h
RETACH Digital S.I.N.S. Framework™ — Structured cybersecurity for African organisations. Health Scan from KES 45,000.
Book Consultation → Free Score
Home About Framework Services Insights Contact
Cybersecurity & Digital Resilience

Govern.
Protect.
Endure.

RETACH helps organizations fix foundational technology risks — not with more tools, but with structure, clarity, and execution. Built for Africa. Applicable everywhere.

Work With Us Free S.I.N.S. Score →
Assess
Health Scan · AD Audit · Pentest · Diagnostic
Quantify
CRQ Engine · Financial Exposure · Risk Delta
Remediate
Controls · Tooling · vCISO · Academy
The S.I.N.S. Framework™
S Systems
I Infrastructure
N Network
S Security
Who We Are

Security That
Actually Works

RETACH is a digital governance and cybersecurity firm focused on helping organizations fix foundational technology risks. We work with businesses that are growing, digitizing, or facing compliance pressure — but lack a clear structure for managing risk.

We bridge the gap between strategy and execution, policy and implementation, tools and actual security outcomes. Using the S.I.N.S. Framework™, RETACH provides a practical path from risk exposure to resilient operations.

Our Philosophy
Visibility over assumption
Know what you have before you secure it
Control over complexity
More tools is not the answer — better governance is
Discipline over dependence
Build internal capability, not vendor lock-in
Continuous improvement
Security is a journey, not a destination

Built for African Realities

  • Limited budgets with maximum exposure
  • Hybrid infrastructure across cloud and on-premise
  • Rapid digitization outpacing security maturity
  • Growing compliance pressure from local and global regulators
  • Shortage of in-house cybersecurity expertise

Global Standard Alignment

ISO 27001 NIST CSF GDPR Kenya DPA 2019 CMCA 2018/2024 CIS Controls SOC 2 PCI DSS ICT Authority Kenya

RETACH is not a framework competitor — we are an implementation alignment layer that translates global standards into practical, executable security programs.

Leadership
PN
Paul N. Nduati
CISSP · CASP+
Founder & Principal Consultant
RETACH Digital Ltd
CISSP CASP+ MS AD Skills Sophos FW JumpCloud
View LinkedIn Profile

Paul N. Nduati, CISSP, CASP+ is a certified cybersecurity practitioner and digital governance strategist with over a decade of experience securing enterprise systems across critical infrastructure and regulated sectors.

His career spans the full technology governance lifecycle — from designing secure identity and access frameworks and hardening enterprise Active Directory environments, to implementing firewall policy, cloud security posture management, and organisational compliance programmes aligned to ISO 27001, NIST CSF, and applicable data protection and cybercrime legislation.

The S.I.N.S. Framework™ was built from that practice — not from theory. Every methodology RETACH applies was first tested inside real enterprise environments, including mission-critical national infrastructure. That practitioner foundation is what separates RETACH from advisory-only firms.

RETACH Digital Ltd exists to make enterprise-grade security governance practical, measurable, and affordable for any organisation navigating growth, digitisation, or compliance pressure — wherever they operate.

The S.I.N.S. Framework™

Four Pillars.
One Approach.

Most firms sell tools or give high-level advice. RETACH focuses on execution — identifying real issues, fixing configurations, and aligning your technology with your business needs.

S
Systems
Foundation Layer

Establishing secure, well-governed enterprise systems that form the backbone of your digital operations.

  • ERP & business system hardening
  • Identity & access management
  • Endpoint configuration & control
  • Asset inventory & lifecycle management
I
Infrastructure
Operational Layer

Securing the underlying infrastructure that supports all your business services and applications.

  • Cloud security posture management
  • Server hardening & configuration
  • Backup & disaster recovery design
  • Hybrid environment governance
N
Network
Connectivity Layer

Designing and protecting the communication fabric that connects your people, systems, and data.

  • Network segmentation & zoning
  • Perimeter defense & firewall policy
  • Secure remote access (VPN/Zero Trust)
  • Traffic monitoring & anomaly detection
S
Security
Governance Layer

Building the policies, people, and processes that sustain security outcomes over time.

