Technology services
Professional services for creating a coherent security architecture
At Sectio Aurea, we are dedicated to providing superior services in the field of security systems integration, providing customized solutions to meet the specific needs of your business.
We transform complexity into simplicity, guaranteeing a unified and efficient solution that meets your strategic objectives.
What we offer you:
Custom Analysis and Design: We begin with a deep understanding of your needs and goals, followed by the identification of project-specific challenges and risks. This stage culminates in the design of an integrated architecture and the creation of a detailed plan to ensure seamless integration of all components and subsystems.
Efficient Implementation: Once the design is established, we take care of product delivery and installation, followed by configuration, testing and optimization to ensure the integrated system operates at full capacity. We also provide comprehensive training for system administrators, ensuring your team is ready to manage the new solution effectively.
Support and Maintenance: After implementation, we are here to provide you with technical support and maintenance services, ensuring the optimal and continuous operation of the system, so that your business can focus on what it does best.
By choosing Sectio Aurea as a partner for the integration of cyber security systems, you benefit from:
Consolidated expertise: Taking advantage of years of experience and in-depth knowledge in the production operation of the implemented systems, we guarantee you the highest quality solutions, adapted to your needs.
Minimized risk: Through our detailed approach, we eliminate uncertainties and risks, ensuring a smooth project.
Customized solutions: Every business is unique, which is why we offer solutions that perfectly suit the specific requirements of your company.
Scalability and Flexibility: Our systems are designed to grow with your business, providing the flexibility to adapt to future changes.
Ongoing support: Our dedication to your success doesn't stop at implementation. We provide post-implementation support to ensure continued performance and satisfaction.
At Sectio Aurea, excellence in security systems integration is at the heart of what we do. Each service offered is designed to bring added value and increased security to your organization.
Here's an overview of how we can assist you:
What do you get?
Integrated solutions are ready to operate in a complete security ecosystem:
monitoring and response through SOC,
operation and hardening through ITSecOps,
governance, risk and compliance through GRC.
This integration ensures operational continuity, consistent reporting and full traceability according to NIS2.
Reducing operational risks and dependence on key people
Through clear architecture, documented processes, and correctly integrated solutions, you reduce the risks generated by improvisations, knowledge "in one person's head" or dependence on opaque suppliers.
Your organization becomes more stable, more predictable, and easier to manage in the long term.
Visibility, control and traceability for audit and management
You gain real visibility into:
critical assets,
security checks,
risks and decisions made.
Everything is documented, measurable and easy to present to management, auditors or authorities, without reactive efforts or "on the fly" reconstructions.
How do we actually help?
We are dynamically increasing cybersecurity capabilities in the following areas:
Advanced Design
Our design process is meticulous and comprehensive, starting with gathering and analyzing requirements, to developing and testing optimized solutions. We adopt the "security by design" principle, integrating security at every stage of the IT systems development life cycle. This proactive approach ensures that your systems are not only efficient, but also resilient in the face of security threats.
Effective Implementation
Our specialized implementation team ensures that IT security solutions are installed and configured correctly in your infrastructure. We take care of all the necessary steps, from planning to system testing and validation, ensuring a smooth transition to new solutions and minimizing operational disruptions.
Project management
We apply best practices and project management methodologies to ensure on-time, on-budget and quality delivery of IT projects. Our planning, execution and monitoring skills ensure that our clients' business objectives are met effectively.
Technical Assistance and Service
We offer comprehensive technical support, covering preventive maintenance, software updates and support for system administrators. Partnering with Sectio Aurea means you can count on reliable and secure IT systems ready to support your critical business operations.
Specialized Training
We provide training programs to ensure that your team is well prepared to use and manage the new security solutions. These training sessions are tailored to cover essentials from installation and configuration to monitoring, management and best practices.
Optimization Consulting
Our consulting services are designed to improve the efficiency, performance and reliability of implemented solutions. We work closely with you to identify and implement optimizations that lead to better productivity, improved security and reduced costs.
Portfolio: Cyber security solutions
We provide advanced consulting services, for the latest cyber security directions, only for a qualified selection of vendors from each field below.
Integrated Cybersecurity Platforms
IT Service Management
Identity Governance and Administration
Network Detection and Response
Privileged Access Management
The Sectio Aurea team – real expertise, operated on a large scale
The Sectio Aurea team is made up of specialists who operate cybersecurity daily in complex, critical and highly regulated environments, not consultants isolated from operational reality.
Our architects, managers and analysts are part of global SOC and ITSecOps ecosystems, where tens of thousands of IT and OT assets are monitored and protected, across distributed, hybrid and industrial infrastructures.
