Protect your platforms — without slowing down delivery.
Practical security architecture, threat modelling and secure engineering support for cloud-based SaaS and enterprise environments — from design reviews to hardening, governance and operational resilience.
Architecture & engineering-first
Designed for teams shipping cloud applications and operating critical services.
Threat modelling & secure SDLC
Work with delivery teams to identify risk early and build controls that stick.
Pragmatic governance
Support change governance, security reviews and vendor coordination to unblock delivery.
Services
A focused set of services built around security architecture, Information security and secure engineering for cloud and enterprise environments.
Architecture reviews & designs
Security architecture design, technology evaluation and design reviews for new and existing services.
- Security design reviews & reference architectures
- Control mapping (CIS/NIST/OWASP-aligned)
- Security requirements & documentation
Threat modelling & risk assessment
Identify and prioritise threats early, then translate outcomes into practical controls.
- Workshops with product & engineering
- Mitigation plan and decision log
- Risk narratives for stakeholders
Cloud posture & hardening
Security guardrails for cloud platforms and CI/CD pipelines with repeatable baselines.
- Cloud landing-zone reviews
- CIS benchmark guidance & automation patterns
- Pipeline security & secret scanning guidance
WAF & DDoS posture
Assess current posture, close gaps, define ownership and support change governance.
- Current-state assessment & gap analysis
- Ownership models & RACI
- Change packs & approvals support
Identity & access hardening
Review and strengthen identity controls and access governance.
- MFA / Conditional Access review
- Remote access patterns
- Privileged access guidance
Pen test & vulnerability workflow
Scope internal applications, coordinate vendors, and streamline retest cycles.
- Test scoping & access planning
- Change and release coordination
- Vulnerability triage support
About
Cyber Ninja Ltd. is led by a senior security architect with deep enterprise experience across cybersecurity, Information security and secure engineering.
Principal consultant
Ewaldt Kleynhans — Cyber and Internet Security Professional and Network Solution Consultant.
- 25+ years in large enterprise environments
- Specialised in Information security, SaaS security and secure engineering
- Hands-on across cloud security, threat modelling, web security and governance
Qualifications
- MSc Applied Cyber Security (1st Class Honors), TU Dublin
- BSc (Hons) Information Systems and Security, Trinity College Dublin
- Selected: SANS GCFW, CCNA Security, CEH, ITIL v3 Foundations
Selected experience highlights
Experience across large enterprise environments, financial services and cloud security projects.
Senior Information Security Architect — Contract
- Enterprise web security and data protection support, including governance.
- WAF/DDoS posture improvements with gap analysis and ownership definition.
- Penetration testing coordination across applications and vendors.
Cyber Security Architect — Cloud & secure engineering
- Application modernisation and migration to cloud; controls documentation.
- CI/CD security enablement including advanced scanning.
- Automated hardening and patching using CIS benchmarks.
Contact
Send a message with your goals, timeframe and environment. We’ll respond with next steps and a proposed approach.