Experience, efficiency, and honesty.
I help companies protect their data and provide the assurance stakeholders and clients want to see. 20+ years working in different verticals, organisation sizes and cultures gave me a good understanding of what works and what does not. I have been in the trenches and seen many skeletons. No box-ticking or academic theory, only pragmatic and efficient advice to get the house in order.
Compliance That Drives Business Value
Turn regulatory requirements into competitive advantages. I help organisations achieve certifications that win clients, satisfy auditors, and reduce risks.
ISO 27001
Win enterprise clients with globally recognised security certification
SOC 2
Enable SaaS sales with customer-demanded security assurance
APRA (CPS 234)
Meet Australian financial services regulatory requirements
Essential 8
Align with ASD's ACSC cybersecurity best practices
Privacy Act (AU)
Comply with Australian privacy law and protect personal information
Privacy Act (NZ)
Meet New Zealand privacy law requirements and safeguard data rights
Min. Standards (NZ)
Implement New Zealand Government minimum cybersecurity standards
GDPR
Handle EU citizen's data legally and build customer trust
ISO 42001
Demonstrate responsible AI governance and risk management
OWASP
Build secure applications using industry-standard practices
NIST
Implement mature cybersecurity framework trusted globally
PCI DSS
Process payments securely and avoid costly compliance breaches