITY / CHALLENGE

What challenge were you trying to address with UnderDefense?

Our recent strategy has been to start working on security utilities, so we asked for UnderDefense’s help with it.

SOLUTION

What was the scope of their involvement?

They provided cybersecurity expertise that we didn’t have at the time, or even currently. They made basic recommendations for our infrastructure and services. The first aspect of our partnership was cybersecurity consultancy.

They also provided experts for internet security and privacy research processes. We have a contact security center, the initial purpose of which was to operate as a nonprofit focused on finding vulnerable databases, data leaks, and misconfigurations that other businesses were experiencing. They also helped us develop open-source tools that can help secure the AWS-based infrastructure, as well as avoid data leakages and security misconfigurations.

We also have a blog, on which we host the three tools developed with their help, along with all the research we’ve done together.

What is the team composition?

According to our contract, we have three engineers from their side involved in the process, and we have a coordinator on our side. They provide a project manager on their side as well.

How did you come to work with UnderDefense?

We were looking for a convenient option for our needs, and one that would fit in with our team. I wanted a collaboration to be a mix of our expertise and the partner's. One of my friends had met UnderDefense at a conference and then worked with them; he gave me their CEO’s contact details, so I reached out.

How much have you invested with them?

We’ve spent around $100,000 on their services so far. We have monthly payments of around $20,000 for the new project.

What is the status of this engagement?

We started working with them in August 2017 and launched a second project with them in December or January of this year.

RESULTS & FEEDBACK

What evidence can you share that demonstrates the impact of the engagement?

We’ve definitely had a positive collaboration with them. The idea was to get good material and establish a workflow that we could use to create brand awareness for our company—reports, white labels, investigations, and so on. They’re currently doing investigations, much more than working on data leaks. We identify interesting trends in the cybersecurity on the market, they have a one-week initial investigation, and, if they feel there’s something interesting there, we identify how much time it requires, and spend that time. In the end, we receive investigation reports.

For example, we’ve done an interesting investigation on Amazon Elasticsearch, and discovered that the platform itself has a vulnerability; we showed that at least 30% of the databases being stored on the platform were infected by malware.

In the last year and a half, we’ve been able to build our company’s profile as a security firm. We initially had just a brand name for our products, but nobody knew who the developer of these tools was. We were able to build our brand name as a security company by utilizing this strategy.

How did UnderDefense perform from a project management standpoint?

We’re completely satisfied with this aspect; they’re responsive. I worked directly with their CEO, which allowed me to solve issues fast, but I know that our two teams have built a scrum process involving daily Skype standups. They’re in contact all the time, so we have no issues with communication. They're responsive and motivated, and their expertise was exactly what we needed.

What did you find most impressive about them?

What I liked most is their startup approach. They’re responsive, fast, and motivated. They want to develop their skills and help their customers, because they don't have hundreds yet. They can focus on each one, help them, and try to understand them properly. I hope they keep this approach for as long as possible. There will be a day when they’ll go from being a startup to a more mature company with a lot of processes and people.

Are there any areas they could improve?

Each new client of theirs will have unique requirements, like the ones we had for our security center. They have to grow their ability to deliver exactly what is needed, so they have to try different things, train their team, and be ready for any kind of challenge or request.

When we start a project, the team has to understand the scope of work, and this process will become faster after they’ve gained more experience.

5.0
Overall Score
  • 4.5 Scheduling
    ON TIME / DEADLINES
    Nobody can predict how long an investigation will take, but they’ve delivered on time.
  • 5.0 Cost
    Value / within estimates
    I know the market prices and theirs is good.
  • 5.0 Quality
    Service & deliverables
    They’ve done everything according to the plan.
  • 5.0 NPS
    Willing to refer
    I enjoyed working with them and I’ve already referred them a couple of times.

Cybersecurity Services for Advising Consultancy

“I really appreciated the friendly relationship we had with their team.”

Quality: 
5.0
Schedule: 
5.0
Cost: 
5.0
Willing to refer: 
5.0
The Project
 
Less than $10,000
 
June 2018 - Aug. 2018
Project summary: 

UnderDefense performed a cybersecurity audit to find coverage gaps and assure compliance with GDPR requirements. Following the evaluation, the team provided a risk map that detailed their findings.

The Reviewer
 
51-200 Employees
 
Lviv, Ukraine
Roman Bilyk
Managing Partner, Nexia DK. Auditors & Cosultants
 
Verified
The Review
Feedback summary: 

UnderDefense’s thorough analysis provided information to help improve cybersecurity strategies. Effective project management and transparent collaborative skills were key to the successful engagement.

BACKGROUND

Please describe your company and your position there.

I am a managing partner at Nexia DK. Auditors & Consultants. We provide audit and advisory services.

OPPORTUNITY / CHALLENGE

For what projects/services did your company hire UnderDefense?

We wanted to evaluate our cybersecurity strategies.

What were your goals for this project?

Our goal was to improve our cybersecurity strategies and make sure that we were following General Data Protection Regulation (GDPR) requirements.

SOLUTION

How did you select this vendor?

UnderDefense is located in the same city as our business.

Describe the project in detail.

The team conducted a thorough audit to determine the strength of our cybersecurity position. From the results, they created a detailed risk map.

What was the team composition?

We worked with a mix of top staff members and other resources from UnderDefense. All team members were transparent and very cooperative.

RESULTS & FEEDBACK

Can you share any outcomes from the project that demonstrate progress or success?

Their deliverables were very detailed, which helped us address the gaps in our cybersecurity plans.

How effective was the workflow between your team and theirs?

It was extremely effective.

What did you find most impressive about this company?

I really appreciated the friendly relationship we had with their team. We were able to work openly throughout the engagement.

Are there any areas for improvement?

They could improve their scheduling, but there weren’t any significant problems.

5.0
Overall Score
  • 5.0 Scheduling
    ON TIME / DEADLINES
  • 5.0 Cost
    Value / within estimates
  • 5.0 Quality
    Service & deliverables
  • 5.0 NPS
    Willing to refer