Security is a discipline, not an add-on. It has its own teams, responsibilities, and reporting. Key principles:
- Separation of design, operations, and control
- Auditable, measurable, scalable
- No conflict of interest โ audit โ implementation
A modular organization built for SMB, enterprise, and regulated sectors. We do not sell packages โ we offer services in clear domains that can be combined according to the customerโs needs.
We audit, but do not implement in the audit. We monitor, but forensics is handled by SHIELD, not SOC.
Each division has clearly defined competencies. The control function is strictly separated from the implementation function.
The customer does not have to coordinate 5 vendors. We cover the entire IT and cybersecurity lifecycle.
MAJEND covers the entire IT and cybersecurity cycle โ from architecture design through operations and monitoring to audit and training. The customer works with one partner instead of five vendors.
Security Awareness + phishing simulations
Technical training in M365 and infrastructure
User onboarding and product training
Management and governance training
Hands-on workshops, certification preparation
E-learning platform and testing module
ACADEMY educates, not implements, not operates, not audits
- IT strategy & business-IT alignment
- 1โ3 year technology roadmap
- Enterprise Architecture (TOGAF) โ applications, data, infrastructure, security
- Feasibility studies, ROI/TCO analyses
- Solution design and pre-project phase
- Process consulting โ AS-IS/TO-BE mapping, redesign
- Governance frameworks (ITOM, roles, KPIs)
- Change management โ organizational impacts, communication strategy
- Vendor management & contract consulting
- Strategic security consulting (NIS2, KRITIS)
- Program/Project advisory (PMO lite, risk management)
ADVISORY designs and recommends, never delivers operations
Integration of OpenAI, Azure OpenAI, and Mistral. AI chatbots and assistants for IT, business, and customer support. Custom GPT instances tailored to your needs.
Analysis of CCTV streams (LPR, anomaly detection), text data extraction, document classification, meeting summaries, and log analysis.
Prediction of incidents, capacity, and anomalous behavior. Fine-tuning LLMs, RAG on company data, AI governance, and model security.
Microsoft Copilot integration into Teams, Outlook, Word, and Excel. Copilot Studio apps and automation of internal IT processes.
AI delivers AI logic, infrastructure and integrations are separate
NIS2, ISO 27001, CIS Controls readiness
Audit is strictly separated โ we generate realistic roadmaps, not just paperwork.
Gap analyses and risk assessment
Audit of IT operational processes
Governance framework โ policies, directives
Vendor risk management
Compliance monitoring (quarterly/annual)
AUDIT checks and evaluates, must not implement (no conflict of interest)
API integrations between systems (ERP, CRM, M365, FORGE, PROTECT)
Enterprise RPA: Power Automate, UiPath, Make
Process orchestration in IT and business
ETL/ELT and data workflows
Automation of ticketing, alerts, and SLA processes
API gateway and integration hub
AUTOMATE automates workflows and integrations, does not develop applications, does not operate IT
MSP โ complete IT operations management
Service Desk L1/L2, remote and on-site support
SLA โ response times, reporting, problem management
Patching OS and applications
IT Asset Management and HW/SW lifecycle
IT staff outsourcing
CARE operates IT, does not handle security design or monitoring
Proxmox/KVM clusters, HA, storage (SAN/NAS/Ceph), Windows/Linux server OS
LAN/WAN/Wi-Fi, routing, VLAN, VPN (IPsec/SSL), load balancing
Veeam, PBS, cloud backup, DR plans, VM replication, recovery tests
IaaS (Azure), containers, CI/CD, Ansible/Terraform for infrastructure automation
CORE builds and operates infrastructure, does not address security or audit
Web applications, portals, front-end and back-end
Headless CMS (Strapi, Contentful)
Ticketing systems and customer portals
Payment gateways (GoPay, Stripe, ComGate)
QR systems and digital turnstile logic
UX/UI design, CI/CD for applications
FORGE develops applications and UI, infrastructure and security are out of scope
Entra ID โ identity management, Conditional Access
Intune โ device management, compliance, deployment
M365 service administration (ExO, SPO, Teams, OneDrive)
M365 governance โ lifecycle, data policies
Tenant management and license optimization
Power Automate / Power Apps (user workflows)
OPERATE manages M365 and identities, security design is done by SHIELD
Electronic security systems and fire alarm systems โ design, installation, service, inspections according to ฤSN
IP camera systems, LPR, facial recognition, motion detection, cloud/edge video storage
Access control systems, RFID, QR, mobile credentials, electromagnetic locks, gates
Infra barriers, radar sensors, rack monitoring, access zones in server rooms, panic systems
PROTECT delivers physical security, not IT or cyber
XDR / EDR / MDR
Incident Response & Forensic Analysis
Vulnerability Management
Cloud & Network Security
IAM / PAM, Penetration Testing
Security Architecture & Threat Intelligence
Shield designs and delivers security, not IT operations, monitoring, or audit
SIEM: Microsoft Sentinel, Wazuh
24/7 alerting according to SLA
SOC operational layer โ triage, containment
SOAR playbooks and response automation
Infrastructure, network, and cloud monitoring
Observability: Prometheus, Grafana, APM
WATCH detects and escalates. Deep forensics is handled by SHIELD.
Each division has a clearly defined area of responsibility. Overlaps are intentionally eliminated to prevent conflicts of interest.
Scalable services without the need for an in-house IT department
Comprehensive coverage for large organizations with high demands
Specialization for organizations subject to regulatory requirements
Experience with public institutions and educational organizations
Gap analysis, remediation roadmap, governance framework, and ongoing compliance monitoring.
Deployment of SIEM (Sentinel/Wazuh), 24/7 alerting, SOC operations, and SOAR automation.
Migration, governance, Intune, Entra ID, security hardening, and Copilot integration.
Takeover of operations, helpdesk, infrastructure, and security โ one partner, clear accountability.
The customer does not communicate with five vendors. Everything is under one roof with defined SLAs and escalation paths.
A modular approach allows the customer to use only the services they need, and to adjust the scope at any time.
Security is not an add-on - it is built into every division as a separate discipline with dedicated teams.
The same partner supports the customer from the first steps all the way to a fully regulated enterprise environment.
MAJEND is a security and technology partner that designs, operates, monitors, and verifies IT and cybersecurityโsystematically and without compromise.
Each with clearly defined expertise
One contact for the entire IT and security lifecycle
Audit โ implementation, monitoring โ forensics
CTO & Co-owner | Microsoft Solutions Partner | Making IT work quietly, securely, and with AI | 13+ years in IT & Cybersecurity
"Iโm not a fan of fancy buzzwords. I believe IT should just work โ quietly in the background, making life easier and letting you focus on what really matters. If youโre looking for someone who talks straight, moves fast, and cares about real results, letโs talk."
michael.hruzek@majend.com | +420 778 778 051
Evaluation of the current security level and identification of priorities
A practical workshop for management to understand obligations and next steps
Overview of the existing environment and a proposal for optimization under one partner
www.majend.com