CIRT, DFIR and Cyber Defense Consultancy

Investigate incidents, contain risk and strengthen cyber operations.

CrossBorder Cyber Consultants helps organizations handle suspicious activity with disciplined incident triage, threat hunting, malware analysis, SOC support, AI security reviews and executive-ready reporting. Led by Kennedy Aikohi, Cybersecurity Analyst, CompTIA CySA+ and Security+ certified, with hands-on SOC Operations and SIEM experience.

Cyber operations dashboard illustration

Professional security services for lean teams.

The focus is technical cyber defense, clear evidence review and useful reporting. Services are structured for businesses that need specialist support without building a full internal security team.

CIRT

Incident response triage

Initial support for suspicious logins, business email compromise, malware alerts, unauthorized access and urgent security findings.

Threat hunting

Threat hunt sprints

Focused reviews of authentication records, endpoint signals, SIEM alerts and attacker behavior mapped to practical defensive actions.

SOC support

Alert review and tuning

Alert triage, detection improvement, documentation and escalation support for lean security teams and growing businesses.

Malware

Malware analysis reports

Suspicious file triage, behavior notes, indicators of compromise and defensive recommendations for security teams.

AI security

AI workflow review

Assessment of prompt injection, data exposure, unsafe automation and AI tool access control risks in business workflows.

Readiness

Cyber readiness support

Practical preparation for organizations that want better incident handling before a real security event occurs.

A CIRT-style response process.

Each engagement follows a clear flow so urgent work stays controlled, evidence is protected and the final recommendations are useful to both technical and business stakeholders.

Intake

Capture the incident type, affected systems, timeline, business impact, available logs and immediate safety concerns.

Triage

Review priority evidence, validate suspicious activity and classify the likely severity and response direction.

Containment

Recommend account, endpoint, cloud, email or network actions that reduce exposure while preserving evidence.

Analysis

Investigate indicators, attacker behavior, scope, root cause and likely defensive gaps using available telemetry.

Reporting

Deliver findings, executive summary, technical notes, IOCs, remediation actions and follow-up priorities.

Credentials, achievements and continuous learning.

Professional positioning built around SOC operations, SIEM review, threat detection, malware analysis, AI security, open source tooling and practical cyber defense.

CompTIA

CompTIA CySA+ and Security+

Cybersecurity Analyst and security foundation credentials covering threat detection, incident response, vulnerability management and security operations.

CompTIA

CSAP Stackable Certification

CompTIA Security Analytics Professional, issued Apr 2026 and valid through Apr 2029.

Achievement

Security Blue Team Frostbyte Winner

Winner of the Security Blue Team Frostbyte annual challenge. Also ranked Top 5 globally on the Security Blue Team BTLO weekly investigation leaderboard.

AI Security

Cato Networks and Cranium AI

AI in Cybersecurity by Cato Networks, issued May 2026, and AI Security Certificate by Cranium AI, issued Mar 2026.

AI Skills

Superhuman AI Workplace Proficiency

AI Workplace Proficiency Certification issued Jan 2025, supporting secure and effective use of AI in professional workflows.

SOC

C-SOC and SOC Analyst Training

Cybersecurity Operations Center experience from Clarusway, Certified SOC Analyst by Cyber NOW Education and IBM Security Operations Center in Practice.

Cloud Security

Google Cloud Security Skills

SOAR Fundamentals V6 and SIEM Fundamentals by Google Cloud Security, supporting alert handling, automation and SecOps workflows.

Threat Hunting

MITRE ATT&CK and Threat Hunting

Foundations of Operationalizing MITRE ATT&CK by AttackIQ and Modern Threat Hunting Strategies to Identify Attacks by Birdify.

SOC Tools

SIEM and endpoint operations

Experience with IBM QRadar, CrowdStrike Falcon, Splunk, Wazuh, ELK, SentinelOne, TheHive and Jira case workflows.

Technical Labs

TryHackMe and Hack The Box

Continuous learning through Cyber Defense, SOC Level 2, Jr Penetration Tester, Web Fundamentals and practical security labs.

Open Source

Security tools and analysis projects.

Public projects include Windows artifact review, log investigation, ransomware analysis and memory analysis learning tools.

View Projects
Cyber projects and security tooling illustration
Threat intelligence network illustration
Cyber Reports

Daily attack notes and security briefings.

Use the reports section to publish short summaries about current attacks, threat behavior, malware trends, defensive recommendations and lessons for SMEs.

Open Reports
AikoDesk

Planned cyber case intake workflow.

AikoDesk is the planned secure intake and case workflow platform for cyber enquiries, evidence handling, scheduling and consultant assignment.

Global cyber operations illustration
Contact

Request a cyber defense review.

Email: contact@crossboardercyber.com

Security enquiries: security@crossboardercyber.com

Founder: kennedy@crossboardercyber.com

Phone: +49 163 3353 612

CrossBorder Cyber Assistant