Services

Not another
rubber stamp audit.


Reduce risk in the systems you cannot afford to get wrong. Work with senior engineers across confidential computing, supply-chain integrity, and offline custody.

Reduce risk in the systems you cannot afford to get wrong. Work with senior engineers across confidential computing, supply-chain integrity, and offline custody.

Engagement shapes

Security work, shaped to the problem.

Work directly with security engineers who review, design, and build alongside your team. Practical security work, not a report that leaves the hard decisions to you.

2-8 weeks

Security assessments

We use first-principles threat modeling, system architecture review, code and dependency review, penetration testing, and smart contract reviews to eliminate risks at their source.

  • Threat modeling
  • System architecture
  • Code + dependency review
  • Penetration testing

1-6 months

Security engineering

Design the system and help build the security-critical parts. Confidential compute platforms, signing ceremonies, hardened build pipelines.

  • Confidential compute
  • Signing ceremonies
  • Hardened build pipelines
  • Reproducible builds

Ongoing

Security retainer

An extension of your team wherever security judgment is needed, including architecture and design reviews, release signoff, due diligence, and security program development.

  • Architecture review
  • CI/CD hardening
  • Key management
  • Release signoff
  • Due diligence
Process

How we work with you.

Work directly with a security engineer to understand the system, define the real risk, and get practical security work done.

01

Talk to an engineer

We discuss the architecture, constraints, risk areas, and decisions where security judgment is needed.

02

Set the scope

We agree on the systems in view, the questions to answer, and what the engagement should produce.

03

Work the problem

We assess, design, test, or embed with your team, depending on what the problem actually needs.

04

Turn it into action

We review findings, answer follow-up questions, validate fixes where needed, and leave you with clear next steps.

Trusted by

What clients say.

FAQs

Questions before we start.

Yes. You work with the people doing the security work, not a delivery bench or handoff team. If we are not the right fit for the engagement, we will say so early.

We treat client information as sensitive by default. We minimize what we collect, keep client work isolated, and avoid routing sensitive material through unnecessary third-party systems. Operationally, we use self-hosted internal tools where practical, compartmentalized client environments, QubesOS-based isolation, and PGP for sensitive material when requested or appropriate. If an engagement has stricter handling requirements, we agree on them up front.

Pricing depends on the system, scope, timeline, and level of involvement required. A focused assessment, embedded engineering support, and an ongoing retainer are priced differently. After an initial conversation, we can usually tell you whether the engagement is a fit and what kind of scope makes sense.

No fixed minimum. Every engagement is scoped around the system, risk, and decisions in front of you. If the work is too small, too broad, or not a fit for us, we will say so early.

Yes. We regularly sign NDAs before reviewing private code, architecture, infrastructure, or internal material. When work touches public or open source systems, we agree up front what is public, what is private, and what can be discussed.

No, and we won’t pretend to. We are best used as senior security support for teams that already have engineers. If you need a full internal security function, we will tell you and help you think through the shape of that hire.

No. Use a specialist compliance auditor for that. Hire us for the security work underneath the certification: architecture, implementation, threat modeling, reviews, fixes, and technical risk.

Distrust is based in San Francisco, US. Our engineering team is distributed globally, with most engagements run remotely across European and North American time zones. We travel when the work needs in-person time.

Get in touch

Bring us your hardest
security problem.

Book a 30-minute call with a security engineer, or send a note about what you're working on. The first conversation is on us.