Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
backman.fyi is the personal service site of Lars Backman, a security consultant based near Stockholm, Sweden. It is positioned to help Swedish startups build security infrastructure, secure-by-default controls, and compliance readiness before security issues become urgent. It is not a standardized security SaaS product, but a consulting-based service covering security reviews, architecture design, security engineering, detection and response, compliance certification, and Fractional Security Lead services.
In terms of protection coverage, the service includes white-box code reviews, application and cloud infrastructure assessments, penetration testing, access control, threat modeling, zero trust, OWASP Top 10 architectural controls, AI system security, and supply chain security. Delivery is primarily project- or consulting-based, implemented around the customer’s existing codebase, cloud environment, CI/CD, IaC, SIEM/SOAR, and related systems. For management and alerting, the text explicitly mentions SIEM implementation and tuning, SOAR platform buildout, detection rules, alert triage, automated remediation, and incident response runbooks. Integration capabilities cover modern security stacks such as AWS, Azure, GCP, SAST/DAST, secrets management, SSO, SCIM, and WebAuthn/FIDO2.
The website does not disclose pricing, packages, delivery timelines, or payment methods; inquiries must be made by email. On the compliance side, it supports ISO 27001, SOC 2, ISO 42001, PCI DSS, and GDPR, and also mentions DORA scenarios. Its view is that compliance should be a byproduct of building “secure by default” practices, rather than merely a documentation exercise.
The strengths are that the consultant’s background is relatively clear, with experience in environments such as F-Secure, Tink, Juni, and Legora, covering cloud security, application security, GRC, SOAR, and security at scale. The methodology is engineering-oriented, emphasizing golden paths, automated controls, and strong identity. The drawbacks are that the service is highly dependent on an individual’s availability and expertise, and the website states that only a small number of clients are served at a time. It also lacks public pricing, SLAs, sample reports, and customer testimonials, while cross-region service availability is unclear.
It is suitable for early-stage to Series D Swedish fintech, legaltech, AI, or B2B SaaS teams, especially companies that have received enterprise customer security questionnaires, need an independent security review, are preparing for ISO/SOC/PCI certification, or do not yet have the headcount for a full-time CISO.
Based solely on the scraped text, it is not possible to determine accessibility from mainland China, so the assessment is unknown.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on backman.fyi official site.
backman.fyi is an Sweden Security provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach backman.fyi directly.