About

The team that wrote the policy.

Principal-led. PhD-qualified. Operators, not advisors. We built the frameworks our clients are now asking us to help them build. Selective engagement is not a limitation; it is the model.

The brand heritage

The knight. The anchor.

KT stands for the knight, the trust anchor on the board. The piece that moves differently from the others, that protects the position from angles no other piece can cover.

The name is not ornamental. It describes the role. Our clients already have their queens, their rooks, their bishops: the large vendors and the established platforms. What they need is the piece that sees the positions those others cannot, and that secures the trust the rest of the board is built on.

Vision · ratified April 2026

Trust anchor for the world's most critical industries.

Mission

We help the world's most critical industries protect the trust they've earned, by securing identities, verifying software, and governing AI systems that the world depends on.

Meet the principals

The people who wrote the policy.

Two PhD-qualified practitioners lead the engagements. Both authored the respective policy frameworks at a Tier 1 automotive manufacturer before founding KT Secure's practice.

Portrait · documentary-style

PhD · Cryptography

Principal · Cryptography

Authored the cryptographic policy framework at a Tier 1 OEM. Fifteen years inside safety-critical regulated manufacturing, designing and operating multi-supplier signing infrastructure. Current focus: bespoke signing architecture and post-quantum migration for automotive and aerospace clients.

Portrait · documentary-style

PhD · AI policy

Principal · AI governance

Authored the AI governance framework at a Tier 1 OEM. Published in AI policy and regulated-industry governance; advisory work with boards navigating ISO/IEC 42001 and the EU AI Act. Current focus: AI agent governance and board-level risk posture for regulated operators.

Public identities of our principals are disclosed in private meetings and partner conversations. The reference organisation is disclosed directly where appropriate.

How we work

Five principles.

01

Policy first.

We design the governance framework before we deploy anything. Policy shapes infrastructure, not the other way round. An infrastructure built without policy becomes the policy. That is how audit surprises happen.

02

Bespoke by design.

The infrastructure is designed for your supplier mix, your signing types, your regulatory environment. No templates, no rebadged platforms. If it can be solved by a generic SaaS product, you do not need us.

03

Principal-led.

You work directly with the PhD practitioners. Not an account manager, not a delivery team at arm's length. The people who design your environment are the people who operate it.

04

Audit-ready.

Evidence, policy, and infrastructure are built together from day one. The audit is the outcome, not the emergency. When the regulator turns up, the answer is already there.

05

Sovereignty-clean.

UK-based. Your keys, your governance, your jurisdiction. No hyperscaler dependency. The sovereignty posture is the operating model, not a marketing line.

Brief a principal directly

Office

London

16 Berkeley Street
London W1J 8DZ, United Kingdom

Monday to Friday, 08:00 to 18:00 GMT

Partner presence

Gulf Cooperation Council

KSA and Qatar coverage via our in-market partner presence. Partner engagements routed through London.

Request a partner briefing →

Credentials

Table-stakes, not trophies.

Certifications matter. They are not the argument, but they are the floor beneath it.

  • ISO 27001 Information security management system
  • ISO 22301 Business continuity management system
  • UK jurisdiction GDPR and NIS2-jurisdictional by default

Let's talk

Meet the principals.

Brief our team Read our work