Our Team

Ducker is an AI-driven security maturity and compliance advisory firm built for VC-backed SaaS. We work with CTOs and founders — typically at companies between 10 and 150 people — who need to close security gaps before an enterprise deal, a Series B, or a SOC2 audit.

We built a proprietary assessment framework that benchmarks your security posture across six domains: Identity, Cloud, DevSecOps, Incident Response, Governance, and AI Risk. The output is a board-ready report and 90-day roadmap — not a generic checklist.

Alongside client work, we're building a security maturity platform that automates the assessment and policy generation process. Early access is available for qualifying teams.

Anya

Founder

Three-time entrepreneur with deep expertise in how technical knowledge is operationalized inside organizations. Anya leads client strategy and business development at Ducker, with a focus on helping VC-backed SaaS teams build security programs that actually hold up — through due diligence, SOC2 audits, and enterprise sales cycles. Her background in instructional design and organizational learning shapes how Ducker delivers: every engagement is built to be understood, adopted, and maintained by the teams running it.

Security Architect

Alek

Principal security engineer, inventor, and researcher with extensive experience designing and securing complex systems. Alek leads technical delivery at Ducker and is the primary architect of our proprietary security maturity framework — a patent-pending, AI-assisted approach to surfacing high-impact gaps across Identity, Cloud, DevSecOps, Incident Response, Governance, and AI Risk. He brings an engineering-first perspective to every engagement: no theater, no overhead, just practical risk reduction that maps to how your systems actually work.

Who We Are