Skip to content

Engagement

Fixed-scope audits.
Senior infrastructure work, productized.

Sub-microsecond signing and time-sync infrastructure for institutional crypto trading. Two productized audits, fixed price, fixed timeline.

Book the 20-min scoping call See the audits

Fixed-scope audits

2 audits. Fixed price. Fixed timeline.

Each audit delivers a written report with severity rankings and a sequenced remediation roadmap. No ambiguity about what you get or what it costs. $1,500 non-refundable deposit reserves the slot; balance on delivery.

5 days

Start here

Architecture Diagnostic Scan

Broad sweep across your signing path, latency profile, custody posture, and regulatory posture. You get a one-page severity-ranked risk register and a recommendation for which deep audit (if any) fits your situation. The honest entry door.

15 years of Linux infrastructure for trading platforms — diagnosing this density of infra is muscle memory.

$3,500

Book this audit
Scope, deliverables, and what is NOT included

In scope

  • · Broad-sweep review of your signing path, custody posture, latency profile, and compliance posture
  • · One-page severity-ranked risk register
  • · Specific recommendation for which deep audit (or none) fits your situation
  • · 30-minute handoff call

Not included

  • · Deep tuning of any one area (that is a hero-tier audit)
  • · Detailed remediation roadmap (diagnostic surfaces risks; deep audits roadmap fixes)
  • · Vendor selection or specific vendor recommendations

3 weeks

Flagship

Latency & Jitter Deep Dive

Your P99 jitter is leaking alpha. We measure it end-to-end, map the variance to NUMA / IRQ steering / kernel-bypass / PTP root causes, and hand you the sequenced remediation roadmap. Built for crypto / quant trading desks running 5+ venues at $50M–$500M AUM.

Akuna Capital 12+ exchange integrations · Gemini PTP shipped at $2B+ daily volume · ZeroCopy 42µs production signing.

$18,000

Book this audit
Scope, deliverables, and what is NOT included

In scope

  • · NUMA tuning, isolcpus, IRQ steering review
  • · AF_XDP / DPDK / Solarflare kernel-bypass evaluation
  • · PTP-on-Solarflare time-sync verification
  • · Signing-path latency + P99 jitter measurement (HDR histograms)
  • · Severity-ranked findings doc + sequenced remediation roadmap
  • · Configuration playbook your team can apply directly
  • · 30-minute handoff call + 30-day Q&A window

Not included

  • · Writing production code or implementing the remediation roadmap
  • · Exchange API certification or onboarding
  • · Strategy-level alpha optimization or trade-routing decisions
  • · Vendor selection (we recommend categories, not specific vendors)

After an audit, ongoing engagement (advisory, fractional, or embedded) is scoped per client. That is a different conversation, scheduled after delivery. Start with the 20-minute scoping call.

How it works

From inquiry to handoff

01

Discovery

20 minutes

Free scoping call. You describe the problem; I ask three questions; I tell you which audit fits — or which one does not, and where to go instead.

02

Scope locked

24–48 hours

Written scope: deliverables, success criteria, timeline, what is and is not included. $1,500 non-refundable deposit reserves the slot; balance on delivery.

03

Audit + handoff

5 days – 6 weeks

Discovery, analysis, draft delivery, final delivery with handoff call. 30-day Q&A window after delivery (60 days for the bundle). Most clients hand off and continue with an internal team.

FAQ

Common questions

How are audits priced?

Each audit has a fixed price and fixed duration. $1,500 non-refundable deposit reserves the slot; balance on delivery. No discounts. The Compliance + Custody Bundle adds integration value over its component audits, not a discount.

What is explicitly NOT included in any audit?

Writing production code, implementing the remediation roadmap, vendor selection or specific vendor recommendations, on-call support beyond the documented Q&A window, legal advice, and active penetration testing or exploit development. Every audit page lists audit-specific exclusions too — read them before deposit.

How do you use AI in audit delivery?

AI tools (Claude, BAML, Letta) are used for read-only repo indexing, anomaly flagging, and draft-text generation from human-written outlines. Every severity ranking and every finding is reviewed and signed by Nikhil personally. All client code analysis runs through zero-retention API endpoints under signed NDA — no client code is ever submitted to standard chat tiers. Every audit deliverable lists the AI tools used.

What happens after the audit?

You get the written deliverables, the handoff call, and a 30-day Q&A window. After that, ongoing engagement is scoped per client and is a separate conversation. The audit fee is credited toward the first month of a retainer engagement if you convert within 30 days.

Do you work with teams outside the UAE timezone?

Yes. I have worked across US, EU, and Asia-Pacific timezones. Written async via Slack covers most of the work. Standups are scheduled to overlap at least two hours with your working day.

Who owns the work product?

You do. All reports, configuration playbooks, and documentation produced during an audit are work-for-hire assigned to the client entity.

Ready to scope an audit?

Book the 20-minute scoping call

How I use AI in delivery

AI tools (Claude, BAML, Letta) are used in audit delivery for read-only repo indexing, anomaly flagging, and draft-text generation from human-written outlines. Every severity ranking and every finding is reviewed and signed by me personally.

All client code analysis runs through zero-retention API endpoints under signed NDA. No client code is submitted to standard chat tiers, and no client code trains any model. Every audit deliverable lists the AI tools used and their scope.