About OPFOR Intelligence

Company.

OPFOR Intelligence was founded in Paris in 2015 by Jérôme Saiz, on a simple conviction: serious crisis preparation is grounded in first-hand experience of real crises.

Jérôme has led more than 50 cyber crises — including ransomware, extortion, and international coordination cases — advising executive leadership teams under pressure alongside forensic, penetration testing, OSINT, and CTI specialists.
That experience now supports organisations seeking to approach crisis with clarity, discipline, and preparation.

With 26 years of experience across cybersecurity, specialist journalism, and teaching (EPITA, CNPP, Dauphine), he serves as a subject-matter expert assessor in crisis management for ANSSI’s PRIS and PACS qualifications.

He has contributed to three books on cybersecurity and writes The Sharp End, a practitioner newsletter focused on crisis management and adversary tactics. He is also regularly called on by the media to provide context on cyber developments.

Trusted partners.

A cyber crisis is never handled alone. OPFOR Intelligence relies on a network of trusted partners who can be brought in quickly, depending on the nature of the incident and the level of engagement required.

PRIS-qualified commercial CERTs for investigation and remediation. Law firms specialised in digital law and crisis management. Crisis communication advisers. Independent technical security professionals selected for their operational experience.

Partnerships built over time, through shared engagements and mutual trust.

About the name

In military terminology, OPFOR stands for “Opposing Force”: the friendly unit tasked with playing the adversary during training exercises. Its role is to reproduce, as faithfully as possible, the tools, techniques, and procedures that a real opponent might use.

That is precisely the thinking behind OPFOR Intelligence. Through our monitoring, incident response work, and crisis management engagements, we observe adversary tradecraft at close range. That experience is then brought into our client work, through cyber crisis preparedness engagements and exercises grounded in real-world practice.

Let's discuss it