EN / ES Write us
SOVEREIGN SECURITY // SPAIN-BASED // EUROPE-FOCUSED

SOVEREIGN SECURITY PLATFORMS.

Designed, deployed, hardened and operated by engineers with real classified-grade experience. For defense, government and regulated organizations that can't rely on public cloud.

OpenCTI Platform Review Rescue & Hardening
Authorized Filigran Partner — Premio SIC 2024 — Premio INCIBE Emprende 2026
WHAT WE DO — 02

Two doors. One operating posture.

01

OpenCTI Platform Review

Your OpenCTI stalled before production? Inherited deployment failing on scale, identity or hardening?

  • Thorough technical diagnostic of your instance
  • Remediation plan with priorities and effort
  • Hardening and operations recommendations
From 12 k€
Duration 2 weeks
Details
02

Rescue & Hardening

Sovereign platform deployed but half-broken or without a clear path to production? We stabilize it and harden it.

  • Rescue & stabilization — 4–6 weeks typical
  • Hardening & productionization — 6–8 weeks typical
  • Production-grade outcome with documented handover
From 40 k€
Duration 4–8 weeks typical
Details

Managed operations available for selected environments, typically after review, rescue or hardening.

WHY KVERNO — 04

Four concrete reasons.

01

Authorized Filigran Partner

Formal reseller in Europe with deal registration. Track record on complex on-premise deployments that required deeper delivery and operation.

Read more
02

Classified-environment track record

Real operational experience running platforms for public-sector defense and intelligence organizations.

Read more
03

Sovereign stack run in production

OpenCTI, MISP, TheHive, Authentik, Matrix, Wazuh, Proxmox. Open source deployed and operated in sensitive environments.

Read more
04

Reference architectures of our own

Every project feeds our internal system: runbooks, templates, integration patterns. Expertise turned into reusable assets.

Read more
HOW WE WORK — 04

Four steps. No surprises.

  1. 01 1 week

    Discovery

    NDA if it applies. Technical call with your team. We confirm fit and scope.

  2. 02 1-2 weeks

    Assessment / Proposal

    If an Assessment fits, we start it. If not, a direct proposal with scope, milestones and price.

  3. 03 4-36 weeks

    Delivery

    Sprint-based work with agreed acceptance criteria. Transparent access to our internal Gitlab when applicable.

  4. 04 Ongoing

    Operations / Handover

    Managed operations or documented handover to the client team. No lock-in.

See the full operating model
TECHNOLOGIES — SOVEREIGN STACK

Stack we design, deploy and operate.

Intelligence and case management

Identity, credentials and access

Secure collaboration

Infrastructure and delivery

Detection and response

Automation, backup and observability

Open-source stack operated by our team in sensitive environments, with Filigran (OpenCTI) as formal platform partnership.

See the full stack
IR // ENGAGEMENT // CLASSIFIED ENVIRONMENTS

When the noise rises, the response should be quiet.

0
One of 3 authorized national partners of Filigran in Spain.
0 wk
Reference engagement: inherited OpenCTI to operable production.
European Union
Geographic focus and sovereignty for Spain and Europe.
TRUST

Verifiable evidence.

01 — Formal partner
02 — Our team's recognitions
Premio Premio SIC 2024 2024
Premio Premio INCIBE Emprende 2026 2026
Ponente CCN-CERT Madrid · Panamá
Ponente RootedCON España
Ponente GINSEG España
Profesor Máster Ciberinteligencia KSchool Anual
Publicación Killing The Bear Investigación pública
Reconocimiento institucional MCCE — Mando Conjunto del Ciberespacio España
Partnership Authorized Filigran Partner Europa
03 — Recent engagements
ENGAGEMENT // 01 CONFIDENTIAL

Inherited OpenCTI stabilized in 8 weeks.

Inherited deployment in a European public-sector organization. Poor performance, broken identity setup, broken integrations. Diagnostic, remediation plan and full delivery in 8 weeks. Platform usable and hardened.

Client
European public-sector organization — under NDA
Duration
8 weeks
ENGAGEMENT // 02 RESTRICTED

Sovereign micro-infrastructure for HNWI privacy startup.

Minimal sovereign stack for a startup focused on privacy services for High Net Worth Individuals. Matrix for encrypted internal and client communications, OpenCTI for OSINT monitoring of the client's environment, Authentik for identity, and hardened secrets management. Full delivery in 4 weeks.

Client
Spanish startup — privacy for HNWI
Duration
4 weeks
ENGAGEMENT // 03 RESTRICTED

Sovereign daily operations for family office.

Investor / family office requiring encrypted communications, centralized identity and backups on self-hosted infrastructure, without public-SaaS dependency. Authentik, Matrix, Vaultwarden and Backrest on Proxmox. Quiet operation, documented runbooks and handover to the internal team.

Client
European family office — under NDA
Duration
6 weeks

Let's talk.

Tell us your case. If it fits, we'll say so directly. If it doesn't, we'll point you to who does.

Write us