What is the Security Retainer?

10 hours of security work from both Cyber Secify founders for INR 24,999. You have 30 days to use the hours, with a free 30-day extension if needed. You bring the tasks or we identify what gives you the most value.

What kind of work can I use the retainer for?

Anything security-related: code reviews, cloud configuration hardening, policy documentation, incident response planning, compliance gap analysis, access control audits, security architecture reviews. You bring the task, we estimate hours, and execute.

Is the Security Retainer refundable?

No. The Security Retainer is non-refundable. If you want a risk-free way to try our work first, start with Security on Demand (INR 9,999, fully refundable).

What happens after the 10 hours are used?

If there is a fit for ongoing work, we discuss a fractional security engagement: 2-8 hours per day, 3-month minimum, covering AppSec, InfraSec, and GRC. If there is no fit, the engagement ends. No pressure.

Security Retainer: What 10 Hours of Founder-Led Security Work Looks Like

You tried Security on Demand. Or maybe you skipped it because you already know you need security work done. Either way, you want more than a 4-hour session. You want real deliverables.

The Security Retainer gives you 10 hours of hands-on security work from both founders. You bring the tasks, or we identify what will give you the most value. INR 24,999, non-refundable.

How It Works

You get 10 hours of security work. Not a consultation. Not an assessment report. Actual work, the kind your team would do if you had senior security people on staff.

You have 30 days to use the hours from the date of purchase. If you do not use all 10 hours in the first 30 days, we extend it by another 30 days at no extra cost. After 60 days, unused hours expire.

Both founders work on your tasks. Ashok covers compliance, risk, and security strategy. Rathnakara covers application security, infrastructure hardening, and technical execution. You get the right person for the right task.

What Startups Use the 10 Hours For

You bring the task. We estimate how many hours it takes and execute. Some examples of what founders typically ask for:

Application security

Security code review of a critical feature before launch
API authentication and authorization review
Security review of a new payment or data handling flow
Fix guidance for vulnerabilities found by an automated scanner

Infrastructure

AWS/GCP/Azure security configuration review and hardening
IAM policy audit and least-privilege cleanup
CI/CD pipeline security review
Container and Kubernetes security assessment

Compliance and governance

SOC 2 or ISO 27001 gap analysis and roadmap
Security policy drafts (access control, incident response, data handling)
Vendor security assessment for a key integration
Evidence preparation for an upcoming audit

Incident and risk

Incident response plan creation
Post-incident review and root cause analysis
Risk assessment for a new product launch or market entry
Security due diligence prep before a funding round

These are examples, not a fixed menu. If it is security-related and fits within the hours, we do it.

What We Do Beyond Your Tasks

We are not just executing a task list. During the retainer, we are also understanding your stack, your team, and where security gaps are hiding.

If we spot something critical that you have not asked about, we raise it. If there is a task that would give you more value than what you planned, we suggest it. The goal is to make the 10 hours count, not just burn through a checklist.

Who This Is For

The retainer makes sense if:

You did a Security on Demand session and want to continue with real work
You have specific security tasks that your team cannot handle internally
You want to experience our work quality before committing to a longer engagement
You have a compliance deadline in 2-3 months and need to start prep work now
You are evaluating whether fractional security coverage makes sense for your startup

It does not make sense if:

You are not sure whether you need security work at all. Start with Security on Demand (INR 9,999, fully refundable) instead
You need a penetration test. Go directly to our pentest plans
You already know you need ongoing security coverage. Contact us about fractional security directly

How It Compares

	Security on Demand	Security Retainer	Fractional Security
Price	INR 9,999 (refundable)	INR 24,999 (non-refundable)	INR 60,000-2,60,000/month
Hours	4 hours	10 hours	2-8 hours/day, 22 days/month
Duration	Single session	30 days + 30-day extension	3-month minimum
Purpose	Diagnosis and direction	Real security deliverables	Ongoing security coverage
Output	Recommendations and action plan	Completed security work	Dedicated security team
Refundable	Yes	No	No

Each step builds on the last, but you can enter at any point. A founder who knows what they need can skip straight to the retainer or fractional security.

What Happens After

After the 10 hours, one of two things:

There is a fit for ongoing work. Most startups that go through the retainer realize that 10 hours solved some problems but security is not a one-time task. We discuss a fractional security engagement: 2-8 hours per day, 22 working days per month, 3-month minimum. AppSec, InfraSec, and GRC covered by senior people.

There is no fit. The engagement ends. You keep all the work we delivered. No follow-up pressure.

Get Started

INR 24,999. 10 hours. Both founders. 30 days + free 30-day extension.

Book a Security Retainer | Start with Security on Demand (INR 9,999) | View pentest plans instead