Our experience comes from real-world operations at scale, not one-off projects or compliance exercises. This allows us to design and deliver solutions that work in production, under pressure, with strict requirements for availability, auditing, and rapid response.
What we know how to do very well
We operate security, not just document it. We have direct experience in the ongoing operation of security controls: monitoring, incident response, vulnerability, identity and access management, in both IT and OT/ICS.
We work at scale and with complete visibility. We are used to managing environments with thousands and tens of thousands of endpoints, applications, users and data flows, where automation, correlation and prioritization are essential.
We combine governance with technical execution. We understand the requirements of NIS 2, ISO 27001 and corporate governance, but we also know how to translate these into enforceable policies, correct configurations and sustainable operational processes.
We think threat-informed, not just compliant. We work based on the real threat landscape, current TTPs, and lessons learned from real incidents, adjusting controls for effectiveness, not just to check off compliance requirements.
We integrate IT and OT into a coherent model. We have practical experience in industrial environments and critical infrastructures, where security must support operational continuity, not block it.
We deliver solutions that withstand audit and operational reality. Everything we implement is traceable, measurable and demonstrable – both for auditors and for the teams that operate the systems daily.
Uniqueness. Why work with us?
The fundamental method
We have a very high standard of service quality.
We have mature people in the team, who have implemented solutions in the most complex enterprise environments.
Innovative technologies
We provide value-added services for technologies with a high degree of innovation, with modern consumption methods (SAAS).
We do not deal with areas for which there are local authorities and you have multiple options.
Independence from technology, result orientation
We are not tied to a single vendor. We can integrate and operate most established security platforms, choosing the solutions that best serve your business objectives and compliance requirements, not the other way around.
Security built on real risk, not checklists
Our approach is threat-informed and risk-based. We prioritize controls that effectively reduce risk, based on real TTPs, observed incidents, and lessons learned from operations, not just formal requirements.
Flexible, cost-effective model
Through our services and microservices model, we provide access to top-notch senior expertise at a fraction of the cost of building an in-house team or traditional SOC/CISO services, without compromising on quality.
Long-term partnership, not punctual delivery
We work as an extension of your organization, not as a distant external provider. We take responsibility for the continuous evolution of security, adapting to change, and supporting the organization in the face of audits, incidents, and technological transformations.
reference
Sectio Aurea's relationship with clients is built on transparency and verifiable results, not on generic "testimonials". Upon request, we can facilitate validation of references through direct discussions with project beneficiaries, at levels relevant to your decision: General Manager / Board, CIO / IT Director, Technical Directors and operational managers.
This openness comes from the way we work: senior involvement, direct collaboration with management, and deliverables that remain within the organization in the form of functional governance, operational processes, and auditable records.
Use case - Crowdstrike at Somes Water Company
Compania de Apa Someș SA, a critical infrastructure operator, aimed to strengthen its prevention, detection and response capabilities to cyber incidents, as well as to progressively align with the requirements of the NIS / NIS2 Directive, in a complex IT and SCADA environment, with high availability and auditability requirements.
To achieve this goal, the organization collaborated with Sectio Aurea for the provision, integration and advanced operationalization of the CrowdStrike platform, as part of a unified cybersecurity architecture.
Sectio Aurea has implemented and operates the following CrowdStrike components, adapted to the IT and SCADA environment:
Endpoint Detection & Response (EDR/XDR) + NextGen SIEM
Advanced protection for workstations and servers, with behavioral detection and advanced event correlation.Identity Protection (ITDR) Monitoring and protecting privileged identities, detecting identity-based attacks, and mitigating lateral movement risks.
Exposure Management. Visibility over the attack surface, prioritization of vulnerabilities based on real risk and correlation with critical assets.
Data Protection. Protect sensitive data and prevent exfiltration, with policies tailored to operational and compliance requirements.
Use case - Opensource solutions at Somes Water Company
Compania de Apa Someș SA, a critical infrastructure operator, aimed to strengthen its prevention, detection and response capabilities to cyber incidents, as well as to progressively align with the requirements of the NIS / NIS2 Directive, in a complex IT and SCADA environment, with high availability and auditability requirements.
Based on Contract No. 7334/10.03.2025, Sectio Aurea implemented an integrated open-source platform for the digitalization of IT and security processes, with the objective of establishing a coherent framework for the management of requests, incidents, changes, assets, risks and compliance, in full alignment with NIS2 requirements and ISO 27001 best practices.
The approach aimed for end-to-end traceability, auditable records, and the integration of security operational processes into the organization's daily activity.
