# Cyber Lab > A cybersecurity bureau in Kyiv. One bureau, fourteen disciplines, three clusters: defense & control, investigations & intel, infrastructure & ops. For EU and Ukrainian teams. Cyber Lab operates from Kyiv, working remotely across the EU. We defend the perimeter, control what lives behind it, and follow the trail when something slips. Engagements range from a one-shot audit to a 24/7 SOC handover. Reply within one business day, in English or Ukrainian. ## Clusters ### Cluster 01 — Defense & control — 5 disciplines - **Pentest & Audit** — Full audit, attack simulation, ISO 27001 and GDPR compliance reviews, practical remediation. - **Workforce Control** — Activity monitoring, USB / removable device control, DLP, audit logs, automatic alerts. - **Data Protection** — Encryption at rest and in flight, encrypted channels, retention and disposal policies, Google Workspace / Microsoft 365 hardening. - **Endpoint Defense** — EDR / XDR, IPS/IDS, hardware and software firewalls, hardened workstation baselines, remote lock and wipe. - **Mobile Security** — Secure corporate phones, MDM, anti-spyware, separation of corporate and personal data. ### Cluster 02 — Investigations & intel — 3 disciplines - **Digital Forensics** — Computer forensics, incident analysis, source-of-leak investigation, data recovery, court-grade evidence packages. - **Blockchain Intel** — On-chain analytics on Bitcoin, Ethereum and other networks. Tracing stolen assets, mapping cash-out paths, coordinated recovery through exchanges and partner agencies. - **Special Services** — Discreet operational support for vetted clients. By referral, NDA. ### Cluster 03 — Infrastructure & ops — 6 disciplines - **Virtualization & VDI** — VDI for secure remote work, virtual servers (VMware, Proxmox, Hyper-V, KVM), terminal services, managed cloud. - **Managed Support** — 24/7 staff support, remote administration, monitoring, backup and disaster recovery. - **Network & Directory** — Secure LAN, Wi-Fi, VPN. Active Directory, file storage, terminal services, network segmentation. - **Engineering & Supply** — IT and telecom system design, supply of servers, networking, storage, workstations, secure phones and specialist hardware. - **SIEM & Response** — SIEM deployment and tuning, automated reaction, integrated audit and monitoring, secure corporate telephony. - **Training & Compliance** — Staff training, phishing simulations, ISO 27001 and GDPR consulting, policy authoring. ## Process — 4 phases 1. **Discover** — audit & map the system before touching it: asset inventory, threat surface, business goals. 2. **Design** — architecture, data model, threat model, deployment plan; one page each, signed off before anything moves. 3. **Build** — staged deployment with gates; hardened baselines and observability shipped from day one. 4. **Operate** — 24/7 SOC, on-call response, scheduled reviews and tabletop exercises; or a clean handover to your team. ## Contact - Email: hello@cyber-lab.io - Office: Kyiv · Remote - Languages: English, Ukrainian - Coverage: EU and Ukraine - Response time: one business day ## About - Bureau N°01 — also written CyberLab. A cybersecurity practice based in Kyiv. - Fourteen disciplines, three clusters, one team owning architecture, security posture and operations. - Calm, technical, accountable. We do not sell off-the-shelf products — we harden what you've built, contain what gets through, and follow the trail when something slips.