Renata Moraes
Founder · Security operations
Fifteen years running detection and response inside payment and banking environments. Renata sets how we read signals and decide what is worth waking someone for.
About the studio
A small team that takes defense personally.
Sentivel is not a reseller and not a call center. We are a São Paulo studio of practitioners who have spent careers on both sides of an intrusion, and we keep our client list small on purpose.
We started Sentivel in 2015 after years inside operations teams at banks, payment platforms, and infrastructure operators. We had seen the same pattern from the inside: security treated as a procurement line, a stack of tools nobody had time to tune, and a response plan that existed only as a document. When something finally went wrong, the gap between the slide deck and the reality was enormous.
So we built the studio we wished had existed — one that earns its place by being useful on the worst day, not the demo day. We deliberately stayed small. A handful of engagements at a time means the people who map your environment are the same people who answer when an alert fires. Nothing gets lost in a handoff.
We are based in Itaim Bibi and most of our clients operate here in Brazil, under the same regulatory pressure and the same threat landscape we live in daily. That proximity matters. We understand the LGPD not as a foreign requirement but as the ground we stand on, and we know the sectors — finance, logistics, healthcare, public infrastructure — where a few hours of downtime carries a weight no balance sheet fully captures.
None of this is glamorous. Good defense rarely is. It is patient instrumentation, honest reporting, and the discipline to rehearse a response before it is needed. We are comfortable with that. The organizations that work with us are the ones who would rather be quietly secure than loudly reassured.
The work, most days · reading signals before they become incidents
How we work
Four principles we will not trade away.
Evidence over assumption
We do not recommend a control until we have seen how an intrusion would actually move through your systems. Opinions are cheap; a traced attack path is the thing worth acting on.
Honesty over reassurance
If your exposure is serious, you will hear it plainly and early. We would rather lose a comfortable meeting than send a report that looks calmer than the reality.
Rehearsal over documentation
A response plan that has never been run is a guess. We practice the bad day with your team until the moves are familiar, so the real one is slower to surprise you.
Small failures over large ones
We design so that a single mistake stays contained. Segmentation, least privilege, and safe defaults are not features — they are how an organization survives its own human errors.
We measure ourselves by what did not happen — the breach that never reached production, the outage no customer ever noticed.— What success looks like, in our terms
The people
Practitioners, not account managers.
The team is intentionally compact. Everyone here does the work; nobody only sells it.
Diego Alencar
Partner · Offensive testing
A former red-team lead who has spent his career finding the path attackers take. Diego runs our adversary simulation practice and the reporting that follows it.
Carolina Teixeira
Partner · Security architecture
Carolina designs identity, segmentation, and resilience into platforms before they ship. Her work is the reason our clients' mistakes tend to stay small.
Begin
If this is the kind of partner you want, let's talk.
Tell us what you are protecting and what keeps you up at night. We will tell you honestly whether we are the right fit.