IronCastle is an AI-native managed cybersecurity platform for SMBs — built and operated by Permus Software House, a Dubai-based enterprise AI and security company with ISO 9001 and ISO 27001 certification (ISO 42001 in progress).
We built IronCastle because we kept seeing the same problem: SMBs with serious infrastructure and no serious security. Enterprise-grade protection existed — but only for enterprises. We changed that.
"We built IronCastle because we kept seeing the same problem: SMBs with serious infrastructure and no serious security. Enterprise-grade protection existed — but only for enterprises. We changed that."
IronCastle is one platform with two faces — a calm, plain-English portal for the business owner, and a dense, professional console for our analysts. Underneath, a single AI-native pipeline correlates events from your endpoints, cloud, identity, and network.
Our SOC is staffed by Permus security engineers in Dubai and Sydney — not outsourced to a third-party call centre. The analysts who handle your incidents are the same people who built the detections.
See the platform →IronCastle is a product of Permus Software House — a Dubai-based enterprise AI company with deep roots in security, compliance, and system architecture.
Permus Software House is headquartered in Dubai at One Central Plaza DWTC, with a full engineering team in Sydney. The company holds ISO 9001 and ISO 27001 certification — covering quality management and information security — with ISO 42001 (AI management systems) certification in progress.
IronCastle customers are protected by the same infrastructure, the same analysts, and the same runbooks that Permus deploys for enterprise clients in the GCC and APAC.
Learn more about Permus →Permus Information Technology LLC
Office 01.02, The Offices 5
One Central Plaza DWTC
Dubai UAE · P.O. Box 9420
Not a US product retrofitted for other markets. IronCastle was designed for compliance frameworks, data residency rules, and threat landscapes specific to the Gulf and Asia-Pacific.
Built for UAE PDPL, Saudi NCA, Qatar QNIAS, and GDPR — not just SOC 2 and FedRAMP. Your data stays in the region you choose.
Not AI bolted onto legacy MSSP infrastructure. The detection engine, correlation pipeline, and analyst tooling were all built with AI as the primary layer.
Every alert that escalates to a human goes to a Permus security engineer — in your time zone, in your compliance jurisdiction. Median time-to-human: 90 seconds.
Every IronCastle customer gets the same detection stack, the same runbooks, and the same 24/7 SOC coverage that we deploy for enterprise clients. Sized and priced for your team.