About CodePros

About CodePros

Our Journey & Mission

Skip to main content

Who We Are

CodePros is a boutique—bespoke security engineering firm for complex enterprise and industrial environments. We’re a hands‑on OT/ICS & detections studio with developer‑native DNA (Go‑first). Senior engineers do the work. We integrate security into architecture, code, and pipelines and prove impact with hard numbers—precision/recall, FP rate, Gbps & CPU/GB, MTTR, POC→Prod.

Core strengths: OT/ICS DPI & telemetry (Modbus, DNP3), detection engineering/IDPS tuning, security automation (email/asset/vuln/IR), Protective DNS, and runtime AppSec enablement (RASP/IAST, Go‑first).

What We Do

Productized Service Offers

  • OT/ICS DPI Accelerator (6–10 weeks)
    Protocol parser enhancements (Modbus/DNP3), Zeek/Suricata packs, edge‑to‑core telemetry, perf harness (Gbps, CPU/GB).
  • IDPS Effectiveness Boost (4–8 weeks)
    False‑positive burn‑down, rules tuning, detection engineering, golden telemetry; deliver precision↑ / FPs↓ with CI’d tests.
  • Security Automation Jumpstart (4–6 weeks)
    Email triage, asset/vuln enrichment, IR playbooks/SOAR; measurable MTTR reduction.
  • Protective DNS Assessment & Tuning (3–5 weeks)
    Resolver posture, DoH/DoT policy, block‑rate/bypass tests; exfil/C2 risk reduction.
  • Runtime AppSec Enablement (Go‑first) (6–8 weeks)
    RASP/IAST integration, perf profiling, CI gates; coverage↑ with controlled overhead.
  • IR/Forensics Playbooks (incl. SIM‑swap) (2–4 weeks)
    Incident runbooks, automation, tabletop; better containment time and evidence quality.

Supporting Capabilities

  • DevSecOps & Platform Engineering — GitOps/IaC (Terraform/Helm), Kubernetes baselines, policy‑as‑code (OPA/Conftest), paved roads.
  • Secure Software Engineering — Architecture & implementation with SDL, SAST/DAST/SCA, supply‑chain hardening (SBOM/VEX, SLSA), secrets, least‑privilege IAM.
  • Cloud‑Native Architecture — Multi‑region on AWS/GCP/Azure, service meshes, runtime hardening, cost‑aware reliability.

Engagement Models & Pricing Guardrails

  • Models: Project (Fixed or T&M), Retainer (advisory→engineering), Build‑Transfer‑Operate (B‑T‑O), OEM component licensing, training/CTF enablement.
  • Guardrails: $250–$325/hr blended (commercial US/EU/UK), fixed $75k–$250k, retainers $25k–$80k/mo.
  • IP stance: Reusable accelerators (proprietary or dual‑license OSS); customer IP for funded custom modules.

Why Clients Choose CodePros

  • Outcome > optics. We publish baselines and show your deltas—precision/recall, FP rate, MTTR, throughput & CPU/GB.
  • Boutique, not commodity. Principal‑led, no bait‑and‑switch.
  • Bespoke engineering. Tuned to your people, risks, and constraints.
  • Operationalized controls. Everything lands in CI/CD, infra, and runbooks—not in binders.
  • Knowledge transfer as a deliverable. Paved roads, templates, dashboards, docs your team owns.

How We Work

Labs → POC → Prod with clear exit criteria, or Build‑Transfer‑Operate when you need a runway.

  1. Discover: Stakeholders, system maps, baselines, threat models.
  2. Design: Target architecture, control objectives, acceptance criteria.
  3. Deliver: Iterative builds in prod‑like envs with tests & policy‑as‑code; golden telemetry and perf harnesses.
  4. Defend: Observability (OpenTelemetry/Prometheus/Grafana), incident rehearsals, continuous verification.

S‑SDLC: peer review, unit/integration/perf tests, SBOM/VEX, signing (Sigstore/Cosign), secrets hygiene.
Artifacts: ADRs, IaC modules, CI/CD pipelines, service templates, dashboards, runbooks.

Where We Fit Best

  • Critical Infrastructure/OT (energy, utilities, manufacturing), SaaS & developer platforms, healthcare, public sector, OEM security vendors, telco, MSSPs in US/EU/UK.
  • Triggers we respond to: incidents, regulatory deadlines (e.g., NIS2/DORA/CMMC), SIEM/XDR migrations, K8s re‑platforms, OEM roadmap gaps, marketplace co‑sell.

Common use cases:
OT DPI parser upgrades; Zeek/Suricata detection packs; IDPS tuning and FP burn‑down; PDNS readiness; security automation for email/asset/vuln/IR; secure Go microservice templates; RDS Postgres migrations with zero‑downtime patterns.

Tooling & Technologies

Languages: Go, Zig, Python
OT/Detection: Zeek, Suricata, Sigma, KQL, PCAP labs, golden telemetry datasets
Data‑plane: eBPF/XDP, traffic replays, QUIC/TLS 1.3 visibility strategies
Automation/Supply Chain: SOAR, APIs, Terraform/Helm, SBOM/VEX (Syft/Grype), signing (Sigstore/Cosign), secrets mgmt
Cloud/Infra: AWS, GCP, Azure; Kubernetes; GitHub Actions/GitLab CI; Vault
Data: PostgreSQL (RDS/Aurora), streaming/eventing, encryption & retention policies
Observability: OpenTelemetry, Prometheus, Grafana, error budgets & SLOs

Alliances & Community

  • Cloud marketplaces: AWS/Azure/GCP private offers & CPPO to accelerate commercial close.
  • OT/ICS & AppSec ecosystems: OEMs and MSSPs; S4, sector ISACs; GopherCon training/CTF programs for developer‑native security.

FAQs

Do you work in OT/ICS?
Yes—DPI for Modbus/DNP3, Zeek/Suricata content, OT telemetry, and SOC integration. On‑site for cutovers when required.

Public sector?
We scope eligibility early and align to procurement frameworks; PDNS and IR playbooks are common entry points.

Build‑Transfer‑Operate?
Yes. We’ll build, run alongside you, then transfer with training and SLOs.

How do you handle IP?
Reusable accelerators remain with CodePros (some dual‑licensed); funded custom modules are assigned to you.

Remote or on‑site?
Remote‑first; on‑site for OT/ICS change windows and critical workshops.

CodePros Team

Our practitioners blend cybersecurity, software engineering, and platform reliability to ship resilient systems that hold up under audit—and in production.

Benji Vesterby

Profile picture of Benji

Founder & CEO. Security automation, detections engineering, OT/ICS DPI, and runtime AppSec (IAST/RASP) across distributed systems. Known for MTTR reduction, IDPS precision/FP improvements, and developer enablement (Go‑first). Aligns Zero Trust, OWASP ASVS, SBOM/SLSA, and policy‑as‑code with measurable outcomes.

Neil Primmer

Profile Picture of Neil Primmer

Software & Platform Engineer with two decades in regulated industries. Focused on Kubernetes platform baselines, paved roads, and developer experience; contributor to the Challenge Series at GopherCon.

Charisse Vesterby

Data Scientist (Ph.D.) focused on measurable risk reduction—statistical modeling, ML, experiment design, and making evidence actionable.

Ready to Build Securely—and Ship Faster?

Tell us where it hurts—OT visibility, alert fatigue, release friction, audit pressure, platform drift, or mounting CVEs—and we’ll propose a focused path to measurable outcomes.