Implemented platforms and solutions
The following key components were implemented and operationalized within the project:
GLPI (centralized CMDB) – inventory and correlation of IT and OT assets, as a foundation for risk and control management
Request Tracker (Service Desk / ITSM) – standardized management of requests, incidents and changes, with traceable and auditable flows
Digitization of NIS2 procedures – direct integration of security operational processes into ITSM platforms
NetBox – “Single Source of Truth” for network infrastructure (IPAM, topology, interconnections)
BookStack – centralized knowledge base for policies, procedures and documentation, with versioning and access control
Eramba (GRC) – governance, risk and compliance, with direct mapping to NIS2 and ISO 27001 requirements
Use case - Crowdstrike Complete at the State Protocol Directorate
The Autonomous Administration – Administration of State Protocol Heritage (RA-APPS) manages critical IT infrastructures, sensitive digital assets and mobile devices used in contexts with high requirements for confidentiality, availability and control.
The operational context requires advanced protection, continuous monitoring and rapid response capacity to threats, as well as alignment with good security practices and compliance requirements applicable to public institutions.
CrowdStrike MDR Service Context
To address this level of exposure and complexity, CrowdStrike Falcon Complete (MDR) was chosen as a complete 24/7 prevention, detection, response, and operations solution, delivered through a unified platform.
The MDR service provides end-to-end managed protection, combining CrowdStrike technology with the expertise of global threat hunting and response teams, significantly reducing detection time and incident impact.
Use case - Opensource Solutions at Lukoil Romania
LUKOIL Romania operates a distributed IT and OT infrastructure, which includes gas station networks, logistics warehouses and critical operational support systems. The context imposes high requirements for availability, cybersecurity, operational traceability and compliance with the NIS2 Directive, especially in the area of incident detection and management in extended geographical environments.
As part of the contract, Sectio Aurea implemented an integrated architecture for the digitalization and control of IT and security processes. A centralized CMDB, based on GLPI, was introduced, which ensures a single, updated and auditable record of IT and OT assets, as well as the relationships between critical components. For the operational management of current activities, a Service Desk-type ITSM solution was implemented, using Request Tracker, which allows standardized and traceable management of requests, incidents and changes.
Additionally, an open-source XDR/SIEM platform – Wazuh, was implemented and operationalized, extended to the gas station network and logistics warehouses. The solution provides unified visibility over distributed environments, supports abnormal behavior detection, security event correlation and incident response processes, while providing technical evidence necessary for auditing and compliance with the requirements of the NIS2 Directive.
As a result, LUKOIL Romania benefits from fully digitalized and auditable IT and security processes, a significantly improved incident detection and management capability, and an increased level of operational maturity and NIS2 compliance.
Use case - Opensource Solutions at Giurgiu Water Company
Sectio Aurea implemented and operationalized technical cybersecurity solutions for IT and ICS/SCADA infrastructures, between March and December 2025.
The project aimed to align with the requirements of the NIS2 Directive and GEO 155/2024, as well as to increase operational resilience.
A Wazuh-based XDR/SIEM platform was implemented for detection, event correlation, vulnerabilities, and compliance.
Inventory and correlation of IT/OT assets were ensured through a centralized CMDB (GLPI).
Operational processes were digitized through an ITSM platform (Request Tracker), with traceable flows for incidents and changes.
The solutions were operationally integrated for unified management and auditable support.
The IT–SCADA infrastructure was segmented and secured on the "least privilege" principle.
Firewalls, VPNs, and network policies with end-to-end validation have been configured.
The result was a secure, auditable and NIS2 compliant architecture, functional in production.
Use case - Wazuh Solutions At CloudVault
Sectio Aurea implemented and operationalized the Wazuh platform for monitoring and securing the CloudVault cloud environment.
The project aimed to increase visibility over cloud assets and strengthen incident detection and response capabilities.
Wazuh has been configured to collect and correlate security logs from cloud environments and associated systems.
Mechanisms for detecting abnormal behaviors and security incidents have been activated.
The platform was used for vulnerability scanning and security configuration verification.
Events and alerts were correlated in a unified, easy-to-audit model.
The implementation supported compliance requirements and cloud security best practices.
The solution was operationally integrated into existing IT flows.
The result was an increased level of control, visibility, and resilience of the CloudVault cloud environment.
Talk directly with a cybersecurity expert
Schedule a one-to-one session with Mădălin Bratu, a consultant with over 20 years of experience in IT and cybersecurity and founder of Sectio Aurea.
During this discussion, you will be able to analyze your organization's security challenges and receive practical recommendations for protecting your IT infrastructure and increasing your level of cyber resilience.
You will have direct access to the expertise of a top-tier cybersecurity team, specializing in governance, risk management, and compliance.
Schedule a meeting and discover solutions tailored to your organization's needs.