  • Security policy & procedure development
  • Risk assessment & treatment
  • Compliance program management
  • Awareness training & culture
Strategy → Execution
We don't just advise — we implement. Every engagement ends with working controls, not slide decks.
Policy → Implementation
Governance without operational grounding is theater. We make policy real through practical implementation.
Tools → Outcomes
Technology only matters when it produces measurable security outcomes. We connect the two.
The S.I.N.S. Process

Assess. Quantify.
Remediate.

A structured five-step journey — from your first score to continuous assurance.

01
S.I.N.S. Assessment
Complete the free 20-question scanner. Get your instant resilience score across all four pillars.
02
Health Scan
Our consultants run a structured deep-dive. Every gap is found, scored, and documented.
03
Risk Quantification
The CRQ Engine produces your financial risk position — Expected Annual Loss, 75th/95th percentile loss bands, and regulatory fine exposure — in your currency.
04
Remediation
We implement the fixes — configurations, policies, and controls — not just recommendations.
05
Continuous Assurance
Ongoing virtual CISO support, monitoring, and quarterly reviews to sustain your posture.
Start with your free S.I.N.S. score → scanner.retach.io
How RETACH Arrives at Your Number

The math behind
the model.

No black boxes. Every figure RETACH produces traces back to a calculation you can verify — in plain English.

01
Count how often attacks happen
We start with the annual probability of each attack type — phishing, ransomware, fraud, data breach, business continuity failure, insider threat. These base frequencies come from Serianu Africa Cybersecurity Report 2023, CBK incident data, and Communications Authority of Kenya quarterly reports. A SACCO faces attacks 1.8× more often than a baseline organisation. A Fintech, 2.4× more. These are not assumptions — they are published sector frequencies.
02
Estimate how much each event costs
Severity is modelled as a percentage of annual revenue — because an organisation's revenue is the most reliable proxy for the scale of data held, transactions processed, and operational complexity. Ransomware typically costs 18% of annual revenue when it hits. A data breach costs 12%. These percentages are calibrated to East Africa incident cost data and validated against global benchmarks from IBM Cost of a Data Breach 2023 and Zurich Insurance emerging markets loss data.
03
Multiply: Expected Loss = Frequency × Severity
This is the same formula an insurance actuary uses to price a premium. If ransomware has a 30% annual probability of hitting your organisation and costs KES 9M when it does, your expected annual loss from ransomware is KES 2.7M. We calculate this for six attack types and sum them. That total is your Expected Annual Loss — what you should expect to lose, on average, in any given year.
EAL = Σ (Frequency × Severity) across all six S.I.N.S. scenarios
04
Adjust for your specific controls
Your controls reduce your risk. Full MFA cuts overall exposure by 38%. A tested and documented backup procedure cuts it by 30%. ODPC registration reduces regulatory fine exposure by 12%. Your S.I.N.S. score — derived from the four-pillar assessment — applies a continuous modifier: a score of 100 produces 85% risk reduction; a score of 0 produces 85% risk amplification. Every organisation retains a minimum 12% residual risk floor — no organisation is immune. Control efficacy percentages are sourced from NIST SP 800-53 and CIS Control implementation benchmarks.
05
Show three scenarios, not one number
Losses are not smooth. Some years are quiet. Some are catastrophic. We model this using a lognormal distribution — the same statistical shape that insurance actuaries use for catastrophe losses — because cyber losses have a long tail: most years cost less than average, but rare years cost far more. The spread of that distribution is calibrated by sector: Fintechs have higher variability (σ=0.95) than County Governments (σ=0.65). Critical Infrastructure sectors carry the highest dispersion (σ=1.10) — reflecting nation-state threat exposure and OT/IT convergence — and the highest regulatory tier, where Data Protection Act 2019 and Computer Misuse & Cybercrimes Act 2018/2024 s.18 penalties can apply simultaneously for a single failure. This gives you three outputs: your median year, a bad year (75th percentile), and a very bad year (95th percentile — 1 in 20 chance).
95th percentile = exp(ln(EAL) + 1.645 × σ)  ·  The stress-test figure for board reporting and insurance sizing.
Run the CRQ Engine for your organisation →
Full methodology, model assumptions, calibration sources, and terms of use: docs.retach.io/methodology
Flagship Engagement · Most Popular
RETACH Digital
Resilience Assessment

