Our team

At Careful Security, our strength lies in our people. Our team brings decades of experience in risk management, security architecture, and compliance readiness to help businesses build resilient and practical security programs. We don’t just monitor security—we help businesses take ownership of it.

Sammy Basu

Founder / CISO

Leslie Carbajal

cybersecurity project manager

Elon Ramirez

SENIOR CYBERSECURITY ENGINEER

Alyssa Butler

marketing manager

Our Approach

We take a different approach from traditional cybersecurity service providers. We optimize what you already have before adding new products.
vCISO-Led Security Leadership – Expert-level security guidance without hiring a full-time CISO.
Compliance Without the Chaos – We simplify SOC 2, ISO 27001, HIPAA, and PCI compliance.
Real Risk Reduction, Not Just Reports – Actionable insights that strengthen your security posture. No Vendor Lock-In. We provide unbiased security recommendations based on your needs, not on selling products. Security isn’t about having more tools—it’s about making the right decision.

Employee Certifications

Certified Information Systems Security Professional (CISSP)

Certified Information Systems Auditor® (CISA)

GIAC Critical Controls Certification (GCCC)

GIAC Continuous Monitoring Certification (GMON)

GIAC Penetration Tester (GPEN)

Our Thought Leadership on Cybersecurity

The book discusses why the cybersecurity puzzle will continue to grow in complexity until we start identifying, analyzing and resolving the root cause of the problem. Adding more technology may not solve our problem since big companies and government agencies with large technology stacks are still experiencing security breaches. The book explores the people and process side of cybersecurity and how we can leverage these two components to create a successful cybersecurity program.

  • Understand the root causes of cybersecurity vulnerabilities.

  • Leverage the power of people to strengthen your security posture.

  • Develop and implement effective cybersecurity processes.

  • Build a resilient cybersecurity program that can withstand evolving threats.

Get In Touch Today

Contact us to discuss your cybersecurity needs and how we can help secure your business effectively and collaboratively.