Plain language
Security only works when the people funding it understand it. We write for boards and operators, not only for engineers, and we never hide behind acronyms.
The studio
We are paid for the alarms that never need to ring.
Rede Contínua is a São Paulo cyber defense studio. We have spent eleven years on the unglamorous side of security — the watching, the testing, the patient closing of gaps — for the institutions Brazil cannot afford to see go dark.
São Paulo · since 2014
Founded by responders who were tired of arriving after the damage was already done.
How the studio started.
In 2014 our founders were incident responders for hire. They kept being called in after the worst had already happened — long nights spent reconstructing what a calmer, continuous presence would have caught months earlier.
So they built the presence. Rede Contínua was created to be there before the incident, not after it: a staffed detection center, a standing offensive-testing practice, and a small number of clients who get the full attention of named analysts.
We deliberately stayed mid-sized. We would rather defend three hundred environments well than thousands carelessly. Growth, for us, means depth — more hours of attention per client, not more logos on a wall.
What guides us
Studio principles.
Independence
We sell no software licences and take no vendor commissions. Our recommendation is the one we would make for our own systems, nothing more.
Named accountability
Every client knows the analysts on their account by name. When an alert fires at 3am, the person who answers already knows your network.
Evidence over opinion
We do not guess at your exposure. We test it, document it, and show our working — so decisions rest on what is true, not on what is feared.
Restraint
We recommend the smallest change that closes the risk. Over-engineered security fails quietly, because no one can maintain it.
Confidentiality
Client names, findings and architecture never leave the engagement. The matters we describe publicly are always anonymised.
The people
Who leads the work.
A small senior team, each accountable for a practice. Initials shown — our analysts keep a low public profile by design.
Built the studio’s detection center after fifteen years responding to incidents across the financial sector.
Runs the red-team practice. Spends most days proving that the obvious door is, in fact, unlocked.
Translates between cloud architecture and the LGPD, so that compliance and good engineering point the same way.
“
We measure ourselves by what did not happen — the quiet years, the calls that never came, the headlines our clients never made.
— Rede Contínua, founding note
Work with us
If continuity matters to you, it matters to us.
Tell us what you are responsible for protecting. We will tell you honestly how we would approach it.