Who we are
A small Swiss team that picks up the phone.
Anomaly Aegis was founded in 2021 in Bonstetten, near Zürich, by practitioners who were tired of watching small organisations get handed junior analysts and scare tactics. We stayed small on purpose.
Why we exist
Most cybersecurity is sold to organisations that already have a security team. The companies that need help most — growing firms where the COO or founder is also, by default, the security function — tend to get either an enterprise contract they cannot read or a fear-driven pitch they cannot trust. We built Anomaly Aegis for them: detection-led, senior-only, and willing to say plainly what reduces risk and what does not.
We work across Europe with a focus on Switzerland and the wider DACH region. We are deliberately a boutique — small enough that the person who answers your incident call already knows your environment, and honest enough to tell you when you do not need us.
The team
Senior practitioners, named and accountable.
Lukas leads detection engineering and sets the technical direction of the firm. He spent years building security operations for organisations that could not afford to get it wrong, and started Anomaly Aegis to bring that discipline to teams that usually cannot reach it.
CISSP · GIAC GCIA
Nadia runs our penetration testing and security assessment work. She thinks like an attacker so your report reflects how you would actually be approached — and she insists every finding comes with a fix a real engineer can apply.
OSCP · OSCE
Marco is who you reach during an incident. He has run response and forensics through enough genuine emergencies to keep them calm and structured, and he writes the post-incident reviews that stop the same gap reopening.
GIAC GCFA · GCIH
Elena translates between the business and the framework. She steers ISO 27001, GDPR, FADP, and NIS2 work toward what reduces real risk first, and writes the kind of evidence an auditor and a board can both read.
ISO 27001 Lead Auditor · CISM