Cybersecurity for AI and devices

Break and harden LLM apps and connected devices.

Book 30-min scoping

Fixed-fee programs

LLM Break & Harden Sprint

3 weeks

  • OWASP LLM Top‑10 jailbreak/prompt‑injection hardening
  • RAG/MCP isolation and data‑leak prevention review
  • Tailored test suite for regression
  • Guardrails/policies with actionable fixes and risk report

From €17k per system per model

See scope

RED Gap & Evidence Pack

3 weeks

  • Threat model mapped to RED cybersecurity clauses
  • Secure update and rollback protection review
  • “Safe‑to‑network” evaluation and privacy/data‑flow review
  • Audit‑ready evidence pack and remediation plan

From €20k per shipping product

See scope

CRA Technical Readiness

4–5 weeks

  • CI/CD SBOM generation and vulnerability triage workflow
  • VEX (CSAF/CycloneDX) for “not affected” with evidence
  • Secure update and rollback protection evidence
  • CRA vulnerability handling runbook (24h/72h/14‑day)

From €35k per shipping product

See scope

Why now

  • LLM attacks are mainstream (OWASP GenAI / LLM Top 10 2025).
  • RED cybersecurity requirements are mandatory since 1 Aug 2025 for many radio-connected products.
  • CRA is in force; vuln reporting starts 11 Sep 2026; full obligations including Software Bill of Materials (SBOM) obligations from 11 Dec 2027.
  • More and more products combine LLMs and connected devices yet focus on one or the other.

Ready to ship securely?

Book 30-min scoping

Or email: hello@lavenix.com