Makehitec helps companies secure critical applications, digital platforms and infrastructure before weaknesses become business risks.
We provide cybersecurity consulting and security architecture services based on recognized frameworks and best practices such as ISO/IEC 27000, NIST Cybersecurity Framework, OWASP, EBIOS Risk Manager and NIS2 readiness principles.
Our services cover cybersecurity audits, risk analysis, secure architecture, IAM, PKI, TLS/mTLS, OIDC/OAuth2, Kerberos, application hardening, vulnerability and dependency analysis, secure SDLC, cloud and on-premise security, and cybersecurity-by-design.
With experience in defense, energy, automotive, biometrics, secure communications, identity systems and critical infrastructure, Makehitec brings both strategic vision and deep technical expertise. Our background includes projects involving the French National Gendarmerie, Enedis, CS Group / Sopra Steria, Stellantis, IDEMIA, Nexter Systems and Renault-Nissan-Mitsubishi.
From assessment to target architecture and implementation roadmap, we help your organization reduce cyber risk, strengthen compliance readiness and build secure systems that can scale with confidence.
Cybersecurity assessment
Analysis of applications, infrastructure, architecture, dependencies, authentication flows, exposed services, technical debt and operational weaknesses.
Risk analysis and security roadmap
Structured identification of threats, risks, priorities and remediation actions, aligned with approaches such as EBIOS RM, ISO/IEC 27000 and NIST CSF.
Secure architecture design
Definition of secure target architectures for applications, cloud, on-premise platforms, microservices, APIs, IAM, PKI and critical systems.
IAM and access control
Design and review of identity and access architectures using OIDC/OAuth2, SSO, MFA, Kerberos, LDAP/LDAPS, role models and fine-grained authorization.
PKI and cryptographic architecture
Design and review of PKI, X.509, TLS/mTLS, certificate lifecycle, secure provisioning, key management and trust models.
Application security
Secure SDLC, OWASP-based reviews, API security, hardening, dependency scanning, SAST, code quality analysis and secure development guidance.
Cloud and infrastructure security
Security architecture for cloud, hybrid and on-premise environments, including Kubernetes, containers, network segmentation, observability and DevSecOps practices.
NIS2 readiness support
Support for organizations that need to structure governance, risk management, security controls, incident readiness and resilience expectations.