MKB / ZoKB & SECRET & Local LLM

Sensitive projects under your own control.

I help organisations worldwide with cybersecurity management and architecture, undertake classified projects at EU SECRET and NATO SECRET levels, and deploy local LLMs that keep sensitive data out of public clouds.

Expertise, trust and data control

CISAISO 27001ZoKB / NIS2KI / CEREU SECRETNATO SECRETLOCAL LLM

Connected expertise

Three pillars.
A unified security offering.

Regulatory obligations, working with classified information and using AI are not separate disciplines. Trust, responsibility and the ability to keep sensitive data under your own control bind them together.

01 / MKB & ZoKB & KI

Operationalizing Regulatory Security Requirements

Cybersecurity manager role, architecture, risk management and implementation of measures including resilience of critical infrastructure.

02 / SECRET

Ability to work on classified projects

EU SECRET and NATO SECRET clearances enable participation in classified projects with the appropriate security regime and requirements for protection of classified information.

03 / LOCAL LLM

AI without data leaving your environment

Language models can run within the organization’s infrastructure. Prompts, documents and results therefore need not be sent to public cloud services.

Sensitive data under controlRegulation & authorisation & technology

Security roles

From responsibility
to outcome.

Documentation is essential but does not protect by itself. Its purpose is a security system that owners can manage, risk responsibilities and operates in daily operations.

02 / ARCHITECTURE

Security architect

Design of clear and maintainable architecture that connects technologies, processes and operational constraints.

  • security principles and patterns
  • segmentation and access control
  • identity, logging and monitoring
  • evaluation of designs and changes
03 / IMPLEMENTATION

Implementation measures

Recommendations for concrete steps, configuration, accountability and verifiable outcomes.

  • implementation roadmap
  • hardening and technical controls
  • operational procedures and automation
  • verification of activities

Work approach

Security as
managed change.

Starting with context and risks, not a template. The output must be actionable, owned, and sustainably maintainable.

01

Understand

What we protect, why it matters, and what constraints we must respect.

02

Decide

Risks, priorities, target state, responsibilities, and a realistic path to the outcome.

03

Implement

Technical and organizational measures implemented together with the people who will operate them.

04

Verify

Evidence that the measures actually work—not just a document or configuration.

Local AI

AI yes. Sensitive data to the cloud no.

A local LLM gives the organization the ability to use generative AI even where public cloud services are not acceptable. The model, knowledge base, prompts and outputs can remain in an owned or dedicated environment and outside public AI cloud services, including projects with heightened confidentiality requirements.

DataDocuments, prompts and results that never leave the controlled environment.
IsolationDeployed without reliance on public cloud AI services.
IntegrationSecurely connected to internal knowledge, processes and permissions.
OperationsModel, infrastructure, audit trail and changes as a unified whole.
Official logo of BARA Consult – Jan Bareš

Ing. Jan Bareš, CISA – BARA Consult

From technology to decisive leadership.

30+ years in IT, management and consulting; independent consultancy since 2010.

For the client this means a partner who understands technical detail, can translate risk into management language and can drive change into production. The portfolio includes MKB, ZoKB and resilience of critical infrastructure, security architecture, ISMS and governance, classified projects and private LLM.

Based in Prague, I deliver cybersecurity, architecture and advisory services worldwide through secure internet and VPN connectivity; geography does not limit delivery, even the ISS is theoretically within reach.

30+ yearsIT, development and consulting
Since 2010Independent consultancy practice
CISAaudit, governance and ISO 27001
Security clearanceEU SECRET
Security clearanceNATO SECRET

BARA Consult and Ing. Jan Bareš hold the authorisations required to work with classified information at these levels. This enables participation in classified projects within the appropriate security regime.

Professional profile on LinkedIn

Prague-based / worldwide delivery

What do you need to address?

The initial conversation serves to understand the situation, risks and expected outcome. No pre‑prepared sales pitch.

Writeinfo@baraconsult.eu
BARA Consult s.r.o.
Pod Kynclovkou 767/11, 182 00 Praha 8
IČO 11791608 – DIČ CZ11791608