⬢ Specialist Cybersecurity Engineering

Built to Secure.
Engineered to Endure.

Security engineering for critical infrastructure, from industrial control systems to enterprise networks. Architecture, risk assessment, and assurance across the full lifecycle.

Explore Our Services →
d
/
What We Do

Security Engineering for
Critical Systems

A specialist practice with deep, hands-on expertise for critical infrastructure and operational technology. Security engineered in, not bolted on.

Operational (OT) Security

Cybersecurity for industrial control systems, train control and signaling, nuclear facilities, hydro utility SCADA, and critical infrastructure. IEC 62443, NIST 800-82 expertise.

Enterprise (IT) Security

Security architecture and engineering for banking platforms, healthcare systems, identity management, SIEM, and cloud infrastructure. Solutions designed for your operational reality.

Risk Assessment & Assurance

Structured threat and risk assessments, grounded in system understanding, using NIST 800-30, HTRA, and IEC 62443-3-2. Benchmark your systems against industry standards with actionable roadmaps.

Security Architecture & Design

Reference architectures, security requirements specifications, and solution design across network, application, and infrastructure. Greenfield and legacy environments.

Our Approach

Security Engineered
Into the Lifecycle

We embed cybersecurity from first requirements through deployment. A core engineering discipline, not an afterthought.

01

Assess

Threat modeling, risk assessment, framework benchmarking

02

Architect

Security architecture, requirements, reference designs

03

Engineer

Solution design, SSDLC, implementation guidance

04

Assure

Threat-informed security test planning, penetration testing, validation

Early Access

SERAP

A purpose-built Security Engineering platform for accelerating architecture reviews and risk assessments. Born from decades of hands-on consulting, now evolving into a tool for security teams everywhere.

  • System asset modeling and classification
  • Structured threat & risk assessment workflows
  • Gap analysis against IEC 62443, NIST, and more
  • Security architecture documentation
Request Early Access →
Already have access? Sign in →
serap.delrex.io/assess
$ serap assess --target "SCADA-Control-Network"
Loading asset inventory... 48 assets
Benchmarking against IEC 62443-3-3 SL3
Threat modeling... 17 scenarios analyzed
Gap analysis complete: 12 findings
Generating risk report... ✓ Done
Assessment complete. Report saved to /reports/TRA-2026-001.pdf
Our Experience

Deep Expertise,
Delivered Hands-On

A specialist team with deep critical infrastructure credentials. Decades of hands-on experience across systems architecture and security engineering, spanning the most demanding sectors and systems worldwide.

25+
Years Experience
6
Industries
3
Continents
Rail & Transit Metrolinx, TransLink, MTR Hong Kong, London Underground, Alstom, Hitachi Rail STS, Thales IFEC
Nuclear & Energy Bruce Power, BC Hydro, Survalent
Government & Municipal City of Toronto (Election Systems), Canada Health Infoway, Ontario Health
Financial Services Questrade, Bank of Canada, DUCA
Healthcare & Public Health Sunnybrook Hospital & Research Institute, SickKids, UHN, ICES, Extendicare, Loblaw/Lifemark Health Group
Industrial & Manufacturing Polaris, TOARC
IEC 62443 NIST CSF NIST 800-53 NIST 800-82 ISO 27001 NERC CIP CISSP SABSA SCP COBIT ITIL
Get in Touch

Let's Secure What Matters

Ready to discuss how we can engineer security into your systems? We work directly with you. No layers, no handoffs.