About us 

We are Defendable — and here to defend you. Learn more about us and our approach.


Our mission

At Defendable we have made it our mission to help your company become just that: defendable. Defendable against the ever-growing onset of threats from cybercriminals and spies to our digital assets and businesses. 

While perfect security is not attainable, becoming defendable is. This is so fundamental to how we approach cybersecurity that we even named our company accordingly.


Our ambition

Our ambition is to be an end-to-end cybersecurity partner for our customers, from the operational to the strategic level. We believe that the way forward is combining strategy, governance and operations more strongly than before, which is exactly what we offer through our services.


Our story

Defendable’s birth and initial growth came about within the BDO network. From 2016, BDO Cybersecurity was both part of BDO Norway’s Risk Advisory Services and of BDO’s Global Cybersecurity Leadership Team (consisting of the eight most mature cybersecurity member firms). In November 2020, BDO Cybersecurity was divested from BDO Norway, whereupon new investors came onboard and the name changed to Defendable AS.

Through a formal cooperative agreement, Defendable’s cybersecurity services continue to be a vital part of BDO’s operational security service line-up towards its existing and potential new clients.

Our approach

To us, becoming defendable means:

Attaining the necessary understanding of your critical assets, how vulnerable and exposed they are, and how they may be attacked and compromised.


Building a holistic cybersecurity strategy and governance structure, so that the entire organization knows and supports your approach to managing cyber risk.


Implementing good preventive security controls across the human, organizational and technological domains.


Achieving thorough operational insight through advanced security monitoring and security testing, hence providing hard facts and control to your risk management.


Ensuring sufficient emergency preparedness through planning, training and exercises, hence enabling you to respond effectively to a major cyber attack.