About Us

The people behind GHOSTLINE.

GHOSTLINE is a Cardiff cyber security team with a simple mission: make the kind of protection big companies take for granted actually usable for smaller businesses. No noise, no theatre, no blind trust.

Our story

Why GHOSTLINE exists

Most small businesses are told one of two things about cyber security. Either it is too complicated to worry about, or it costs far more than they could ever spend. Neither is true, and both leave them exposed.

GHOSTLINE was built to close that gap. We take the same offensive testing, detection engineering and threat intelligence that protect large organisations, and we deliver it in a way a busy owner can actually use. We look at your business the way a real attacker would, fix what genuinely matters, and then prove the risk has come down. Everything is explained in clear language, with nothing hidden behind acronyms.

We are based in Cardiff, we work with businesses across Wales and the rest of the UK, and we hold ourselves to the standard we would want if it were our own company on the line. Think of us as the security team you would hire if you could, without the cost of building one from scratch.

The founders

Two people. One standard.

Mohammed Khan
Founder & Head of CyberOps

Mohammed leads the security operations and the engineering behind the platform. His background is offensive: he trained as a penetration tester and red teamer, then moved into detection engineering and threat intelligence. That mix matters. Because he knows exactly how attackers get in, he knows precisely what to watch for and what to shut down first.

OSCP+CDSAMAD20arcX CTI PractitionerarcX CTI AdvancedBScMSc
Zaynub Qayoom
Co-founder · Brand & Product Design

Zaynub shapes how GHOSTLINE looks, feels and reads. Serious security tools have a habit of being intimidating and ugly. Her job is to make ours the opposite: clear, calm and genuinely easy to use, so the person running the business is never left guessing.

BrandProduct & UXDesign systems
What we believe

The rules we run by

💬

Clear language, always

If we use a technical term, we explain it. Every report and call is written for the person who runs the business, not the person who runs the firewall.

🧾

Proof, not promises

We do not ask you to take our word for it. We re-test what we fix and give you evidence you can show a client, an insurer or an auditor.

🔓

No lock-in

Take our plan and run with it yourself, or have us do the work. Either way there is no long contract and you can stop any time.

🛡️

UK-based and certified

We are Cardiff-based, Cyber Essentials Plus certified and GDPR-aligned. Your data is handled the way we would want ours handled.

We answer fast

If you think you have been breached, we pick up. Active breach calls are answered within the hour, day or night.

🎯

Right-sized

You only pay for what fits your business. No enterprise bloat, and no paying for tools you will never use.

Find us

Where we are

GHOSTLINE
Cardiff, Wales
United Kingdom

Cardiff-based, working with businesses across Cardiff, Newport, Swansea, Bristol and the rest of the UK. Remote-first, on site when it matters.

Cyber Essentials Plus certified · GDPR-aligned · UK data handling

To send a brief or book a call, head to Access. If you are dealing with a live incident right now, go straight to I've been breached.