ilmexus
Ilmexus Managed Defence

Your edge, defended by people — not just a product.

We operate the WAF, DDoS, bot and fraud controls across every platform you run. No rip-and-replace, no dashboard you have to babysit. Just defence that's owned.

Book a defence reviewSee packages
What we run

Four disciplines, one team.

Each is a service we own end to end — designed, tuned and held against your real traffic.

DEF-01

WAF / WAAP management

We own the ruleset across every edge and cloud WAF you run — designing, tuning and maintaining policy so legitimate traffic flows and attacks don't.

  • Provider-agnostic policy across Cloudflare, Akamai, Imperva, AWS, Azure, GCP
  • False-positive reduction with staged, reviewable rule changes
  • Virtual patching for emerging CVEs before you can ship a fix
  • Custom rules mapped to your application's real attack surface
DEF-02

DDoS mitigation

Always-on L3–L7 protection with playbooks rehearsed before you need them, not improvised during an attack.

  • Layer 3/4 volumetric absorption at the edge
  • Layer 7 application-flood policies and adaptive rate limits
  • Runbooks per service tier with clear escalation paths
  • Post-incident reporting with traffic forensics
DEF-03

Bot & fraud defence

Behavioural scoring that separates customers from credential stuffers, scrapers and carding bots — without blunt blocks that cost you revenue.

  • Account-takeover, scraping and inventory-hoarding mitigation
  • Payment and signup fraud signal correlation
  • Challenge strategies tuned to conversion, not just security
  • Feedback loop into Ilmexus Intelligence threat feeds
DEF-04

Monitoring & incident response

A defence team watching your edge around the clock, triaging signal from noise and acting on a defined mandate.

  • 24/7 monitoring with human triage, not just alerts
  • Defined response mandate — you decide what we can change
  • Incident comms and timeline you can hand to stakeholders
  • Monthly tuning, reporting and posture review
Platforms

We meet you where your traffic already lives.

Provider-agnostic by design. We bring the policy, the tuning and the watch — you keep the stack you've invested in.

CloudflareEdge / CDN WAF

Managed WAF, rate-limiting, bot management and Turnstile tuning at the edge.

AkamaiEdge / CDN WAF

App & API Protector policy design, rule tuning and adaptive security.

ImpervaDedicated WAAP

Cloud WAF and advanced bot protection with low-noise policy management.

AWS WAFCloud-native WAF

Web ACLs, managed + custom rule groups, Shield Advanced coordination.

AzureCloud-native WAF

Front Door / App Gateway WAF policies and DDoS Protection tuning.

Google CloudCloud-native WAF

Cloud Armor security policies, edge rules and adaptive protection.

Vendor names are referenced to describe the platforms we operate on. Ilmexus makes no claim of official partnership unless explicitly stated.

When it goes wrong

A rehearsed path, not a panic.

Every engagement ships with an incident runbook. Here's the shape of it.

01

Detect

Signal surfaces from monitoring or your alert.

02

Triage

Human analyst confirms scope and severity.

03

Contain

Policy applied within your agreed mandate.

04

Resolve

Attack mitigated, traffic restored, watch held.

05

Report

Timeline, forensics and tuning recommendations.

Engagement tiers

Start where you are.

Move up as your exposure grows. Every tier is a real human relationship, not a support queue.

TIER-1

Watch

Teams who own their edge but want expert eyes.

  • Monitoring & alerting
  • Monthly posture review
  • Rule recommendations
  • Business-hours support
Start with Watch
TIER-2 Most teams

Defend

Most teams running production traffic.

  • Everything in Watch
  • Managed rule changes
  • DDoS & bot policy
  • 24/7 incident response
  • Quarterly red-team review
Start with Defend
TIER-3

Command

High-traffic and regulated environments.

  • Everything in Defend
  • Named defence lead
  • Custom detections & feeds
  • 15-min response SLA
  • On-call engineering
Start with Command

Pricing is scoped to your traffic, platforms and response mandate — no fixed list price. The review tells us, and you, what's right.

Get started

Put a defence team behind your edge.

A 30-minute review: we look at your stack, your traffic and your exposure, and tell you exactly what we'd harden first — no obligation.

Book a defence reviewSee what we manage

$ ask an AI to summarise this page

Open in ChatGPTOpen in ClaudeOpen in Perplexity