Case Studies
OpenAI: Red Teaming GPT-4o, Operator, o3-mini, and Deep Research
How an external Red Teaming engagement supported OpenAI’s evaluation and hardening of frontier models through systematic adversarial testing.
Kubernetes Penetration Testing and Purple Teaming at Large UK Clearing Bank
How the Bank boosts security measures: Penetration Testing identifies misconfigurations and gaps in Security Monitoring
Security Architecture Support to a Government Client
How a Government client developed a secure by design Kubernetes platform to support payments and identity applications
Lloyds Banking Group: Container Security Maturity Model
How a financial institution assessed and improved their container security posture
Admiral: Kubernetes Defensive and Offensive Security Training
How Admiral empowered their security teams through in-person threat modelling and penetration testing training
O'Reilly: Kubernetes Security and Threat Modelling Courseware
How a leading educational and online learning provider enhanced their cloud native training portfolio through cutting-edge Kubernetes security live events
The Linux Foundation: Advancing Security Education with Hands-On Zero Trust Courseware
How the world's leading open source organisation demystified cloud native security paradigms through practical Zero Trust training
The Linux Foundation: Authoring the Kubernetes and Cloud Native Security Associate (KCSA) Exam
How the world's leading open source organisation developed a new certification for the next generation of Cloud Native security professionals
The Linux Foundation: Security Hardening Declarative GitOps CD on Kubernetes
How the world's leading open source organisation promoted secure Argo CD deployments through end-user focused threat modeling
Citigroup: Continuous Secure Ingestion for OSS Software Packages
How a multinational bank implemented automated provenance verification of over three million external packages
Citigroup: Security Architecture and Engineering for EKS
How a multinational bank leveraged the benefits of managed Kubernetes with cloud native secure-by-design principles
BP: Universal Cryptographically-Verifiable Workload Identities
How a multinational energy company accelerated the adoption of cloud-agnostic workload identity mechanisms, through options analysis and security architecture
Protocol Labs: Web3 Assurance
How a web3 leader ensured the security and robustness of its decentralized storage and compute system using open source cloud native security solutions
Questrade, Inc: GKE Infrastructure Threat Modelling
How an online brokerage enhanced the security of their GKE infrastructure to support their successful banking licence application
JP Morgan Chase: Independent Security Assurance Using EKS
How a leading Financial Services Organisation securely unlocked Kubernetes in AWS using EKS
Marshall Wace: Active Directory and Kubernetes Workload Integration
How a hedge fund seamlessly migrated on-premises Active Directory (AD) infrastructure into their new cloud native Kubernetes platform
Google Cloud: Center for Internet Security Benchmarks for Google Kubernetes Engine
How a leading public cloud provider lowered the barrier for securing managed Kubernetes clusters by publishing best practice benchmarks
Nuaware: Nurturing Expertise with Secure Container and Kubernetes Training
How a software vendor reduced sales cycle time with client training
UK Government: Critical National Infrastructure Migration
How a UK Government department maintained availability and optimised deployment safety by securely adopting Public Cloud