What we do...
Cybersecurity Consulting
We provide a full range of security consulting services, including risk assessments, security architecture, vulnerability management, and virtual CISOs.
Investigation Services
Technology-related investigations and digital forensics require specialized skills and equipment. Tenebris Inc. is a licenced investigation agency in the Province of Ontario.
Solution Development
Cybersecurity threats and vulnerabilities are constantly evolving. We develop, integrate, and apply cutting-edge technology to assist with cost-effective risk mitigation.
Training
Theory is important, but nothing beats experience. Learn from security professionals with decades of real-world experience.
Practical security that works
Protecting Small Businesses Since 1996
For nearly three decades, we've helped small businesses build robust cybersecurity defences. We understand that smaller organizations face the same threats as enterprises, but with different resources. We deliver practical, right-sized solutions that make sense for your business.
Comprehensive security support
We offer fractional CISO services to provide executive-level security leadership without the full-time cost. Our expertise includes policy and control framework development, digital forensics, security training, and building resilience through Business Continuity, Disaster Recovery, and Incident Response planning and exercises.
Investigation and digital forensics
When security incidents occur or disputes arise, you need answers. Tenebris provides technology-related investigation services and digital forensics to uncover what happened, how it happened, and who was involved. We preserve critical evidence, analyze digital artifacts, and deliver clear, concise, and accurate reports. Whether you’re dealing with a data breach, insider threat, intellectual property theft, or have been wrongly accused, we’ll help you understand the full picture and take appropriate action. Our Principal Consultant has provided expert evidence in both civil and criminal proceedings before Ontario courts.
Streamlined Compliance
We simplify SOC compliance for our clients. We can take on whatever is needed: policy and control framework development, readiness assessments, evidence collection, remediation planning, and direct collaboration with your auditor. While we are not a CA firm and therefore cannot perform SOC audits, we have a Certified Information Systems Auditor (CISA) on staff who can support other audit and attestation requirements, including internal audits to meet ISO 27001 standards.
Solution development
Our preference is always to identify cost-effective, off-the-shelf solutions that meet your needs. However, when custom development is the right path, we’re ready to roll up our sleeves and work with you to build exactly what’s required. We also design and develop our own tools, including advanced software that leverages large language models (LLMs) and related technologies such as Model Context Protocol (MCP) servers.
A Partner Who Understands Your Reality
We know that small businesses can’t afford security theatre. You need real protection that doesn’t break the bank or slow you down. Whether you’re establishing your first formal security program or enhancing existing controls to meet client requirements, we provide practical guidance that fits your business reality.
