Skip to main content
OpasSecure Ltd

Security built for the way threats actually move.

We are the team that prevents, detects, and responds — one crew across the whole incident lifecycle, working from Nairobi for organizations across East Africa. Calm, documented, and fast when it counts most.

Why we built OpasSecure

OpasSecure Ltd started with a simple frustration: when something goes wrong at 3 a.m., most organizations in the region have no one to call who can actually take command — trace the intrusion, contain it, and hand back evidence they can trust.

So we built the team we wished existed. Not a reseller of foreign tooling, and not a checkbox auditor, but a working security practice grounded here — analysts, responders, and forensics specialists who understand the local threat landscape, the regulatory reality, and the pressure of keeping payments, records, and services running.

Today that means prevention that closes real gaps, a 24/7 SOC watching the estate, and a forensic-grade incident-response line that answers in minutes — the same discipline whether we are hardening a network or standing in the middle of a live breach.

  • Rooted in Nairobi, built for East African organizations
  • One team across prevent, detect, and respond
  • Evidence-first: every alert is a documented case file

OUR MANDATE

Take command of the incident, follow the trace to ground truth, and give you evidence you can act on.

≤15 minutes

Retainer acknowledgement

24/7

Incident-response line

From a response line to a full security practice

We grew the way a security program should — capability by capability, each one earned by doing the work.

  1. STAGE 01

    Founded in Nairobi

    OpasSecure Ltd is established to give regional organizations a security team they can actually reach when it matters.

  2. STAGE 02

    Incident-response line goes live

    A 24/7 line staffed by human incident managers — the first thing we shipped, because breaches do not wait for business hours.

  3. STAGE 03

    Forensics & DFIR practice

    Evidence acquisition, imaging, and memory and network forensics — so every response ends with a defensible chain of custody.

  4. STAGE 04

    24/7 managed SOC

    Continuous monitoring across endpoint, network, and cloud, with analyst-led triage rather than dashboards alone.

  5. STAGE 05

    Retainer & prevention programs

    Structured IR retainers, VAPT, and hardening — closing the gaps before an incident, and guaranteeing the fastest response when one lands.

The people who answer the call

Illustrative profiles — real bios are on the way. Roles reflect how the practice is actually structured.

Amina Wanjiru

Managing Director

Daniel Otieno

Director, Incident Response

Grace Mumbi

Head of Digital Forensics

Joseph Kariuki

Head of Security Operations

Fatuma Abdi

Lead SOC Analyst

Brian Mwangi

Senior Penetration Tester

Neema Hassan

DFIR Specialist

Samuel Kiprop

Cloud Security Engineer

Names shown are placeholders used while we finalize the published team page.

Methodology, not marketing

Our incident response follows recognized international frameworks, so the way we work is repeatable, auditable, and independent of any single person.

ISO/IEC 27035

A framework we follow across the incident lifecycle — from detection through containment to reporting.

NIST SP 800-61r2

A framework we follow across the incident lifecycle — from detection through containment to reporting.

Based in Nairobi, Kenya

A regional practice serving banks, fintechs, government, and enterprises across East Africa.

Community & research

We share what we learn through OpasLabs advisories and field notes, and invest in local security skills.

We are not here to sell you a dashboard. We are here to pick up when the estate is on fire, take command, and hand you the truth.
OpasSecure Incident ResponseOur promise

CAREERS

Join the response team

We are always looking for analysts, responders, and forensics specialists who want to do the real work. See open roles or start a conversation.