A complete, structured review of your organisation's technology risk posture — delivered by a CISSP-certified consultant using the S.I.N.S. Framework™. You receive a scored executive report, a risk heatmap, and an actionable remediation roadmap. No jargon. No surprises. Measurable outcomes.

See a real sample report from a previous engagement
Systems ReviewInfrastructure AuditNetwork ExposureSecurity PostureExecutive ReportRisk Heatmap30/60/90 Roadmap5-Day Delivery
Starting from
KES 45,000
≈ USD 350
Delivered in 5 business days
Book Now → Email us instead ↗ Sample report
What We Do

Core
Service Areas

Six focused service lines, all delivered through the S.I.N.S. Framework™ — built for organizations that need execution, not just advisory.

01
Virtual CISO

Security leadership without the full-time cost. We serve as your embedded CISO — setting strategy, managing risk, and guiding your security programme through a fractional engagement model.

Strategy Board Reporting Risk Oversight SMEs & Mid-Market
02
Governance, Risk & Compliance

Practical compliance — not paperwork. We design and implement GRC programmes that satisfy regulators, protect data, and actually improve your security posture, not just document it. Includes critical infrastructure compliance under CMCA 2018/2024 s.18.

ISO 27001 NIST Kenya DPA 2019 CMCA 2018/2024 Audit Readiness Critical Infrastructure
03
Managed Security Services

Ongoing visibility and protection for your digital environment. We monitor threats, manage incidents, and maintain your security controls so your team can focus on the business.

Threat Monitoring Incident Response Retainer
04
Systems Integration

Secure deployment of enterprise solutions — from identity platforms and endpoint management to cloud environments and hybrid infrastructure. Integrated securely, from day one.

Cloud Identity Endpoint Deployment
05
Deployment-as-a-Service

Technical execution capacity for partners and resellers who lack in-house delivery capability. We become your technical arm — delivering solutions your clients need, under your brand or ours.

Partner Ready White Label Technical Execution
06
SME Security

Structured, fixed-scope security for growth-stage SMEs that are digitising or facing a compliance or lending requirement — the same S.I.N.S. rigour, scaled to a smaller environment.

SMEs SACCOs Growth-Stage Pre-Audit Readiness
Insights & Thinking

From the
Field

Get Your Free S.I.N.S. Score →
Featured
April 2025  ·  8 min read
Why Most African SMEs Fail Their First Security Audit — And How to Fix It

Compliance pressure is growing across East Africa. But the biggest challenge isn't awareness — it's the gap between what auditors want and what organizations can actually implement with their current resources.

Read Article →
Framework
March 2025  ·  5 min read
Introducing the S.I.N.S. Framework™

A practical approach to cybersecurity built on four pillars: Systems, Infrastructure, Network, and Security. Here's the thinking behind it.

Learn More →
GRC
February 2025  ·  6 min read
Kenya's Data Protection Act: What Your Business Must Do Now

The Kenya DPA has teeth. Organizations that treat it as bureaucratic box-ticking are accumulating real liability. Here's a practical action checklist.

Read Article →
Get In Touch

Let's Talk
Security.

Whether you're starting from scratch, facing a compliance deadline, or need an honest assessment of where you stand — we're here to help.

Follow Us
@retach_tech Retach Digital Ltd Retach Digital Ltd @retach_tech @retach_tech
Email
info@retach.tech
Website
www.retach.tech
Location
Nairobi, Kenya
WhatsApp Business
Chat on WhatsApp →
Company
RETACH Digital Ltd — Nairobi, Kenya

Message Received

We'll be in touch within 24 hours. Thank you for reaching out.

Chat with us