Cybersecurity &
Digital Trust
From SOC to pen-testing, GRC to incident response - the trust spine of every OpasSecure engagement and the foundation every other practice builds on.
Why OpasSecure
Security built for
the Africa threat landscape
Most security vendors apply western playbooks to African infrastructure - and miss the real threats. Our analysts are based in Nairobi with hands-on experience across M-Pesa fraud vectors, cross-border data regulation, and the specific attack patterns targeting East African institutions.
We are CBK-aware, DCI-aligned, and ISO 27001 certification in progress. Every engagement is scoped to your regulatory reality, not a generic checklist.
What we deliver
Nine disciplines. One posture.
Every service is delivered by in-country analysts with tooling deployed within your environment or our hosted SOC.
SOC as a service
Three tiers. Choose your coverage.
All tiers include onboarding, playbook creation, and quarterly review. Upgrade or downgrade at any quarter-end.
- ✓Alert monitoring & triage
- ✓Basic IR playbooks
- ✓Monthly threat report
- ✓Email escalation channel
- ✓SIEM + SOAR automation
- ✓Threat hunting (8 hrs/mo)
- ✓Quarterly pen-test included
- ✓Weekly reports
- ✓Dedicated analyst pod
- ✓4-hour IR SLA
- ✓Full MDR service
- ✓Purple team exercises
- ✓Dedicated analyst team
- ✓SLA-backed response
- ✓Board-level reporting
- ✓Unlimited IR hours
Fixed-fee programmes
Predictable security. No surprise invoices.
All packages are month-to-month after an initial 3-month commitment. Cancel with 30 days' notice.
OpasShield Essentials
Endpoint EDR, email security, monthly vulnerability scan.
Enquire →OpasShield Professional
All Essentials + SOC Bronze, quarterly pen-test, GRC advisory.
Enquire →OpasShield Enterprise
All Professional + SOC Silver/Gold, dedicated vCISO, unlimited IR.
Enquire →Pen-test Express
Fixed-scope assessment with report in 10 business days.
Enquire →IR Retainer
Pre-authorised IR team on standby. Unused hours roll over (up to 2 months).
Enquire →vCISO Monthly
Fractional CISO for board reporting, vendor review, and policy governance.
Enquire →OpasSecure stood up our SOC in six weeks and had a playbook for M-Pesa fraud vectors that no international vendor could match. The coverage pays for itself every quarter.
Head of Risk · Tier-1 Bank, East Africa
Illustrative - client name withheld
Threat categories blocked this quarter.
OpasShield blocked these threat categories from reaching client environments. Phishing remains the dominant vector — our ML detection catches attempts before user interaction.
Illustrative data · actual figures client-confidential
Ready to close your security gaps?
Start with a free 30-minute posture call. No sales pitch - just an honest baseline assessment.