What I offer
Services
End-to-end cybersecurity services tailored to your organisation's risk profile and regulatory requirements.
Penetration Testing
Systematic assessment of network, web application, mobile, and infrastructure vulnerabilities. Delivered using PTES, OWASP, and NIST methodologies.
- Executive summary report
- Technical findings report
- Remediation guidance
- Retest included
Red Team Operations
Full-scope adversary simulation designed to test detection and response capabilities. Covers physical, social engineering, and technical attack vectors.
- Attack narrative report
- Purple team debrief
- Detection gap analysis
- MITRE ATT&CK mapping
Security Audit & Compliance
In-depth security audits and gap assessments aligned with ISO 27001, SOC 2, GDPR, and PCI-DSS frameworks.
- Gap analysis report
- Risk register
- Remediation roadmap
- Evidence pack
Cloud Security Assessment
Evaluation of cloud security posture across AWS, Azure, and GCP. Covers IAM, network architecture, data protection, and configuration review.
- Cloud security report
- CIS Benchmark assessment
- Architecture recommendations
- Policy templates
Security Advisory
Strategic security advisory and virtual CISO (vCISO) services. Helping organisations build and mature their security programme.
- Security strategy
- Policy development
- Board-level reporting
- Vendor evaluation
Incident Response
Rapid response to security incidents including breach investigation, malware analysis, and containment. Post-incident reporting and lessons learned.
- IR plan development
- Tabletop exercises
- Forensic investigation
- Post-incident report