N Nodo. Start a conversation
Home Who we are Services Contact
São Paulo · Brazil — +55 11 4063-2190

Services

Four disciplines, one practice that carries them through.

You can engage any of these on their own. Most clients start with an assessment and grow into continuous work once they see how we operate.

01

Assessment

Penetration testing

Manual, structured testing of applications, networks and cloud accounts. We chain weaknesses the way an intruder would and reproduce every finding step by step. You receive a report your engineers can act on the same week — ranked by what each issue costs you, not by how many we found. Typical engagement: four to six weeks, with a retest of fixes inside that window at no extra charge.

02

Operations

Managed detection & response

A monitoring centre that watches your systems around the clock, staffed by analysts in São Paulo hours and overnight. We tune alerts to your environment so the floor spends its time on real signals. When behaviour deviates from the baseline, a named analyst looks at it within minutes — median triage time of eleven minutes across our book.

03

Readiness

Incident response

A retained plan and a defined team for the day something breaks. We contain the incident, recover your operations, preserve the evidence, and then walk your leadership through exactly what happened and why. Retainer clients reach us on a dedicated line; we also run tabletop exercises so the plan is tested before it is needed.

04

Compliance

LGPD & security governance

Practical alignment with the Lei Geral de Proteção de Dados and sector rules from the Banco Central and ANPD. We map your data flows, identify the obligations that actually apply, and turn them into controls your engineers can ship. The output is a working programme, not a binder — reviewed each quarter as your systems change.

A report nobody reads protects no one. We write for the engineer who will fix it and the director who must sign off on it — in one document.

— How we scope every engagement

How engagements are priced

Scoped to your system, not a menu.

We do not publish fixed packages, because real systems are not fixed. What follows is how the conversation usually goes.

Step 01

A short call

Thirty minutes to understand your environment, your sector and the regulation you answer to. No charge, no obligation.

Step 02

A written scope

We send a defined proposal: what we will test, the rules of engagement, the timeline and a fixed fee for the work. You decide from there.

Step 03

The engagement

We deliver against the scope, retest the fixes, and — if it suits you — move into continuous monitoring on a monthly retainer.

In a client's words

“They reduced our open critical findings from 19 to 2 in a single quarter.”

The retest discipline is what changed things for us. Nothing was marked closed until they had proven it. — PLACEHOLDER, Head of Engineering, payments company, São Paulo.

Abstract pattern of red and dark code on a screen

Ready when you are

Tell us which system worries you most, and we will scope it.

Request a quote Read who we are