Built here. Invested here. Giving back here.
A lot of us came to the UAE for an opportunity and stayed because it became home. Not just a base, a short term move to build up savings — it actually became home. The kind of place where you know your neighbours, where your kids grow up, where you find yourself defending it in conversations with people who've never been. The UAE feels safer than London a hundred times over.
The UAE has a way of doing that, it takes people from everywhere, whether you are from London, New York, Paris, Sydney, Cairo, Lagos or Manila, and gives them somewhere to build something real. The ambition here is contagious and the openness is genuine. And the sense that if you work hard and contribute honestly, you belong here regardless of where you were born — that's not a marketing line, it's just how it actually feels.
The Amantris Pledge and Operation Safe Harbour are our way of investing back into the place that gave us that. Not as a marketing exercise. Not as a CSR box to tick. Not as a tax write off. As people who live here, whose families are here, who have built careers and friendships and routines here — and who want the businesses around us to be properly protected while they build too. We all know that the UAE looks after its own, we are part of the family and we want to do the same.
The Amantris Pledge
Every year we set aside 25 places for freelancers and small businesses in the UAE. Three months of real hands-on security support — built around how your business actually operates, not around a generic checklist.
The UAE has always had a culture of community and of looking out for the people around you. The Pledge is our contribution to that. When the three months are up, you walk away with foundations that work. Everything we build belongs to you — full stop.
Get you protected
The first thing we do is make sure the basics are properly in place. Most breaches start with something simple — an unsecured device, a compromised password, an email that looks like it came from you but didn't. Includes: Email security — SPF/DKIM/DMARC configured and tested. Your emails reach people and attackers can't impersonate you. Device security — your work devices assessed and properly protected. So a lost laptop isn't the end of the world. MFA — multi-factor authentication across your accounts. A stolen password on its own won't get anyone in.
Get you organised
Security without structure doesn't hold up. We make sure you know what you have, how it's protected, and what your team is expected to do. That clarity is what makes everything else stick. Includes: InfoSec policy — written for your business, not copied from a template. Something your team will actually read and follow. Phishing awareness — your team shown what real attacks look like. Because most breaches start with a clicked link. Asset register — a clear picture of what your business owns. You can't protect what you don't know you have.
Get you moving
Security isn't a project with an end date — it's something you build over time. We make sure you finish the Pledge knowing exactly what to do next and with the confidence that what we've built together is still working. Includes: Security roadmap — a practical list of what to do next, in order. So you know where to go from here without guessing. Follow-up review call — a check-in after three months. To make sure everything is still holding up.
The Amantris Pledge
The UAE is currently intercepting up to 200,000 cyberattacks every single day. More than 70% of them are linked to state-sponsored actors. The regional threat environment in 2026 is not theoretical — it is active, it is targeted, and it is affecting businesses that have never thought of themselves as targets.
Most of the businesses in the UAE's firing line right now are not large corporations with security teams. They are the recruiter in JLT, the clinic in Jumeirah, the startup in Dubai Internet City. They are the businesses building this country's future — and right now, they are exposed.
Operation Safe Harbour exists because of that. Because the threat landscape changed and the businesses most affected by that change are the ones least equipped to respond to it. We live here too. This isn't a commercial decision — it's the right thing to do.
In 2026 we're supporting 100 UAE businesses with six months of free hands-on security support. The same standard we deliver to paying clients. When it ends, you keep everything we've built. No pressure, no obligation, no catch.
Get you protected
The first six months start with making sure the foundations are genuinely solid. Not ticked off on a checklist — actually configured, tested, and working. Most attacks in the UAE target exactly what this card covers. Includes: CIS hardening — devices and cloud environment configured against industry benchmarks. The basics done properly, not just ticked off. Microsoft Defender and email protection — your M365 environment secured and monitored. Most attacks arrive by email. This is where we start. SPF/DKIM/DMARC — email authentication configured and tested. So you can't be impersonated and your emails don't end up in spam. Automated patching via Intune — devices kept up to date automatically. Known vulnerabilities closed without anyone having to remember to do it. External exposure assessment — passive scan of what attackers can see. No active scanning, nothing touches your systems.
Get you organised
Security without structure falls apart the moment attention moves elsewhere. We make sure you have the governance in place that keeps things working — and that gives you something real to show clients, partners, and regulators when they ask. Includes: Tailored InfoSec policy — aligned to ISO 27001 and UAE IA. Built around how you actually work, not how a framework assumes you do. Risk register — created and maintained throughout. A live document, not a one-off exercise. Asset register — a clear inventory of what needs protecting. Because you can't manage what you haven't mapped. Six months of vulnerability management — weaknesses found, prioritised, and fixed. Not reported and forgotten. Security roadmap — a practical plan showing what to prioritise and in what order. So progress continues after the programme ends.
Get your people moving
The strongest technical controls in the world won't protect a business whose people aren't prepared. We make sure your team knows what real attacks look like, how to respond, and what to do when something feels wrong — before something goes wrong. Includes: Phishing simulation — a realistic test of how your team responds. You'll find out before an attacker does. Security awareness training — your team shown what the real UAE threat landscape looks like. Relevant, current, and not a generic compliance video. Monthly security review call — structured check-in every month with Amantris. So nothing drifts and questions get answered.